Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/U86qQJNiGGOsrmPXVeHx5j8MfzY.roa
File: U86qQJNiGGOsrmPXVeHx5j8MfzY.roa (raw, json)
Hash identifier: ppTqyWgWV2e4HV5jggXMtl2mKFliuVMeOGSRywGoOXk=
Subject key identifier: 53:CE:AA:40:93:62:18:63:AC:AE:63:D7:55:E1:F1:E6:3F:0C:7F:36
Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Certificate serial: 01857139B1ABC510D3CCD4F5973ABDA57D6A
Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/U86qQJNiGGOsrmPXVeHx5j8MfzY.roa
Signing time: Mon 02 Jan 2023 06:44:44 +0000
ROA not before: Mon 02 Jan 2023 06:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209311
IP address blocks: 178.219.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:b1:ab:c5:10:d3:cc:d4:f5:97:3a:bd:a5:7d:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Validity
Not Before: Jan 2 06:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53ceaa4093621863acae63d755e1f1e63f0c7f36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ef:f1:c7:13:c5:fe:a3:14:12:13:21:0a:29:
ce:a3:eb:4c:dd:8e:44:5e:4a:07:27:f5:af:66:b9:
9b:75:5f:88:af:d0:a8:d7:32:ce:e2:85:2e:6b:fb:
d1:f6:68:08:05:05:40:86:0e:3e:3c:e7:d8:5d:a0:
40:e6:a7:c8:1a:77:e6:18:6c:ae:a6:a7:a8:ac:49:
61:82:7c:c8:e3:29:6c:37:66:e4:8a:2c:40:20:27:
d5:33:94:66:ec:07:3e:a7:ef:68:68:a5:31:47:6a:
fa:50:a8:d8:5e:41:03:13:57:b1:ee:ad:c0:18:9c:
78:51:4a:5b:42:db:f2:f2:8a:dc:8d:7f:5e:d3:3c:
75:54:d9:e9:aa:26:75:3b:21:56:3c:36:84:78:cc:
cb:fb:f4:5a:80:a3:2b:20:01:1c:3a:d2:dd:2e:19:
96:57:11:de:f1:f2:99:c2:d9:30:fb:ec:3f:f8:42:
ca:a5:e1:6c:f2:52:43:c6:2b:aa:ca:33:83:85:9a:
67:c8:67:1b:d2:74:5d:25:6c:d5:d9:d8:a1:3d:2d:
02:ef:ef:a1:24:5e:bf:a6:a0:c5:8a:51:5b:b4:a4:
4e:59:41:9b:be:c4:92:97:06:fe:92:cb:f9:b1:53:
bd:87:9f:07:f1:75:65:fb:24:51:64:40:40:1d:3b:
e0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:CE:AA:40:93:62:18:63:AC:AE:63:D7:55:E1:F1:E6:3F:0C:7F:36
X509v3 Authority Key Identifier:
keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/U86qQJNiGGOsrmPXVeHx5j8MfzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.219.154.0/24
Signature Algorithm: sha256WithRSAEncryption
74:f2:6d:b6:61:89:42:60:6a:b2:84:cd:c5:dc:b2:a5:1a:e6:
bd:c6:d8:40:b2:91:49:95:5c:38:3e:77:bc:ad:99:36:38:0d:
c3:35:e6:5a:aa:16:16:07:f5:a3:b4:26:9a:ed:4a:99:be:97:
68:a1:ce:e3:60:8d:f9:ab:1c:23:3d:1e:0c:e1:5b:9d:a5:76:
9a:b3:5e:92:b9:b6:08:0f:ae:b3:c1:29:fc:72:1f:e9:c5:3e:
7d:b5:30:17:6d:ba:8c:28:2b:9e:44:b6:81:5a:59:d2:78:65:
6d:96:2b:91:84:66:67:b4:59:fc:40:d1:77:a9:b3:d2:64:07:
23:ca:d8:5d:cf:00:f1:57:e9:3f:20:56:79:25:2a:15:d6:c0:
91:d7:27:20:41:48:14:d5:4e:e0:32:28:2a:4f:c4:d4:a7:70:
d8:fb:dd:ad:4d:ed:81:62:f2:16:ac:6b:45:10:1f:1e:4d:1c:
41:94:37:3c:46:3a:a2:c3:c1:63:c0:76:11:4f:72:11:a1:db:
6f:14:99:dd:87:d2:4d:f3:ff:8a:6d:f5:9e:f6:7b:a2:48:c2:
9b:a5:f0:ad:7c:99:bc:21:c3:69:d7:00:87:2e:71:f4:bb:90:
66:23:82:4c:b0:8c:5a:85:34:1a:59:55:00:1c:46:7c:3b:14:
62:83:81:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:34 2024 by rpki-client on console-fra.rpki-client.org