Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/ryHtJcXS-9PlOvAeJ8DtaqqtYJk.roa
File: ryHtJcXS-9PlOvAeJ8DtaqqtYJk.roa (raw, json)
Hash identifier: gBm/MiDVTDE5phYWFtZEjHPfIHPOlttTG3k1U28xYTA=
Subject key identifier: AF:21:ED:25:C5:D2:FB:D3:E5:3A:F0:1E:27:C0:ED:6A:AA:AD:60:99
Certificate issuer: /CN=fd261d45319e8375187436da44bf5b9adb044a7f
Certificate serial: 0185730C9A24B9AC245F8120F4149E55CC09
Authority key identifier: FD:26:1D:45:31:9E:83:75:18:74:36:DA:44:BF:5B:9A:DB:04:4A:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_SYdRTGeg3UYdDbaRL9bmtsESn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/ryHtJcXS-9PlOvAeJ8DtaqqtYJk.roa
Signing time: Mon 02 Jan 2023 15:14:43 +0000
ROA not before: Mon 02 Jan 2023 15:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207733
IP address blocks: 178.250.134.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 25 Jan 2023 16:40:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:9a:24:b9:ac:24:5f:81:20:f4:14:9e:55:cc:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd261d45319e8375187436da44bf5b9adb044a7f
Validity
Not Before: Jan 2 15:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af21ed25c5d2fbd3e53af01e27c0ed6aaaad6099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f2:a5:ed:26:d1:7c:7c:f6:aa:f1:42:42:54:
4c:57:b8:2f:4e:e5:d4:a8:7c:e1:cb:4d:1e:b5:95:
8e:15:cf:21:5f:c6:d9:07:13:4c:74:d8:35:42:c6:
53:46:a0:11:bb:2f:94:cb:49:88:4c:da:02:c5:3c:
8e:c9:7e:1c:3d:94:84:45:35:de:fa:61:e5:63:5c:
a0:b0:17:1c:74:3e:90:e5:39:e8:af:12:72:aa:18:
1a:60:34:a6:09:6e:ad:78:4a:30:63:31:b8:c6:7c:
30:2f:1e:b8:0d:dc:f4:cf:27:44:fc:4f:34:fe:c1:
19:b2:fb:d9:d7:63:5a:b1:df:cf:c9:4e:61:9b:c9:
b4:94:ad:b4:c9:db:36:2e:e2:6e:be:6e:23:fd:25:
31:f6:05:f0:55:98:ca:4a:ca:7a:c4:d8:6f:77:80:
aa:f4:92:20:88:49:91:40:34:e2:95:91:06:d6:cf:
ec:97:40:95:a7:8b:02:be:1c:57:2a:82:97:f7:de:
c0:4e:51:bc:a0:9f:76:91:ed:88:a1:7b:26:af:73:
d0:ee:e6:ca:6d:e6:10:4d:a6:22:ec:14:50:68:07:
26:8e:84:01:8c:e0:75:bd:13:ef:1f:96:8c:0c:7c:
f8:f0:50:6d:07:db:98:97:60:a3:a0:c5:81:1f:e1:
0d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:21:ED:25:C5:D2:FB:D3:E5:3A:F0:1E:27:C0:ED:6A:AA:AD:60:99
X509v3 Authority Key Identifier:
keyid:FD:26:1D:45:31:9E:83:75:18:74:36:DA:44:BF:5B:9A:DB:04:4A:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_SYdRTGeg3UYdDbaRL9bmtsESn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/ryHtJcXS-9PlOvAeJ8DtaqqtYJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/_SYdRTGeg3UYdDbaRL9bmtsESn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.250.134.0/23
Signature Algorithm: sha256WithRSAEncryption
70:6a:47:ab:bb:60:ed:2c:0f:32:26:a8:f4:8b:49:9e:57:bc:
00:e3:c9:51:b4:3e:23:14:b7:4a:33:52:4d:01:ce:f9:e7:a5:
ca:83:19:f5:dd:f8:b2:a0:b1:40:11:4b:57:04:d7:02:85:7f:
7e:b4:4b:41:15:ff:00:31:1b:89:fa:97:29:ef:ac:91:36:6f:
d5:cc:6e:17:47:bc:60:64:3d:ca:aa:ff:b9:2c:7e:eb:c5:71:
06:43:9a:6d:99:05:07:d2:32:39:fb:90:f4:e3:22:c2:c3:98:
ac:08:bd:4b:d2:1d:91:d2:74:b6:3e:92:b8:b5:53:bf:43:2a:
f8:eb:eb:9d:92:d2:fd:a1:17:f3:3f:5b:de:91:1e:b8:78:38:
09:d3:9b:e7:03:c8:4e:e8:6b:01:c7:1e:40:8e:73:ef:f0:07:
a1:76:c3:b4:4e:54:65:44:1c:5b:ce:9d:f6:cf:b7:0f:09:5d:
39:0e:4a:31:78:33:8f:0f:89:66:3a:15:c7:2b:67:87:71:78:
fc:8a:d3:d1:5e:1a:f4:b0:3a:58:f3:88:23:62:54:f2:34:f9:
20:15:24:bb:9a:78:40:46:d9:0e:b7:5b:d6:5a:e4:46:3c:ce:
2c:4d:aa:c3:98:03:53:8e:39:e9:05:f9:f1:97:b3:88:76:29:
1a:fb:df:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:50 2024 by rpki-client on console-ams.rpki-client.org