Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/56a02a-c5fd-4119-8c5f-f48502d13948/1/2_-h7_GzLx0dYH0hvfBsEIsDh4w.roa
File: 2_-h7_GzLx0dYH0hvfBsEIsDh4w.roa (raw, json)
Hash identifier: mjUBwoMkY5lUlQKe9UiZeIWmEv2MdhH4NPynkN4H1l4=
Subject key identifier: DB:FF:A1:EF:F1:B3:2F:1D:1D:60:7D:21:BD:F0:6C:10:8B:03:87:8C
Certificate issuer: /CN=cccd583c8d71a2427e0060e3cc924f32dc1a820b
Certificate serial: 018E1386216189FE8AFFA13D6DBEFDDF58E6
Authority key identifier: CC:CD:58:3C:8D:71:A2:42:7E:00:60:E3:CC:92:4F:32:DC:1A:82:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zM1YPI1xokJ-AGDjzJJPMtwaggs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/56a02a-c5fd-4119-8c5f-f48502d13948/1/2_-h7_GzLx0dYH0hvfBsEIsDh4w.roa
Signing time: Wed 06 Mar 2024 11:29:01 +0000
ROA not before: Wed 06 Mar 2024 11:29:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216319
IP address blocks: 176.124.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 May 2024 15:05:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:13:86:21:61:89:fe:8a:ff:a1:3d:6d:be:fd:df:58:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cccd583c8d71a2427e0060e3cc924f32dc1a820b
Validity
Not Before: Mar 6 11:29:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dbffa1eff1b32f1d1d607d21bdf06c108b03878c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:02:f2:c2:6c:a9:63:68:3f:f5:04:23:cd:55:
2b:4f:a5:f5:3f:5f:ce:fd:be:4e:85:1a:a5:89:42:
4a:e0:84:c3:68:5b:8d:8e:fc:45:10:ee:5c:ba:da:
66:26:f3:b8:cd:24:d9:b4:2d:ec:5c:a4:93:cf:f6:
d9:b1:29:08:4b:7b:2d:72:00:4e:fb:34:24:fe:e4:
02:8c:c1:2b:97:91:5f:6f:20:e9:07:71:fa:22:bf:
11:21:87:0a:8a:66:7f:6b:6a:0d:07:96:5e:d0:db:
69:74:64:a4:45:61:0f:a3:09:cb:88:a0:2d:0d:d2:
ba:d4:4c:26:45:17:d5:7a:2a:55:de:a8:4d:0c:94:
3e:28:8f:9d:ef:f8:a1:bb:ba:e9:b7:9f:c0:75:5f:
74:6f:ce:d9:81:aa:55:44:de:e6:c9:f6:7c:ca:c2:
56:ae:14:c6:68:9a:bd:25:c2:78:28:c2:e3:a3:41:
d8:d0:78:f8:a7:e8:5c:57:a4:7b:50:c5:c3:b7:15:
f4:e8:3a:ad:e4:d0:70:39:e4:cb:63:3c:e2:85:0b:
d1:a5:00:4b:78:c6:b2:8d:2f:e4:ce:12:3e:1c:dc:
d1:2b:76:04:c2:5f:3f:ee:ac:2c:8e:dd:c5:e7:0d:
df:cf:70:34:00:16:fb:91:99:2d:24:93:0e:bc:6d:
68:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:FF:A1:EF:F1:B3:2F:1D:1D:60:7D:21:BD:F0:6C:10:8B:03:87:8C
X509v3 Authority Key Identifier:
keyid:CC:CD:58:3C:8D:71:A2:42:7E:00:60:E3:CC:92:4F:32:DC:1A:82:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zM1YPI1xokJ-AGDjzJJPMtwaggs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/56a02a-c5fd-4119-8c5f-f48502d13948/1/2_-h7_GzLx0dYH0hvfBsEIsDh4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/56a02a-c5fd-4119-8c5f-f48502d13948/1/zM1YPI1xokJ-AGDjzJJPMtwaggs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.222.0/24
Signature Algorithm: sha256WithRSAEncryption
72:53:a3:d8:6b:5b:c4:15:f3:85:fe:74:49:94:89:ac:4e:e9:
bd:65:89:97:b5:8d:09:f7:68:ba:46:98:81:95:b8:2b:6a:5e:
4f:f2:c6:80:b6:fd:09:0c:fe:c3:ca:d2:77:b6:c5:8e:96:02:
82:11:3d:ef:47:1f:7c:5b:b1:de:7b:01:32:2e:de:49:f2:3e:
aa:f9:9a:43:36:8e:7d:0a:a5:61:fc:68:1f:32:2f:cb:88:8c:
e5:59:63:e4:d9:a6:78:85:c9:2c:fe:52:fd:42:e1:ec:94:b6:
85:ef:c8:7a:6a:69:a3:24:c4:8c:e4:39:6c:d9:a9:aa:da:f1:
dd:67:7b:78:f6:83:b4:c1:33:38:49:82:0d:de:35:36:28:9b:
71:80:9b:5e:cd:bb:86:fb:8e:97:a6:67:43:26:1d:15:96:99:
55:cf:ec:32:2c:32:ed:a0:e7:ab:83:4c:b5:98:cb:ed:0b:ec:
e8:1e:b5:5a:ee:21:ac:cf:eb:39:6e:b9:7c:ab:40:99:04:d0:
37:17:d1:b1:91:7c:c8:cb:33:4d:4e:10:5e:dc:da:f9:7f:78:
33:e2:8f:0c:24:a9:03:ff:a9:20:51:51:1d:0d:80:2a:39:62:
25:f6:ad:17:2c:b9:3e:ad:26:6e:84:5f:fd:e3:92:30:5e:4f:
39:b8:47:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 18:54:52 2024 by rpki-client on console-fra.rpki-client.org