Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/a72da1-af81-4787-a085-ff34a8ae901a/1/77WJvqbXsfY6k5w1cxOgw4pyunU.roa
File: 77WJvqbXsfY6k5w1cxOgw4pyunU.roa (raw, json)
Hash identifier: TjyGpLsH8mF7DNvIFWN3DqCTcyQPo4jd0KsihaKmMdM=
Subject key identifier: EF:B5:89:BE:A6:D7:B1:F6:3A:93:9C:35:73:13:A0:C3:8A:72:BA:75
Certificate issuer: /CN=f1f17ebcc2a525afcfc92218159caf52882978d2
Certificate serial: 018BFFAA4A4061623665A9DC3756C9220DBD
Authority key identifier: F1:F1:7E:BC:C2:A5:25:AF:CF:C9:22:18:15:9C:AF:52:88:29:78:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8fF-vMKlJa_PySIYFZyvUogpeNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/a72da1-af81-4787-a085-ff34a8ae901a/1/77WJvqbXsfY6k5w1cxOgw4pyunU.roa
Signing time: Fri 24 Nov 2023 04:50:32 +0000
ROA not before: Fri 24 Nov 2023 04:50:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197119
IP address blocks: 178.217.168.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ff:aa:4a:40:61:62:36:65:a9:dc:37:56:c9:22:0d:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1f17ebcc2a525afcfc92218159caf52882978d2
Validity
Not Before: Nov 24 04:50:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=efb589bea6d7b1f63a939c357313a0c38a72ba75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:1e:7c:b5:95:c6:67:ff:32:ae:06:b7:28:b2:
7f:77:66:38:b1:05:91:af:7d:d5:0c:9b:41:8d:c4:
22:68:8d:77:04:ff:ff:1e:34:49:62:8d:f5:f4:98:
df:8c:a1:21:39:d0:08:e5:8d:4c:1e:61:88:d0:ac:
cd:9d:bb:90:dd:34:32:1c:57:cc:0b:c7:89:24:57:
7c:6b:5d:4b:4a:62:9b:1f:83:2e:95:13:cb:f9:ab:
4a:c2:a0:29:44:79:cd:78:82:db:51:f4:c7:4e:71:
4a:eb:bf:1f:4c:2a:a4:24:c1:bc:ef:96:a8:70:ef:
25:a0:59:b2:1b:e2:be:55:12:4b:03:1a:af:73:e0:
98:9a:4f:ee:2d:8c:0f:cb:87:97:8e:d6:2c:9e:6a:
0a:e2:71:ab:a3:92:d6:61:93:d4:33:00:1e:aa:85:
19:c5:e0:2a:a8:76:93:0b:51:f7:33:10:e1:0e:4b:
f4:0a:10:ad:90:60:75:54:85:75:0c:b3:00:24:a3:
43:ce:a3:9e:b0:38:df:43:12:9d:8d:80:2f:2e:58:
73:e8:fa:7a:33:e2:27:37:69:44:6e:4a:13:dc:f4:
60:45:fd:dc:2b:76:67:db:f7:a5:25:2e:44:dc:95:
56:c6:c0:f6:10:28:ae:d7:ba:18:3a:20:1e:33:8d:
fd:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:B5:89:BE:A6:D7:B1:F6:3A:93:9C:35:73:13:A0:C3:8A:72:BA:75
X509v3 Authority Key Identifier:
keyid:F1:F1:7E:BC:C2:A5:25:AF:CF:C9:22:18:15:9C:AF:52:88:29:78:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8fF-vMKlJa_PySIYFZyvUogpeNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/a72da1-af81-4787-a085-ff34a8ae901a/1/77WJvqbXsfY6k5w1cxOgw4pyunU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/a72da1-af81-4787-a085-ff34a8ae901a/1/8fF-vMKlJa_PySIYFZyvUogpeNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.217.168.0/21
Signature Algorithm: sha256WithRSAEncryption
94:5f:a9:c5:b0:96:27:88:2c:7d:67:6f:ea:62:20:8e:d7:00:
d5:c1:30:fa:f9:16:b5:ac:1b:05:61:aa:3f:f8:ea:0f:88:3f:
3f:a2:4e:92:cf:72:a9:29:f6:e3:1a:99:38:34:69:dd:e6:44:
0d:c9:80:cc:88:31:b2:0e:2c:0a:6c:5c:00:81:72:07:b3:cf:
1b:d3:52:43:e7:2a:91:89:0c:0c:d5:76:53:b7:4f:c5:36:8e:
b6:69:10:dc:ef:51:61:58:c6:f3:72:12:24:83:aa:aa:f3:41:
2a:56:6b:13:8f:11:14:02:d5:86:b3:88:47:62:6d:e0:c4:cd:
25:4c:1d:cb:ef:44:2a:7e:33:f3:7c:cb:b2:fc:20:6d:e3:5d:
ac:fc:a7:70:e5:8b:19:c9:61:42:fd:b2:62:0e:1a:dc:90:7f:
03:e3:7b:ae:a4:af:13:5d:da:fd:29:26:37:5d:45:83:15:ee:
5d:8c:e1:53:ce:6b:ac:01:8a:f2:87:ce:bf:f3:86:1f:a4:1f:
9b:4f:31:2a:58:b8:7a:df:22:84:4d:a1:6d:cf:2f:1f:ea:21:
f4:0e:c6:a4:f2:ce:84:17:92:7a:f1:a2:15:45:79:a7:74:c7:
7a:5d:1e:b5:52:31:b0:82:e3:0f:b9:2c:91:2b:d1:f2:ef:07:
5e:e9:a8:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:23:39 2024 by rpki-client on console-fra.rpki-client.org