Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/PygMwb8zoyw0Zztpf-oVieurdr8.roa
File: PygMwb8zoyw0Zztpf-oVieurdr8.roa (raw, json)
Hash identifier: lkLHIXqBrUxmgHW25s/dlGkmNtQC2GiSfQrhq2NACQ0=
Subject key identifier: 3F:28:0C:C1:BF:33:A3:2C:34:67:3B:69:7F:EA:15:89:EB:AB:76:BF
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0188F1A70B459BB33DB9B72A9BE5A4E124CD
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/PygMwb8zoyw0Zztpf-oVieurdr8.roa
Signing time: Sun 25 Jun 2023 08:23:56 +0000
ROA not before: Sun 25 Jun 2023 08:23:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 146839
IP address blocks: 178.173.224.0/19 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Aug 2023 10:18:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f1:a7:0b:45:9b:b3:3d:b9:b7:2a:9b:e5:a4:e1:24:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jun 25 08:23:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f280cc1bf33a32c34673b697fea1589ebab76bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:bc:05:8f:3b:e5:b8:1b:12:24:d7:25:9b:5e:
a2:c7:b2:00:1d:25:1e:6e:70:c4:fe:4b:cf:61:79:
c8:1d:2e:14:3a:2b:1c:3a:8c:07:68:75:9a:7c:01:
8c:d6:eb:fb:be:7d:57:4d:bd:8a:37:63:ca:40:f5:
4e:2c:e6:df:36:aa:e6:cd:b9:77:88:0f:51:c5:d3:
14:75:db:e1:12:12:3d:cc:20:3f:68:e5:fc:9f:d4:
a7:4a:66:55:33:ac:99:1b:bd:78:cc:12:53:62:26:
c8:27:f9:d6:fe:aa:ec:57:93:3d:a5:c7:51:45:3c:
97:01:5f:bf:5b:26:cf:a1:ab:32:0f:3b:19:1b:26:
4e:b7:83:58:62:e3:78:30:bf:b2:b8:c3:97:e0:2a:
42:3b:7d:c6:7f:5e:57:d8:d1:47:90:97:33:08:c5:
d3:c5:bd:0c:11:6d:e9:51:f2:8d:19:3d:2d:11:6b:
d7:eb:f3:0f:dc:9c:0b:c3:e5:d2:d5:a5:eb:19:d9:
2f:18:2f:9a:a7:7c:7f:b2:cb:c9:40:2e:6c:38:cd:
f5:49:a5:50:d4:cc:26:95:d3:d5:ef:cb:f6:27:0d:
d5:18:53:9d:a9:1f:b2:c8:fb:11:38:d3:79:e9:1e:
de:76:a1:7d:fb:59:c0:be:0c:f8:53:13:59:18:62:
0e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:28:0C:C1:BF:33:A3:2C:34:67:3B:69:7F:EA:15:89:EB:AB:76:BF
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/PygMwb8zoyw0Zztpf-oVieurdr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.173.224.0/19
Signature Algorithm: sha256WithRSAEncryption
d3:21:ba:ed:3f:32:a8:7e:6b:e4:af:9f:52:fd:0e:de:89:61:
2d:f0:44:37:4a:17:3f:45:62:71:2e:97:ab:22:ca:3f:a8:d6:
48:25:70:11:b7:74:48:c5:a6:00:92:d3:73:d3:cc:3d:ed:0b:
e5:8c:54:28:8f:04:82:31:07:f5:fa:7c:b0:02:e6:cc:dd:c7:
20:bf:e5:cb:1a:a1:39:b5:67:35:ea:8b:ce:63:1c:6e:f2:fa:
bf:3e:e4:20:a9:16:bd:b6:f3:17:6b:74:65:7f:cd:1c:b3:46:
46:84:cd:65:65:1e:e7:ab:f5:6b:17:0f:be:6a:c8:ee:d4:92:
ba:9b:ec:7c:e3:86:7d:fa:15:a9:b0:37:ed:5a:98:45:c4:1a:
25:f3:d1:80:43:e7:e2:59:57:2c:78:47:00:76:6f:ba:6d:f0:
dc:e9:fa:0a:13:b3:74:f0:c2:b0:c5:cc:83:18:a9:d9:46:ae:
d1:4b:c3:ce:3b:01:5c:91:8b:ca:78:11:9d:ef:6f:da:7c:57:
d5:6c:7c:9c:c8:b5:cc:ba:cd:8c:39:4f:09:a7:bd:30:2b:b9:
c5:3f:3e:c6:10:4b:d9:ad:15:ed:56:c6:fc:0b:4c:ef:0d:9f:
f3:ff:00:83:96:97:cd:95:1e:3d:8e:b4:2a:e1:66:39:5d:02:
c0:40:9b:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:35 2024 by rpki-client on console-fra.rpki-client.org