Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/8RWxBVvocxaR4eGKhChgFJbaGfc.roa
File: 8RWxBVvocxaR4eGKhChgFJbaGfc.roa (raw, json)
Hash identifier: PX0tjL4TZGT+q/3VCeZzQPlddsbFIrG9HwUCOSm5uQc=
Subject key identifier: F1:15:B1:05:5B:E8:73:16:91:E1:E1:8A:84:28:60:14:96:DA:19:F7
Certificate issuer: /CN=a056b42383ad862ce6a374ad2ca6d36c254dc7b1
Certificate serial: 01856DD438ABBFAC925CEF3D174DE411BDB2
Authority key identifier: A0:56:B4:23:83:AD:86:2C:E6:A3:74:AD:2C:A6:D3:6C:25:4D:C7:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/8RWxBVvocxaR4eGKhChgFJbaGfc.roa
Signing time: Sun 01 Jan 2023 14:55:02 +0000
ROA not before: Sun 01 Jan 2023 14:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 176.119.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:38:ab:bf:ac:92:5c:ef:3d:17:4d:e4:11:bd:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a056b42383ad862ce6a374ad2ca6d36c254dc7b1
Validity
Not Before: Jan 1 14:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f115b1055be8731691e1e18a8428601496da19f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bc:f3:87:b6:91:ca:11:80:fc:89:c1:da:82:
3e:e2:8b:ce:03:27:38:66:3e:f4:94:00:aa:c4:b3:
02:08:3d:fa:f8:3f:cf:35:e8:c9:05:94:be:99:3c:
62:c0:37:95:f1:35:c2:77:c5:86:2f:5c:d7:97:0b:
92:b7:a5:a3:1b:6f:7e:30:59:19:a4:b7:c8:47:39:
23:9b:b0:d3:da:6f:3b:49:e1:cd:99:f0:6e:64:20:
48:ea:1c:7f:31:84:0d:ec:5b:2a:82:72:ad:e6:e1:
bd:50:4f:3c:dd:ce:5a:b5:e1:5b:96:99:e0:ca:04:
21:04:f5:65:6f:e3:72:67:68:04:56:9c:aa:28:64:
df:fc:92:37:82:37:e3:ef:c6:e7:b3:38:db:f6:96:
8c:16:1d:18:ee:ad:e4:07:99:ee:11:9f:e5:df:87:
d3:13:e8:6d:e3:4e:3b:7f:17:a3:95:de:9e:a8:84:
9f:16:4e:59:ac:b9:f2:dd:41:04:fa:20:b2:ff:84:
21:09:e3:25:a2:10:66:71:62:44:0b:3d:2c:41:74:
77:20:18:58:2d:4f:9a:89:1c:a6:01:25:cc:94:2f:
4a:b3:0c:63:3b:3b:97:3f:7e:92:e7:30:b4:8b:b0:
dc:71:ea:b6:99:1a:a3:75:5e:bc:ac:20:65:60:f7:
3d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:15:B1:05:5B:E8:73:16:91:E1:E1:8A:84:28:60:14:96:DA:19:F7
X509v3 Authority Key Identifier:
keyid:A0:56:B4:23:83:AD:86:2C:E6:A3:74:AD:2C:A6:D3:6C:25:4D:C7:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/8RWxBVvocxaR4eGKhChgFJbaGfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.119.222.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:5e:71:77:79:96:f9:f0:7d:41:2f:2a:80:72:2e:b4:42:a9:
36:b3:84:bd:8d:55:38:7b:53:db:60:fc:19:25:24:ef:2d:37:
68:7c:ed:4b:e8:93:6f:6b:5a:e8:1a:03:4a:57:d9:1e:f1:65:
08:7f:0b:d8:78:ff:37:84:8e:2d:f6:ee:99:c2:a7:a4:33:84:
81:3f:19:e5:8d:60:4f:cd:43:3e:a7:fb:00:cd:4e:03:25:58:
f2:28:42:77:f8:fd:14:a0:1a:9d:e1:05:72:a3:1b:9e:c9:e1:
4f:99:d8:df:f4:21:8e:3c:6f:98:5e:3d:24:b7:86:bc:cb:28:
36:04:31:aa:39:1c:86:45:97:96:ce:d3:c0:3c:9f:1a:1a:27:
04:ad:69:46:70:ed:0b:63:3b:9a:58:88:7b:7b:6f:59:6e:eb:
ea:b1:a5:0b:1e:c7:fa:c9:a5:07:82:b0:5b:5e:fe:c3:f0:a9:
c3:b7:6b:9d:0e:a7:6d:6b:11:21:98:b6:67:71:9d:c4:bf:79:
13:10:e2:3c:b2:1d:5f:a3:2d:f6:80:a2:12:26:f1:7a:28:1d:
04:5f:f8:d7:fb:17:b2:c2:2c:fb:00:0e:07:3b:59:aa:03:db:
d9:0c:f5:67:39:40:47:29:c8:02:68:cf:3d:70:4d:c6:d7:10:
59:f3:83:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:12 2024 by rpki-client on console-fra.rpki-client.org