Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/ogVsZCH-hC9MNDU_Fr49Ipg-LdE.roa
File: ogVsZCH-hC9MNDU_Fr49Ipg-LdE.roa (raw, json)
Hash identifier: ilzJbFhtPW0gLVOaIiO9M+SoXjxP/usglU9BIg6Eo5o=
Subject key identifier: A2:05:6C:64:21:FE:84:2F:4C:34:35:3F:16:BE:3D:22:98:3E:2D:D1
Certificate issuer: /CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692
Certificate serial: 01868F7464A314356F73AF4AF39531CF09A9
Authority key identifier: 87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/ogVsZCH-hC9MNDU_Fr49Ipg-LdE.roa
Signing time: Sun 26 Feb 2023 20:40:15 +0000
ROA not before: Sun 26 Feb 2023 20:40:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210546
IP address blocks: 178.250.189.0/24 maxlen: 24
178.250.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:8f:74:64:a3:14:35:6f:73:af:4a:f3:95:31:cf:09:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692
Validity
Not Before: Feb 26 20:40:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2056c6421fe842f4c34353f16be3d22983e2dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ee:b9:b1:0a:7d:06:e7:ac:b8:ad:9a:cc:d8:
02:55:44:24:ce:ab:12:80:6d:09:e2:f0:3a:b8:ad:
57:41:72:89:d4:0b:38:57:35:43:ff:7d:e2:10:8e:
75:58:c9:92:f3:9a:27:55:4c:33:45:bf:e6:c4:6c:
b5:79:3a:16:e4:35:da:a2:1b:f3:1a:c1:c5:8a:d7:
d3:71:f1:f4:01:50:16:35:76:3f:a1:64:a1:79:ea:
c1:22:98:9f:e9:61:02:1f:81:7f:5b:57:54:de:79:
03:ca:4e:de:67:8b:b2:71:87:05:f2:68:77:b5:91:
03:e7:0c:aa:30:31:ce:37:73:0f:0c:5f:4d:17:ae:
e3:85:2f:c8:cf:26:a7:70:7e:4f:25:84:f5:25:04:
93:6a:98:b0:0e:33:89:07:48:d1:7a:4c:ea:62:b5:
88:8d:b2:ac:ab:7d:52:27:54:81:1f:33:c3:e6:2b:
6c:f5:3d:c5:36:61:15:ab:a9:f1:2a:9d:bf:c8:e0:
4b:60:8b:7a:3b:aa:b1:e6:9e:31:82:9a:9d:e2:c8:
35:0a:5d:d8:1b:79:91:5a:43:91:ba:ff:34:3a:96:
cc:9a:5e:ca:4e:ea:21:b8:0a:96:e7:8b:78:15:4b:
aa:39:b9:81:59:a2:ea:66:b8:09:ca:40:68:18:21:
a9:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:05:6C:64:21:FE:84:2F:4C:34:35:3F:16:BE:3D:22:98:3E:2D:D1
X509v3 Authority Key Identifier:
keyid:87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/ogVsZCH-hC9MNDU_Fr49Ipg-LdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.250.186.0/24
178.250.189.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:b1:33:c8:45:ad:31:af:a0:af:0c:ec:e8:84:fb:53:a3:54:
27:1c:6b:25:cf:45:48:73:70:ab:8f:8a:32:c9:6f:b6:57:bb:
38:27:4c:80:cc:ea:3f:e2:be:4e:7d:e7:c4:62:bb:8c:47:73:
a6:54:1a:c6:de:c2:a7:3f:98:7c:c1:c0:1f:76:80:ad:7f:b2:
6a:9d:4e:c9:53:14:09:ff:82:4e:68:78:fc:04:92:21:26:f5:
a1:d2:94:ca:59:c1:2f:15:3d:1e:e0:90:6e:80:34:3e:1b:ea:
af:fb:f3:ff:41:51:b6:cc:2b:76:18:d3:5e:c4:cc:b8:98:1b:
8f:0f:f8:50:9c:15:f1:a9:d1:2d:06:c5:d9:fa:b8:86:8c:df:
1b:f8:f4:91:7b:4c:e9:be:69:2e:e9:a3:33:96:bb:68:12:d4:
97:10:ce:1f:5b:55:59:70:58:d0:ce:83:43:1c:b5:52:1d:28:
80:d1:0f:f1:b4:62:80:34:74:01:fd:93:72:e3:c8:04:17:ab:
ea:fd:c9:eb:f9:91:6d:a4:0b:87:62:6f:18:2b:6d:c9:86:4a:
13:d9:79:ed:36:92:7b:5e:43:3c:f6:6a:b4:cc:49:83:57:bf:
bb:fe:23:65:7c:83:e9:43:ed:1e:80:cf:16:b8:dd:f5:03:20:
43:ce:fd:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:33 2024 by rpki-client on console-fra.rpki-client.org