Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/eGKN-dqPyikCvbsETsfgux6N62w.roa
File: eGKN-dqPyikCvbsETsfgux6N62w.roa (raw, json)
Hash identifier: y+VvaPLIt6p6NmdU5RZu6VlHWvErTzJb6hGCbjlwAKk=
Subject key identifier: 78:62:8D:F9:DA:8F:CA:29:02:BD:BB:04:4E:C7:E0:BB:1E:8D:EB:6C
Certificate issuer: /CN=836528e152b6dcba1571241ac55be5bce01118b7
Certificate serial: 018571553F4274E75CB02D8D5A78D8F340D6
Authority key identifier: 83:65:28:E1:52:B6:DC:BA:15:71:24:1A:C5:5B:E5:BC:E0:11:18:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2Uo4VK23LoVcSQaxVvlvOARGLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/eGKN-dqPyikCvbsETsfgux6N62w.roa
Signing time: Mon 02 Jan 2023 07:14:50 +0000
ROA not before: Mon 02 Jan 2023 07:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29286
IP address blocks: 178.132.56.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:3f:42:74:e7:5c:b0:2d:8d:5a:78:d8:f3:40:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=836528e152b6dcba1571241ac55be5bce01118b7
Validity
Not Before: Jan 2 07:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78628df9da8fca2902bdbb044ec7e0bb1e8deb6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:1f:2f:ac:db:14:79:2b:1e:99:b2:6d:a7:95:
d3:be:56:c6:c3:ba:55:94:d7:2b:10:66:72:f7:ea:
6c:ec:88:67:cf:73:07:2c:87:b3:70:51:e4:33:30:
3c:c8:5a:93:83:cf:df:05:63:8c:54:3d:30:5e:75:
30:90:8a:35:9c:ff:8d:15:13:f2:b7:99:1e:0c:23:
06:17:ff:b8:c5:42:10:f1:73:38:5f:a1:44:cd:f6:
44:24:08:58:87:b2:8b:ee:03:bd:04:ee:a0:ab:19:
1a:26:dd:c3:3c:c2:13:c7:57:9b:61:90:ab:44:bd:
b7:e7:8e:d9:fd:b7:cd:d8:e2:18:aa:a6:93:5b:2f:
ef:ad:f3:f1:5e:a7:74:aa:f8:ba:cf:73:74:d4:39:
50:7a:e9:51:c8:ae:0c:47:bf:b7:13:cb:76:c9:13:
38:b8:b3:d8:ab:09:55:63:6d:ad:74:f0:46:d6:89:
5c:bd:c8:98:af:4f:d1:8b:c1:34:24:74:cd:7a:34:
ed:7d:8e:66:da:a9:2b:0a:a2:07:99:e8:e9:83:83:
09:0d:80:85:55:02:a4:ab:26:fb:71:32:1b:4f:49:
2d:85:9d:95:8f:81:12:d2:9d:1d:05:ce:f2:52:7d:
c3:52:80:ba:2e:36:b2:e9:f8:2a:16:a9:35:9a:bf:
64:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:62:8D:F9:DA:8F:CA:29:02:BD:BB:04:4E:C7:E0:BB:1E:8D:EB:6C
X509v3 Authority Key Identifier:
keyid:83:65:28:E1:52:B6:DC:BA:15:71:24:1A:C5:5B:E5:BC:E0:11:18:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2Uo4VK23LoVcSQaxVvlvOARGLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/eGKN-dqPyikCvbsETsfgux6N62w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/g2Uo4VK23LoVcSQaxVvlvOARGLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.132.56.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:69:36:83:5b:7c:e7:00:52:0e:ab:20:2e:bd:fd:af:2d:76:
2d:a8:ce:ba:e0:cf:fa:2d:e8:00:12:71:f9:d0:6d:cd:22:09:
f7:a0:01:3b:a2:cf:64:4b:08:b4:6c:68:c0:af:08:ac:13:ad:
40:af:56:15:ab:e6:b6:95:fd:c7:28:6f:da:e5:b2:eb:d7:60:
35:bf:71:46:70:37:1e:cd:d2:12:3e:b2:bd:14:a8:03:c2:a1:
e1:06:51:3d:73:43:d8:c0:9d:2a:2e:32:de:ea:d7:e5:13:e1:
c6:e3:bb:6f:3f:47:d1:4d:2f:df:50:64:2d:e4:ae:ea:4f:77:
ff:c1:27:dd:fd:eb:2e:3f:0c:b8:35:cf:ce:16:b0:74:9c:6b:
65:14:14:0e:27:07:58:70:5f:92:06:5c:df:ea:78:63:6b:d4:
c9:40:05:87:8e:00:48:95:95:93:ff:63:4c:20:70:5f:a1:ec:
f3:27:b0:64:cf:b2:24:b0:05:d6:5f:08:b1:6a:a6:07:1e:cc:
64:a1:e7:37:cb:50:6e:43:fb:1e:45:cc:0d:21:b5:f5:95:23:
fd:30:1b:bf:32:fd:57:ba:95:91:ef:24:e5:d8:44:99:95:df:
a6:7d:05:8f:bf:12:e7:7b:89:bb:68:7a:c1:17:6c:61:f6:d6:
87:2f:df:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:02 2024 by rpki-client on console-fra.rpki-client.org