Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/6453c0-47f8-4cf8-a2fb-524c4ef230c9/1/LCrnjkrgvbvIt1ljDr1ztzflgnQ.roa
File: LCrnjkrgvbvIt1ljDr1ztzflgnQ.roa (raw, json)
Hash identifier: YyufxRVf1bzRApbHSYkPt/KuJKzklW28sKZzMerigEI=
Subject key identifier: 2C:2A:E7:8E:4A:E0:BD:BB:C8:B7:59:63:0E:BD:73:B7:37:E5:82:74
Certificate issuer: /CN=2c9dec8ecd012596869b51483c20e94dd9b41fc4
Certificate serial: 01856BAED198A36717255DB1D9BBA224F62F
Authority key identifier: 2C:9D:EC:8E:CD:01:25:96:86:9B:51:48:3C:20:E9:4D:D9:B4:1F:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LJ3sjs0BJZaGm1FIPCDpTdm0H8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/6453c0-47f8-4cf8-a2fb-524c4ef230c9/1/LCrnjkrgvbvIt1ljDr1ztzflgnQ.roa
Signing time: Sun 01 Jan 2023 04:54:56 +0000
ROA not before: Sun 01 Jan 2023 04:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 178.23.191.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:d1:98:a3:67:17:25:5d:b1:d9:bb:a2:24:f6:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c9dec8ecd012596869b51483c20e94dd9b41fc4
Validity
Not Before: Jan 1 04:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c2ae78e4ae0bdbbc8b759630ebd73b737e58274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:18:cf:2f:d3:1f:63:7e:2c:f9:63:9e:b6:dd:
65:e4:58:bd:df:8d:e9:41:c3:de:dd:94:fc:85:2b:
fb:cf:86:fd:f4:33:30:9b:1b:3f:2e:33:82:1f:92:
34:aa:70:47:15:fb:9e:e8:f5:d4:b3:fa:52:9e:21:
71:d6:81:29:89:88:cf:be:83:fc:10:41:d1:cc:64:
38:e6:85:1d:b0:7c:17:70:f4:c2:43:3a:92:18:e5:
fe:d5:d9:60:41:ce:73:9e:25:8f:6a:1d:8e:42:03:
58:46:7b:d3:da:ef:93:f3:38:b5:2a:3e:54:cd:52:
98:9e:e9:a8:20:95:02:c5:20:bc:78:98:e0:47:e4:
b7:0f:93:9b:64:10:08:9f:f8:d2:90:22:4c:2e:21:
5c:62:1b:84:88:c5:1f:2c:48:60:29:8c:5a:19:1c:
ba:a2:1b:ab:90:0a:da:21:06:43:48:00:63:c8:72:
9d:d3:55:89:e9:0a:3d:0f:8d:58:fe:18:bc:8f:5d:
0e:a4:40:d0:74:39:77:7c:5c:04:75:32:2f:66:29:
ba:b0:03:07:31:66:e1:12:8d:98:3e:72:ea:36:cc:
a0:38:95:9c:8a:e5:de:f4:04:b9:ce:95:1e:d2:e0:
69:3a:6d:0d:01:15:ee:41:2a:62:60:c0:9b:2a:2c:
6e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:2A:E7:8E:4A:E0:BD:BB:C8:B7:59:63:0E:BD:73:B7:37:E5:82:74
X509v3 Authority Key Identifier:
keyid:2C:9D:EC:8E:CD:01:25:96:86:9B:51:48:3C:20:E9:4D:D9:B4:1F:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LJ3sjs0BJZaGm1FIPCDpTdm0H8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6453c0-47f8-4cf8-a2fb-524c4ef230c9/1/LCrnjkrgvbvIt1ljDr1ztzflgnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6453c0-47f8-4cf8-a2fb-524c4ef230c9/1/LJ3sjs0BJZaGm1FIPCDpTdm0H8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.23.191.0/24
Signature Algorithm: sha256WithRSAEncryption
34:bb:ed:9f:da:d9:31:4d:6e:e9:64:18:3e:63:5a:8d:69:47:
2f:52:af:df:4a:90:2e:20:0f:c5:25:ac:72:d9:db:a6:1f:7b:
a9:e7:aa:75:a8:4e:64:b2:3e:db:88:05:88:f1:43:2a:82:c8:
ec:db:cb:f1:75:b5:1d:ea:62:99:c7:44:98:d5:32:a0:d7:8b:
a3:6f:d3:a7:53:99:6c:5d:93:9d:c7:8a:ba:b0:4f:3d:f0:5d:
b1:03:9d:90:25:c5:f5:dd:15:5e:67:81:68:d1:c1:74:aa:08:
46:36:99:1f:5f:40:e5:b4:0b:a5:a3:dd:6b:0c:99:b5:a7:88:
18:17:f3:28:63:69:9e:37:c8:4e:f3:be:c0:65:ab:ad:40:dd:
aa:f5:3e:ae:b7:93:14:95:41:ec:9d:a4:cf:4d:17:9b:b1:23:
f7:81:e9:89:c4:7d:72:40:67:f2:c0:fe:b2:78:52:f9:ac:dd:
af:8d:8f:55:7b:ed:28:90:f7:9e:8f:0d:7c:54:73:87:3a:3f:
27:f5:a5:0f:73:81:71:2c:0c:98:5c:b1:2d:fd:0a:08:19:7f:
fa:69:5f:57:aa:a5:6f:64:eb:dc:ec:30:ff:01:09:37:12:93:
99:bc:6b:ef:f1:93:5c:be:95:d4:e5:93:0e:d0:15:c5:ef:cc:
4d:00:66:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:16 2023 by rpki-client on console-fra.rpki-client.org