Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/9CFRlH2y4Z_5wJu1OHjjrkXFsPI.roa
File: 9CFRlH2y4Z_5wJu1OHjjrkXFsPI.roa (raw, json)
Hash identifier: x16Ba7VoM5LDTYUcN7KsfD922N+yTWFjafiXzWzXMA0=
Subject key identifier: F4:21:51:94:7D:B2:E1:9F:F9:C0:9B:B5:38:78:E3:AE:45:C5:B0:F2
Certificate issuer: /CN=9daa9f14f97d4dad8c004c253a5e1ce7c7dd7c4b
Certificate serial: 0188D2ADC86D6D4DE76540F0465A8554EECE
Authority key identifier: 9D:AA:9F:14:F9:7D:4D:AD:8C:00:4C:25:3A:5E:1C:E7:C7:DD:7C:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naqfFPl9Ta2MAEwlOl4c58fdfEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/9CFRlH2y4Z_5wJu1OHjjrkXFsPI.roa
Signing time: Mon 19 Jun 2023 08:03:04 +0000
ROA not before: Mon 19 Jun 2023 08:03:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 176.118.161.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d2:ad:c8:6d:6d:4d:e7:65:40:f0:46:5a:85:54:ee:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9daa9f14f97d4dad8c004c253a5e1ce7c7dd7c4b
Validity
Not Before: Jun 19 08:03:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f42151947db2e19ff9c09bb53878e3ae45c5b0f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:13:11:71:c2:1e:09:98:4f:cc:4a:04:f9:6b:
ef:79:49:be:91:d1:62:64:0f:76:40:18:60:ac:a4:
8d:3a:20:0f:d1:6e:57:1c:d1:eb:42:aa:f7:01:a5:
da:dd:c7:19:2e:91:e9:fe:c9:72:e9:d2:7d:c8:3b:
77:05:d7:40:74:14:47:71:1e:82:6c:9a:ec:9e:42:
6d:40:2a:a4:42:97:e5:4a:aa:4e:3a:47:8b:5f:49:
42:5e:31:6b:28:2a:8f:e8:90:66:bf:a1:79:4a:36:
75:12:0e:60:70:d0:46:30:4e:f5:97:77:1c:9c:ee:
e6:a9:ef:30:65:e0:57:28:40:07:4d:9a:f3:09:80:
75:bb:84:ad:3c:84:84:f0:87:48:84:79:96:3c:ed:
9c:15:71:fb:10:f8:78:2a:d0:c5:81:91:f4:d2:a1:
7a:8b:dd:80:83:d7:5f:e8:0a:f3:e5:6b:a9:88:33:
2e:58:57:da:89:24:c1:83:84:9f:e8:ee:95:c5:84:
76:25:2f:31:29:94:e0:e2:45:2b:6d:6f:a2:83:c9:
f7:84:a5:3e:b9:ff:dc:44:df:1a:2d:a8:1f:e5:5e:
c5:a4:ec:a3:ae:6a:8f:77:a0:82:80:16:c8:8a:b2:
fd:71:c6:2b:f8:e6:e8:37:3b:04:32:22:ef:d8:60:
d5:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:21:51:94:7D:B2:E1:9F:F9:C0:9B:B5:38:78:E3:AE:45:C5:B0:F2
X509v3 Authority Key Identifier:
keyid:9D:AA:9F:14:F9:7D:4D:AD:8C:00:4C:25:3A:5E:1C:E7:C7:DD:7C:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naqfFPl9Ta2MAEwlOl4c58fdfEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/9CFRlH2y4Z_5wJu1OHjjrkXFsPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/naqfFPl9Ta2MAEwlOl4c58fdfEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.161.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:0e:1c:db:35:22:0a:23:64:ef:83:3c:19:4a:0c:6a:c2:b5:
42:4a:4f:ec:b1:4f:56:9f:41:d9:48:96:70:2d:4e:43:63:c3:
bb:5b:90:d6:15:5d:21:32:ea:36:55:75:91:30:44:37:5a:7e:
af:59:6b:5c:1f:68:4d:ed:e7:38:0f:2d:6f:c1:b9:c1:99:ef:
64:65:a7:7f:2e:ef:04:fa:4d:77:48:09:37:1e:23:1e:e3:4a:
a7:6e:9a:e8:89:84:ad:ba:92:8e:6b:18:63:cc:87:d3:62:52:
da:97:25:6b:18:2d:84:b0:c1:fc:46:b0:a9:5d:65:16:17:91:
22:b2:49:e2:f4:f6:4a:2c:5b:53:ca:c2:51:33:eb:2b:5a:0c:
5d:48:96:23:77:96:83:58:db:17:10:af:4a:41:d2:dc:c3:ca:
da:75:76:5e:d7:ba:42:b2:4d:97:ef:51:ce:d3:e3:a8:af:74:
1d:1e:05:3a:b7:0a:07:a2:d0:d4:c5:85:7f:84:7e:0f:4b:08:
40:d1:bb:99:66:8d:a0:de:1f:2d:fa:07:b7:ba:87:29:7c:fa:
c5:ce:42:7f:60:40:45:bd:32:bf:86:3c:a2:ac:9d:e0:cc:11:
c7:e3:68:d9:46:10:7e:d8:0b:20:6b:dd:44:8f:de:bc:da:cc:
08:98:90:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:44 2023 by rpki-client on console-ams.rpki-client.org