Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/oMXZvbCJtUovbZBTa9mr38qmgp0.roa
File: oMXZvbCJtUovbZBTa9mr38qmgp0.roa (raw, json)
Hash identifier: JnrOluHY6T1ZgkFmXMUWNvwvlax3a75GVxE1zU8lX2c=
Subject key identifier: A0:C5:D9:BD:B0:89:B5:4A:2F:6D:90:53:6B:D9:AB:DF:CA:A6:82:9D
Certificate issuer: /CN=9daa9f14f97d4dad8c004c253a5e1ce7c7dd7c4b
Certificate serial: 018571BA0D3AA0D49C8D769C4410FAFABFDF
Authority key identifier: 9D:AA:9F:14:F9:7D:4D:AD:8C:00:4C:25:3A:5E:1C:E7:C7:DD:7C:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naqfFPl9Ta2MAEwlOl4c58fdfEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/oMXZvbCJtUovbZBTa9mr38qmgp0.roa
Signing time: Mon 02 Jan 2023 09:04:56 +0000
ROA not before: Mon 02 Jan 2023 09:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211439
IP address blocks: 176.118.163.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:0d:3a:a0:d4:9c:8d:76:9c:44:10:fa:fa:bf:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9daa9f14f97d4dad8c004c253a5e1ce7c7dd7c4b
Validity
Not Before: Jan 2 09:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0c5d9bdb089b54a2f6d90536bd9abdfcaa6829d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cd:53:a6:36:e4:10:99:ee:f8:74:a1:67:a2:
0c:7e:c3:d8:21:37:09:87:bd:60:5b:16:d2:90:b8:
a4:58:e0:08:84:69:68:22:46:ee:9b:4f:36:d5:0d:
fd:40:8d:14:a5:4a:6c:7c:bf:00:6b:a7:cd:27:8b:
25:17:a8:22:51:cb:c3:f8:17:b4:94:f4:16:d8:8e:
2f:6b:bc:fa:bd:81:ef:8d:b4:df:7c:dd:ef:3f:31:
1e:02:6c:bb:2f:aa:82:7a:31:46:0d:b6:23:29:8a:
a5:a4:4e:c3:90:38:9d:1a:b2:01:9f:a3:45:2c:29:
2f:a1:d1:3d:db:31:98:70:d6:be:83:8d:fc:e7:04:
97:c1:09:fd:6c:c5:ff:d1:aa:bc:de:88:c4:02:24:
c8:ea:4a:a6:3a:9f:c5:9d:68:d5:e3:81:b1:ef:0d:
ce:4c:ed:3d:2d:d8:a5:28:bb:12:17:de:09:88:f6:
28:a3:2e:a6:76:52:06:45:3a:68:10:46:e1:16:14:
f2:12:01:3d:97:72:f5:c1:d4:4d:cb:88:90:ab:80:
6c:5b:5a:b0:b1:47:96:1c:ad:34:a4:84:9a:e6:ec:
8c:41:0d:14:ed:30:b6:c8:6c:29:be:0d:fe:57:e7:
bf:22:97:0c:5a:a3:06:c6:6b:d7:f8:64:f4:28:f8:
fb:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:C5:D9:BD:B0:89:B5:4A:2F:6D:90:53:6B:D9:AB:DF:CA:A6:82:9D
X509v3 Authority Key Identifier:
keyid:9D:AA:9F:14:F9:7D:4D:AD:8C:00:4C:25:3A:5E:1C:E7:C7:DD:7C:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naqfFPl9Ta2MAEwlOl4c58fdfEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/oMXZvbCJtUovbZBTa9mr38qmgp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/naqfFPl9Ta2MAEwlOl4c58fdfEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.163.0/24
Signature Algorithm: sha256WithRSAEncryption
47:12:6c:7f:51:dc:2d:88:bc:58:5d:d6:0e:c6:91:ae:90:87:
c4:05:97:ac:4a:82:01:53:d7:b4:01:44:41:a9:c1:99:23:50:
a2:72:bc:ab:11:eb:6c:c2:18:f0:be:db:7c:65:eb:71:fe:e4:
3c:b1:ea:91:e1:f7:96:c0:0a:ee:d4:1f:8f:43:69:39:87:78:
91:49:1a:49:d8:ad:88:b8:e5:aa:9e:0c:77:df:95:e2:57:cb:
71:de:d4:89:6a:ed:e0:34:97:ae:d1:83:6d:ec:19:f5:d1:a2:
1e:28:ad:9c:54:95:04:39:4a:a4:ac:8e:ac:65:e3:4e:59:97:
25:ec:74:ef:c0:16:91:f6:97:09:ca:b9:4d:8d:72:65:7d:bd:
0f:95:3c:41:35:b2:02:4e:65:92:c2:b9:d5:f1:3b:60:04:31:
c1:19:47:92:91:7c:fd:b4:0b:f8:07:60:41:76:50:2d:b2:78:
63:01:8c:e8:85:b9:66:e2:e0:58:8a:e7:0b:02:c9:8d:8a:a6:
fe:17:7d:8a:54:ea:38:a7:56:55:a5:9a:68:6c:58:21:3d:2f:
48:da:ad:93:cf:6d:2d:5e:3d:94:51:03:05:4f:8e:95:d4:03:
a6:ff:1c:b2:89:61:3e:8e:f6:ac:d0:5c:c7:b1:e8:03:3d:59:
69:5a:f9:ed
-----BEGIN CERTIFICATE-----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Generated at Wed Sep 13 12:09:09 2023 by rpki-client on console-fra.rpki-client.org