Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/6rU45ZOHZCYhq1Ur9y5HQm5lv-E.roa
File: 6rU45ZOHZCYhq1Ur9y5HQm5lv-E.roa (raw, json)
Hash identifier: 7fG/3X7PpvFCLycXP1zzRcWQSGiYOx8Q4z8MAQmcOnY=
Subject key identifier: EA:B5:38:E5:93:87:64:26:21:AB:55:2B:F7:2E:47:42:6E:65:BF:E1
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 01856FA6F49E2CD7DF118E9907E7E7D72430
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/6rU45ZOHZCYhq1Ur9y5HQm5lv-E.roa
Signing time: Sun 01 Jan 2023 23:24:50 +0000
ROA not before: Sun 01 Jan 2023 23:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211504
IP address blocks: 178.175.167.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:f4:9e:2c:d7:df:11:8e:99:07:e7:e7:d7:24:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: Jan 1 23:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eab538e59387642621ab552bf72e47426e65bfe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:66:8a:1c:ec:47:43:e1:05:b5:18:59:44:02:
f1:6a:5b:dc:53:ad:61:d5:02:de:05:34:f7:b9:6b:
92:54:36:14:b7:e3:4a:ac:d5:e1:f5:3a:54:47:d1:
11:03:5f:9d:2c:a0:e8:84:d8:80:54:4f:2f:ae:49:
28:80:57:7b:ae:d8:bd:0c:83:65:20:d9:ee:37:bf:
33:74:22:d7:d4:18:fd:84:01:69:bc:2f:01:38:68:
ca:b8:29:a2:d7:56:49:80:40:9a:61:a9:e8:c5:1f:
b3:59:9a:83:8e:0a:ee:7e:32:56:60:72:a9:fc:ea:
59:5a:7e:c6:41:39:67:08:1b:0d:58:00:96:5d:4c:
62:e0:b6:54:91:b0:36:10:2d:a9:9e:5c:04:f1:b8:
9b:cb:b9:e9:c7:ce:4c:62:c4:05:80:34:b1:41:68:
53:ba:14:9c:eb:67:dc:53:cc:d3:3f:a6:40:88:f6:
8d:05:83:9e:f5:34:0e:88:ea:1b:8f:5f:8a:c6:16:
6d:75:84:3c:0b:d8:0e:e3:4c:72:3a:51:9a:e0:6f:
c5:c6:a4:b6:6c:98:b5:f6:83:ff:df:72:9c:f6:16:
55:40:11:b1:b4:11:e0:20:7c:67:9f:b1:86:a9:0d:
31:a9:13:6b:e8:b4:84:55:ee:19:06:de:2f:64:bb:
f1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:B5:38:E5:93:87:64:26:21:AB:55:2B:F7:2E:47:42:6E:65:BF:E1
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/6rU45ZOHZCYhq1Ur9y5HQm5lv-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.167.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:dd:02:dc:35:40:50:5f:4c:65:49:ca:95:08:71:55:5a:f4:
0b:fc:7a:07:48:c3:47:5c:0b:5b:8b:cc:5f:79:46:d8:0c:b3:
35:9d:da:93:b8:b5:f1:d3:d6:30:f0:39:45:83:99:3a:e5:3c:
17:13:20:d9:16:e1:d1:cc:ae:ab:a6:3d:43:cc:30:f5:56:14:
59:1c:71:cf:1d:cd:fe:da:fe:1f:c4:99:08:57:85:c5:19:c1:
35:94:49:e1:e9:90:d3:8c:5b:b2:64:35:a7:49:97:34:76:0e:
17:d4:0f:ed:7a:ee:11:58:fb:a6:02:99:0d:36:64:7c:1f:45:
39:9a:4a:08:61:7a:8d:79:5d:1c:0d:f6:14:49:7c:b0:f0:6e:
98:11:9d:43:e1:43:91:fb:1a:0b:bc:2d:1d:78:87:b0:1d:6b:
70:8f:01:5e:55:e4:cd:bc:28:ee:c3:00:e2:7c:d6:00:d6:20:
2c:27:eb:80:ed:0f:5e:cf:e3:ad:2c:49:09:1a:d4:dc:93:d4:
4f:83:4e:62:e7:f5:de:75:3e:35:aa:31:a3:cd:a1:61:d4:53:
f7:b3:75:99:5d:e2:5a:28:83:e1:b1:eb:48:fa:af:11:85:69:
94:75:58:65:89:04:7f:d4:24:4e:ab:30:4c:1a:f3:bb:69:16:
8f:7b:2b:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:18:56 2024 by rpki-client on console-fra.rpki-client.org