Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/DfA_QR67FUthrJEPl0_5g97vsmY.roa
File: DfA_QR67FUthrJEPl0_5g97vsmY.roa (raw, json)
Hash identifier: EmZ7S9m6TOPRAGvJjVDhWLzycosggWKDe/yW1YXd1Eo=
Subject key identifier: 0D:F0:3F:41:1E:BB:15:4B:61:AC:91:0F:97:4F:F9:83:DE:EF:B2:66
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0187367733E105A8C40DCEACAB9A4401CB8B
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/DfA_QR67FUthrJEPl0_5g97vsmY.roa
Signing time: Fri 31 Mar 2023 06:59:54 +0000
ROA not before: Fri 31 Mar 2023 06:59:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44103
IP address blocks: 178.18.155.0/24 maxlen: 32
178.18.154.0/24 maxlen: 32
178.18.153.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 25 Apr 2023 04:48:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:36:77:33:e1:05:a8:c4:0d:ce:ac:ab:9a:44:01:cb:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Mar 31 06:59:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0df03f411ebb154b61ac910f974ff983deefb266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:71:e2:53:28:4e:07:4b:3a:8b:1a:c5:01:b5:
33:6c:02:1a:90:3c:ca:f6:5a:bb:27:3a:ee:ba:cd:
e0:2d:60:db:c5:a8:d5:11:63:08:c4:a8:ae:eb:6b:
26:64:57:0c:47:af:81:30:6f:00:2e:10:e4:7c:36:
13:7d:a8:e8:cf:be:00:bf:4f:e7:ea:aa:4e:2c:e6:
c4:9a:72:9b:90:17:8a:06:c4:c2:bb:1e:cc:1a:81:
53:cf:1f:c8:86:5b:4c:72:78:12:72:3f:85:1f:d5:
74:15:09:9c:ad:1c:a3:9b:db:cc:cc:07:87:ca:a4:
6f:2d:5e:fb:4a:ef:54:a6:fe:f3:4e:ca:cb:33:d8:
c7:0c:53:c7:51:fe:47:2d:d6:ce:44:65:4c:61:7e:
5f:d5:2c:f9:da:76:18:89:9d:86:32:2a:8a:6c:90:
8c:d7:de:32:37:90:b5:30:32:e5:1d:68:a5:50:f8:
77:de:14:3a:ee:fe:d4:68:18:e5:f3:e9:d7:80:82:
09:10:f8:89:69:0d:02:6f:f1:fb:b8:b1:59:43:97:
7c:7b:c4:6c:24:16:fe:af:2c:88:4e:41:35:65:c4:
3b:f8:05:19:30:3c:6e:89:e2:49:9b:55:0c:86:71:
a9:aa:43:60:16:bf:b0:86:c8:c3:97:17:37:1a:e2:
68:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:F0:3F:41:1E:BB:15:4B:61:AC:91:0F:97:4F:F9:83:DE:EF:B2:66
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/DfA_QR67FUthrJEPl0_5g97vsmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.18.153.0-178.18.155.255
Signature Algorithm: sha256WithRSAEncryption
a0:c6:83:93:46:9b:f0:8e:f8:a7:35:57:e7:88:e1:a8:51:f1:
1c:ca:54:c5:6c:a9:7a:6b:52:a7:c8:c8:4b:aa:33:bf:27:fc:
2b:4e:c9:17:72:e1:fe:79:32:d6:99:46:70:04:f1:22:69:3e:
a7:d5:15:7b:8b:b4:24:e3:9a:40:54:7a:0d:ec:d6:54:d5:09:
dd:a7:51:02:6d:56:a5:0a:52:e0:1d:be:bd:8b:20:c7:9f:0c:
3e:7b:4e:23:22:f0:ba:ec:c1:04:69:54:ab:8e:a4:6e:57:20:
6e:c6:89:3f:57:aa:1c:91:e7:a2:15:65:52:9f:a3:c5:d6:32:
b5:12:0f:8f:07:a7:ef:98:0d:f5:36:d7:fc:46:e0:97:61:57:
c4:21:03:9d:96:6e:b2:87:2b:d7:f8:f4:2d:c7:23:dd:39:8f:
5d:dc:49:38:0a:60:d4:5e:a2:a6:5a:3c:c0:74:65:ea:09:4d:
15:64:9f:2b:6a:da:06:a5:85:be:08:9c:66:56:da:6b:cb:dc:
5b:cf:0a:0f:8a:bd:b3:a4:6c:3e:44:16:73:b9:d1:4e:f1:db:
d6:6c:9e:df:cb:a1:5e:84:6a:4c:22:74:d7:1c:26:cf:74:2a:
74:d3:3e:6b:8d:21:f8:63:69:f9:0c:4e:f1:d8:6a:8f:86:49:
fd:2f:07:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org