Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/329297-6eb1-47cf-8348-2350e24f03a7/1/wZfEvmQ-gV8izluOY7g8yPIwP4o.roa
File: wZfEvmQ-gV8izluOY7g8yPIwP4o.roa (raw, json)
Hash identifier: vZXU1kuFuwm+ANlsqRLWtB/6YztvAbwNijxOJNwVkms=
Subject key identifier: C1:97:C4:BE:64:3E:81:5F:22:CE:5B:8E:63:B8:3C:C8:F2:30:3F:8A
Certificate issuer: /CN=75d003bee173163d19a9927ab371221f95f10fd3
Certificate serial: 018570150CED5480761AA9BBBF6467C302F5
Authority key identifier: 75:D0:03:BE:E1:73:16:3D:19:A9:92:7A:B3:71:22:1F:95:F1:0F:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddADvuFzFj0ZqZJ6s3EiH5XxD9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/329297-6eb1-47cf-8348-2350e24f03a7/1/wZfEvmQ-gV8izluOY7g8yPIwP4o.roa
Signing time: Mon 02 Jan 2023 01:25:05 +0000
ROA not before: Mon 02 Jan 2023 01:25:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39855
IP address blocks: 178.211.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:0c:ed:54:80:76:1a:a9:bb:bf:64:67:c3:02:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75d003bee173163d19a9927ab371221f95f10fd3
Validity
Not Before: Jan 2 01:25:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c197c4be643e815f22ce5b8e63b83cc8f2303f8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e5:9d:fc:cc:bd:cb:7a:a1:43:37:00:1d:a8:
21:16:0f:34:27:a7:31:6c:bf:98:e9:68:52:53:a8:
a6:e2:7c:ea:e6:39:d5:2b:f5:a0:f1:03:bd:1a:a3:
4d:be:32:13:69:90:ff:94:88:10:22:5f:89:d0:b4:
ab:24:3b:44:40:56:47:00:ed:61:89:45:e4:c0:3e:
48:85:7a:e2:ce:bc:1e:43:e4:f6:c8:54:b8:b9:84:
49:e6:48:84:68:56:bc:ee:6b:2e:b8:cf:09:23:b3:
42:12:92:68:52:ff:3b:4e:d8:1f:9b:92:c3:8f:34:
a3:68:ec:d8:2a:4f:a8:d1:08:d6:a6:56:65:67:79:
22:74:d6:61:2a:60:64:30:4c:dc:cc:3e:99:95:24:
80:c0:25:2c:39:ea:1f:f1:aa:f1:9b:22:e4:04:d8:
3c:35:e0:84:f8:7d:f4:a8:f4:69:73:e0:da:04:50:
32:a6:05:84:c3:3a:b3:de:e5:0f:30:c4:cd:43:b8:
77:89:09:39:f4:5b:3c:09:95:71:09:da:86:bc:1d:
c8:36:0c:c6:85:22:1c:d1:c6:7d:54:28:e4:b6:cc:
50:78:d0:75:56:4f:6e:cc:61:e9:3f:20:f0:30:bd:
fc:1e:98:a5:e7:84:3d:e6:60:1b:dd:88:1b:1e:63:
13:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:97:C4:BE:64:3E:81:5F:22:CE:5B:8E:63:B8:3C:C8:F2:30:3F:8A
X509v3 Authority Key Identifier:
keyid:75:D0:03:BE:E1:73:16:3D:19:A9:92:7A:B3:71:22:1F:95:F1:0F:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddADvuFzFj0ZqZJ6s3EiH5XxD9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/329297-6eb1-47cf-8348-2350e24f03a7/1/wZfEvmQ-gV8izluOY7g8yPIwP4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/329297-6eb1-47cf-8348-2350e24f03a7/1/ddADvuFzFj0ZqZJ6s3EiH5XxD9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.211.154.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:cd:af:ec:7c:66:c6:9f:41:e9:6a:9d:7d:e8:f4:e7:8a:85:
e5:ea:e6:db:0f:77:ae:46:da:5a:6f:64:16:a5:4e:3f:14:52:
c4:f7:df:f5:eb:33:49:c2:2d:02:3f:97:13:5b:34:a0:47:36:
54:44:b0:8d:33:b4:5c:35:a4:51:18:c2:7e:97:19:7b:43:9a:
c5:b9:52:fd:f7:92:5b:fe:1e:9e:05:59:c6:49:6d:a5:9f:04:
7c:af:fa:4d:69:cc:ed:e2:bc:81:aa:ed:81:d4:75:a7:6f:b4:
84:4a:6e:87:ec:21:83:d3:08:82:47:08:d7:36:ed:88:1b:49:
d6:64:ce:9d:e6:83:73:25:78:9c:32:6f:a8:50:a5:27:80:38:
49:b7:19:f9:ee:9a:e2:08:a8:34:b4:7a:d8:9b:19:b7:75:72:
48:43:79:74:4c:fd:e7:00:ad:52:f0:d0:f2:7c:0a:76:07:66:
3d:62:4b:23:15:a8:55:d8:ec:00:d8:9a:93:ef:0f:15:c1:18:
e0:26:a9:0b:48:3b:c0:aa:79:06:7e:f8:bf:fb:e6:4d:87:3f:
0a:91:49:a6:81:b5:e5:c1:7f:d5:31:60:b4:6b:a9:8f:7a:ac:
41:f7:0e:a1:53:88:64:94:b0:9f:28:13:52:ec:a5:c7:c8:fd:
09:3f:be:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:18 2024 by rpki-client on console-ams.rpki-client.org