Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/d4a00f-c73f-4014-ade0-ab37fed52a4d/1/9nLckyupe_blI44h7zt8qpUaf6E.roa
File: 9nLckyupe_blI44h7zt8qpUaf6E.roa (raw, json)
Hash identifier: uRyBF4HfdntWGZypilDP6yGB12Q9fvdaE+ji5FUr8HY=
Subject key identifier: F6:72:DC:93:2B:A9:7B:F6:E5:23:8E:21:EF:3B:7C:AA:95:1A:7F:A1
Certificate issuer: /CN=16785c048cf3d5b21869f49434f2d3bb47d43ba1
Certificate serial: 018CC8DEC736ABBE66E7776A87716C8A5B6A
Authority key identifier: 16:78:5C:04:8C:F3:D5:B2:18:69:F4:94:34:F2:D3:BB:47:D4:3B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FnhcBIzz1bIYafSUNPLTu0fUO6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/d4a00f-c73f-4014-ade0-ab37fed52a4d/1/9nLckyupe_blI44h7zt8qpUaf6E.roa
Signing time: Tue 02 Jan 2024 06:31:32 +0000
ROA not before: Tue 02 Jan 2024 06:31:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213212
IP address blocks: 185.76.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 20:45:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:c7:36:ab:be:66:e7:77:6a:87:71:6c:8a:5b:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16785c048cf3d5b21869f49434f2d3bb47d43ba1
Validity
Not Before: Jan 2 06:31:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f672dc932ba97bf6e5238e21ef3b7caa951a7fa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:2c:49:c8:2b:5e:b9:e8:28:b8:9d:a8:e0:fd:
3a:4f:46:e7:fa:dd:75:51:d9:e6:4d:2c:d9:2a:4b:
e3:39:c0:57:8d:a6:41:a9:3c:78:3b:31:58:83:f7:
fa:92:de:40:d4:91:65:77:a0:ae:f7:2b:09:d8:89:
95:f4:e8:1e:43:fc:47:e9:16:10:7a:d6:fe:63:0a:
d0:c6:2b:23:6a:ae:42:64:c3:66:fe:a3:6d:67:ec:
8d:d1:01:17:cb:14:fd:d3:48:b9:f5:af:06:eb:ca:
8b:c8:c9:51:e2:35:98:f4:03:36:35:c8:9e:eb:ce:
e6:91:98:89:d7:c7:4d:9e:7f:5c:97:72:bc:3a:15:
3b:b7:68:a1:aa:3f:f4:56:d5:56:20:d5:ad:4f:75:
b7:4c:42:f6:ff:8b:f1:2a:19:45:00:b4:74:35:b7:
5b:13:19:a9:36:dc:a0:f6:ed:66:dc:07:29:d0:83:
6e:d4:aa:60:ea:34:e9:a7:2f:a3:25:24:4a:fb:70:
fb:88:7d:95:d5:3a:02:1c:e3:73:b2:42:98:a3:3b:
b3:05:ea:0e:85:c3:53:ea:b5:d7:13:6a:9d:9f:38:
f6:62:5a:32:fc:15:ac:e3:8f:5a:b8:87:64:31:df:
67:4f:3e:68:59:61:a0:dc:8c:05:cd:86:ef:e2:bb:
46:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:72:DC:93:2B:A9:7B:F6:E5:23:8E:21:EF:3B:7C:AA:95:1A:7F:A1
X509v3 Authority Key Identifier:
keyid:16:78:5C:04:8C:F3:D5:B2:18:69:F4:94:34:F2:D3:BB:47:D4:3B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FnhcBIzz1bIYafSUNPLTu0fUO6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d4a00f-c73f-4014-ade0-ab37fed52a4d/1/9nLckyupe_blI44h7zt8qpUaf6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d4a00f-c73f-4014-ade0-ab37fed52a4d/1/FnhcBIzz1bIYafSUNPLTu0fUO6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.159.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:43:d4:23:0a:c3:8f:94:01:b1:29:b2:cc:53:a2:71:d7:60:
56:5b:94:31:f6:ff:a1:49:ea:3c:23:5e:62:51:cf:da:b1:b2:
19:fe:2b:84:0b:0f:21:22:16:4e:f5:a3:49:43:df:60:5a:a3:
16:ba:a5:6e:77:e5:66:fa:9c:c8:51:6d:43:e3:f8:20:ac:e7:
f8:98:ef:22:eb:84:36:6b:68:70:b7:66:b8:58:03:65:29:30:
87:31:86:05:cd:f2:2c:69:69:f1:a0:d2:0c:fa:ef:c9:9a:47:
65:ae:bc:75:ca:62:9b:07:07:95:e6:6d:65:bc:a5:65:d6:4a:
62:c1:31:5f:c0:3d:86:4e:e6:1f:62:81:3f:dd:3d:48:b2:2b:
b5:43:2e:a6:ca:e1:11:93:51:d4:8d:9f:3d:ed:66:21:01:af:
dd:a9:dd:cc:1c:ce:7a:0f:f9:f3:8a:a0:cc:fc:2c:52:5d:54:
56:f0:55:c3:24:0c:87:cc:79:f9:a2:84:8b:86:dd:be:6a:5b:
a4:ca:6c:73:ee:8e:b9:bc:a7:37:3b:bd:ef:b2:16:c6:b2:62:
18:66:ba:5b:da:93:4e:e8:75:c0:c1:2c:d1:40:dd:5c:74:ea:
c8:0c:1a:62:99:03:b3:31:74:82:5c:fa:e4:cf:81:39:9b:e5:
80:f9:e7:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:49 2024 by rpki-client on console-fra.rpki-client.org