Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/349c58-fbb0-4ddd-a080-d2c97d65efa8/1/HM6r6CVyaLgkOiydkQN06tqVUe0.roa
File: HM6r6CVyaLgkOiydkQN06tqVUe0.roa (raw, json)
Hash identifier: ULrCJlTTvyBJ7gguszWei0FLvvTceK6Tv+B400VLJIc=
Subject key identifier: 1C:CE:AB:E8:25:72:68:B8:24:3A:2C:9D:91:03:74:EA:DA:95:51:ED
Certificate issuer: /CN=3da4c2fbdf10f8231f3df531ce5a3a2e3b23cefc
Certificate serial: 01856FC2635010D58E4C93ABF7AE042BF7DA
Authority key identifier: 3D:A4:C2:FB:DF:10:F8:23:1F:3D:F5:31:CE:5A:3A:2E:3B:23:CE:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PaTC-98Q-CMfPfUxzlo6Ljsjzvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/349c58-fbb0-4ddd-a080-d2c97d65efa8/1/HM6r6CVyaLgkOiydkQN06tqVUe0.roa
Signing time: Sun 01 Jan 2023 23:54:48 +0000
ROA not before: Sun 01 Jan 2023 23:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28878
IP address blocks: 176.110.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:63:50:10:d5:8e:4c:93:ab:f7:ae:04:2b:f7:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3da4c2fbdf10f8231f3df531ce5a3a2e3b23cefc
Validity
Not Before: Jan 1 23:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1cceabe8257268b8243a2c9d910374eada9551ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e7:c0:73:01:b5:77:c7:76:37:bf:d3:a6:cc:
c0:4a:a1:a9:50:85:d0:af:0b:76:c3:fd:8a:5e:a0:
35:e7:7e:79:e9:fc:8f:15:75:f0:55:1e:88:45:d0:
d9:e7:a6:9d:e0:48:57:95:ca:5f:fe:99:73:c8:20:
4a:a7:71:64:fa:2a:34:2b:7c:c9:19:c9:e9:d0:7b:
9c:20:22:3d:5a:4a:3e:6e:1e:9a:94:8f:9e:60:05:
d3:29:c6:19:32:a8:33:6e:be:37:15:9a:29:47:d5:
95:3f:f0:20:aa:96:b5:47:fb:a6:e7:e5:b3:12:6b:
fa:d8:c1:0a:f1:3c:a7:b0:88:21:87:74:62:81:38:
c5:55:ea:56:f0:1c:46:24:6e:8d:57:e2:32:d9:6c:
23:42:48:3f:2a:13:4c:ed:77:56:b8:d3:28:04:c3:
e4:e5:a7:6a:65:1b:85:18:84:1b:24:e9:33:a8:ad:
8d:9d:0b:48:2f:30:8c:b8:e2:d3:8b:4a:93:d7:3c:
5c:f3:25:5d:e7:51:eb:10:b3:8a:d9:52:8d:e5:76:
1c:8f:34:96:a7:ae:3b:5c:a4:4b:ce:73:03:c0:0a:
08:4b:75:1e:0d:3c:26:3b:63:bb:f3:9a:50:b8:a1:
52:dd:e5:7c:68:9c:70:89:9f:54:b3:7e:3a:e9:e8:
96:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:CE:AB:E8:25:72:68:B8:24:3A:2C:9D:91:03:74:EA:DA:95:51:ED
X509v3 Authority Key Identifier:
keyid:3D:A4:C2:FB:DF:10:F8:23:1F:3D:F5:31:CE:5A:3A:2E:3B:23:CE:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PaTC-98Q-CMfPfUxzlo6Ljsjzvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/349c58-fbb0-4ddd-a080-d2c97d65efa8/1/HM6r6CVyaLgkOiydkQN06tqVUe0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/349c58-fbb0-4ddd-a080-d2c97d65efa8/1/PaTC-98Q-CMfPfUxzlo6Ljsjzvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.110.104.0/24
Signature Algorithm: sha256WithRSAEncryption
57:a4:4b:4e:38:96:23:d7:dd:aa:b5:4e:89:61:3e:8b:c2:13:
1f:6a:5c:24:34:73:e4:68:03:21:5b:81:03:4c:48:12:ec:ac:
b8:23:3f:81:4f:a6:67:e3:b0:8b:94:0e:d6:13:9e:5d:a7:33:
70:f4:99:6f:11:d5:b1:86:a4:0c:4d:d6:71:23:64:41:03:d0:
64:1b:ab:ab:1b:f4:27:0b:c0:f4:aa:a1:ed:aa:31:a3:2f:ee:
29:b5:58:ee:b8:8d:9d:83:05:82:07:01:cb:93:08:9a:d8:f2:
17:38:21:3b:e5:60:cb:5b:84:34:db:85:24:c9:16:77:62:fe:
dc:12:5c:bb:ac:bc:75:1f:f3:0a:e8:44:bc:c9:7d:99:bb:35:
db:0e:b3:a7:35:ab:ef:3c:d9:87:df:15:c5:5b:d2:f5:35:74:
8b:00:4e:17:3d:b9:33:ca:74:59:cb:ff:23:e7:4d:e9:86:42:
ed:36:7d:0f:d9:86:62:06:b6:47:0e:63:82:cd:35:08:1a:08:
31:82:83:a1:58:6a:54:12:72:91:46:41:87:fe:b4:ff:79:ed:
ad:bd:36:0d:b2:37:96:7f:fd:c2:52:d0:7e:58:96:b7:9a:8a:
f6:4c:12:b5:dc:30:cb:78:40:90:c9:87:d1:73:98:de:97:ff:
c3:8e:1e:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:15 2024 by rpki-client on console-fra.rpki-client.org