Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/pxx73Ay4foEXBNuoKMQnjpio32s.roa
File: pxx73Ay4foEXBNuoKMQnjpio32s.roa (raw, json)
Hash identifier: TcmhlOkPjqn9RbbPEnigFK62YoyBpe6JMuJM83QNHtA=
Subject key identifier: A7:1C:7B:DC:0C:B8:7E:81:17:04:DB:A8:28:C4:27:8E:98:A8:DF:6B
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 0185C85FCD64B70854A45BAAB39E747DD147
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/pxx73Ay4foEXBNuoKMQnjpio32s.roa
Signing time: Thu 19 Jan 2023 04:53:19 +0000
ROA not before: Thu 19 Jan 2023 04:53:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 393427
IP address blocks: 176.223.190.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c8:5f:cd:64:b7:08:54:a4:5b:aa:b3:9e:74:7d:d1:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Jan 19 04:53:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a71c7bdc0cb87e811704dba828c4278e98a8df6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:58:92:d2:a7:c1:cc:33:1c:4b:52:f3:d1:20:
8f:af:3b:87:ae:00:62:0b:14:99:7f:de:a7:7e:47:
30:f1:04:a1:ce:b6:e6:1d:25:25:d0:5e:6b:e5:5f:
86:9a:d1:c1:1e:4a:31:24:32:cf:fb:c6:1f:04:19:
c2:f2:ad:2f:9f:c5:ea:23:1d:f0:e3:24:5c:a1:8f:
96:f8:e3:ba:19:21:86:af:85:f1:fc:1a:7d:1c:ed:
d7:00:bb:2c:e8:1f:34:a6:a8:d3:5e:bd:15:bd:7c:
46:90:f1:e9:d1:4c:24:1e:3d:a2:cd:cf:bb:35:fa:
b0:66:50:9a:39:46:e2:11:a0:02:79:f6:38:67:49:
4b:a9:31:c9:83:62:c8:b7:fb:51:08:08:c6:83:4d:
cd:40:c5:c8:cb:6e:e7:79:4f:e0:c7:ba:3b:10:d6:
74:5e:7a:13:0a:6d:b9:0d:ba:f3:fd:a1:8d:b5:16:
b0:07:07:ca:78:15:1b:87:d6:42:1c:4e:12:76:54:
fd:9d:8b:40:82:2b:06:7c:b0:a8:7c:89:f7:ec:28:
4d:aa:f9:1a:87:05:4e:57:03:8b:38:21:27:8b:e5:
26:50:a1:a7:da:92:e0:74:44:3b:d6:64:a5:15:90:
fa:62:5c:51:e8:75:f3:1f:4b:1d:05:9b:cb:b2:24:
8f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:1C:7B:DC:0C:B8:7E:81:17:04:DB:A8:28:C4:27:8E:98:A8:DF:6B
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/pxx73Ay4foEXBNuoKMQnjpio32s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.223.190.0/24
Signature Algorithm: sha256WithRSAEncryption
87:a7:9a:6e:48:80:4a:43:20:d4:75:a6:1b:ba:27:2c:3a:1d:
f6:44:46:3e:8f:b9:3f:7c:35:e1:21:92:6b:50:0b:95:15:7c:
15:ee:33:18:83:bc:6c:97:d4:22:5d:b4:83:29:16:e2:2d:a1:
fd:d5:9f:b7:8f:0d:fd:0b:75:3d:31:18:f2:da:fc:7b:84:f0:
75:87:90:b6:14:c5:0b:14:12:82:60:4f:b5:25:1e:11:b8:08:
87:b9:42:50:6d:3a:7b:b6:33:8e:8c:ac:4d:50:30:46:ad:19:
89:ba:f0:59:14:b0:31:b7:3b:69:d3:55:74:cc:00:c6:f8:d7:
07:32:9c:9f:b0:49:c8:fe:22:78:88:29:d2:69:34:82:e2:f0:
4f:cf:15:ba:03:d8:e7:f2:3c:f6:a2:8f:10:81:64:c7:48:90:
6b:de:ff:8d:81:5c:d7:03:14:31:ad:92:4d:33:34:13:cd:95:
d8:29:4b:1f:d5:c6:1d:af:a0:4b:ae:86:e3:6a:9e:4d:69:50:
bf:69:8b:dd:9b:14:49:b0:21:e0:35:3a:cd:5f:eb:64:ef:71:
77:c0:4e:50:91:7f:ea:f9:9a:aa:d1:54:09:17:d8:28:7d:5a:
20:ac:53:ac:9f:23:76:58:b0:ff:3e:38:b3:16:9b:c8:4f:99:
be:18:21:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:05 2023 by rpki-client on console-fra.rpki-client.org