Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/4db93d-fc87-4e16-9b3b-79453b474e2e/1/IzT1xgT2R18vu7hSVDOsstpnOI8.roa
File: IzT1xgT2R18vu7hSVDOsstpnOI8.roa (raw, json)
Hash identifier: VVLpQxOn+5Gc0e3+DFP72ZOfd9l5+Spr13LK3VzMXHw=
Subject key identifier: 23:34:F5:C6:04:F6:47:5F:2F:BB:B8:52:54:33:AC:B2:DA:67:38:8F
Certificate issuer: /CN=d4b0c11e6666cfc1b7f1b6994e0f437329adec04
Certificate serial: 018571A79203012019DC1E0E0ED1CADCDE92
Authority key identifier: D4:B0:C1:1E:66:66:CF:C1:B7:F1:B6:99:4E:0F:43:73:29:AD:EC:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1LDBHmZmz8G38baZTg9Dcymt7AQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/4db93d-fc87-4e16-9b3b-79453b474e2e/1/IzT1xgT2R18vu7hSVDOsstpnOI8.roa
Signing time: Mon 02 Jan 2023 08:44:45 +0000
ROA not before: Mon 02 Jan 2023 08:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 176.124.254.0/23 maxlen: 32
2001:678:dc::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:92:03:01:20:19:dc:1e:0e:0e:d1:ca:dc:de:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4b0c11e6666cfc1b7f1b6994e0f437329adec04
Validity
Not Before: Jan 2 08:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2334f5c604f6475f2fbbb8525433acb2da67388f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a9:b5:c9:2c:ed:ca:2c:d7:5b:67:00:9f:cb:
e4:fc:44:2a:68:e5:b2:20:67:37:26:d8:54:c8:a1:
34:eb:23:c9:09:46:43:4a:46:86:45:c1:9d:45:a8:
e2:2c:fd:c5:26:fb:cf:4e:34:97:ab:d6:b1:c7:af:
37:38:49:aa:10:9d:b7:aa:2d:92:db:26:6c:d5:dc:
a0:0e:2d:59:ff:dd:b3:ef:37:33:ea:b6:91:94:b7:
6d:26:bb:78:cf:7f:7a:53:9f:83:6a:55:42:23:81:
03:78:c1:b6:90:54:45:82:fb:00:de:5f:14:f7:f4:
11:ae:07:d7:ed:af:27:78:e4:ff:ad:34:12:28:17:
e8:50:4b:67:30:42:7a:12:6e:94:60:02:58:3f:ee:
7d:60:f3:1f:2b:10:9a:b2:7c:bd:41:ad:ef:45:20:
fc:88:af:89:c5:28:ef:38:5b:27:a5:0d:73:0d:8d:
0f:75:34:e6:b9:74:fa:a0:50:f0:67:ae:74:e5:ea:
2c:eb:82:c9:f9:8b:85:aa:0a:09:e1:d9:7c:2d:10:
72:5f:35:aa:02:06:89:cb:71:dd:14:a5:60:6d:11:
f3:be:c9:88:de:ff:a7:c9:2e:ba:da:d3:32:84:d7:
6f:70:94:11:5b:44:fb:9e:95:6d:e4:7b:6c:2e:3c:
cc:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:34:F5:C6:04:F6:47:5F:2F:BB:B8:52:54:33:AC:B2:DA:67:38:8F
X509v3 Authority Key Identifier:
keyid:D4:B0:C1:1E:66:66:CF:C1:B7:F1:B6:99:4E:0F:43:73:29:AD:EC:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1LDBHmZmz8G38baZTg9Dcymt7AQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/4db93d-fc87-4e16-9b3b-79453b474e2e/1/IzT1xgT2R18vu7hSVDOsstpnOI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/4db93d-fc87-4e16-9b3b-79453b474e2e/1/1LDBHmZmz8G38baZTg9Dcymt7AQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.254.0/23
IPv6:
2001:678:dc::/48
Signature Algorithm: sha256WithRSAEncryption
01:e1:ee:9a:20:5f:89:bd:94:5b:36:0e:18:b0:b7:e4:7a:e7:
55:bb:bd:b2:89:ea:ed:8a:78:24:2f:22:5e:c5:b1:9b:40:3b:
4c:76:ee:ec:fa:2f:0a:ac:50:9b:3f:1f:5a:4a:4d:db:99:90:
b8:6a:66:08:1e:f4:dd:74:73:d0:d4:f7:97:2a:67:6a:06:be:
51:ef:4d:32:d4:8d:11:0a:b2:0c:11:e7:1e:5c:1c:d1:de:7d:
3b:ba:74:6f:f5:3b:98:d4:76:14:14:5b:f9:be:07:58:21:df:
5b:83:b6:bd:90:85:26:4c:86:24:32:04:5b:f6:6d:73:39:af:
e3:56:d9:41:22:0a:ff:f8:c9:79:b1:cd:0d:0f:f0:f3:40:05:
95:07:2e:61:c1:1e:8d:b9:ef:67:70:41:a6:9a:65:83:93:4a:
cc:04:66:09:74:7f:4d:ad:0f:5c:3e:fd:06:d7:5d:4c:99:88:
0e:01:1e:57:89:ca:7d:44:1a:6b:d2:4a:c7:43:d1:39:40:98:
1f:6b:78:59:1e:a4:8f:96:2f:51:40:4b:9f:34:32:30:c9:e2:
5f:e4:2e:59:c8:ed:dd:fe:c4:0e:4b:ca:0f:f8:8c:8f:03:69:
d2:12:e1:6f:f8:1a:63:07:a3:51:85:e2:e1:0e:48:9a:c9:aa:
3d:64:1a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:46 2024 by rpki-client on console-ams.rpki-client.org