Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/WPD7dYrcKJCsszvUdcFcsWKAnoY.roa
File: WPD7dYrcKJCsszvUdcFcsWKAnoY.roa (raw, json)
Hash identifier: RIe5ixKm48tov1b/oT3wyupvOPITz6XN6Iv74uBGtO0=
Subject key identifier: 58:F0:FB:75:8A:DC:28:90:AC:B3:3B:D4:75:C1:5C:B1:62:80:9E:86
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 018B10C36AA520B4CB4AB8EAD7E244D85686
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/WPD7dYrcKJCsszvUdcFcsWKAnoY.roa
Signing time: Sun 08 Oct 2023 19:28:44 +0000
ROA not before: Sun 08 Oct 2023 19:28:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205570
IP address blocks: 178.254.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:10:c3:6a:a5:20:b4:cb:4a:b8:ea:d7:e2:44:d8:56:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Oct 8 19:28:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58f0fb758adc2890acb33bd475c15cb162809e86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:37:5e:a9:1c:05:13:55:cb:22:8e:65:14:b0:
dc:7f:27:e4:3a:0a:21:94:5c:58:f8:b1:f1:0e:71:
ec:8a:47:25:56:41:90:29:7b:af:35:e5:5e:9d:66:
2a:1d:f6:8f:c6:a7:f0:15:91:9c:78:db:3c:99:12:
e9:03:c0:05:47:e4:47:3b:ca:44:4a:dd:0f:1e:07:
71:60:cb:ec:33:3e:56:42:76:ab:d2:73:42:a8:1d:
68:e8:c3:d0:ed:70:48:a7:d0:eb:89:c8:74:38:48:
c2:71:e8:ce:66:f8:30:9a:2a:0b:35:c9:fb:2f:77:
00:59:32:26:60:0f:6c:e8:c1:a3:cb:db:1a:9b:e4:
97:26:fc:75:46:83:9e:5a:65:90:61:9a:e4:b4:b3:
7a:b4:58:fc:36:a8:7b:87:8d:53:e1:d2:ab:36:bd:
47:03:a2:05:c7:d2:30:72:d9:99:ef:7e:32:56:c5:
bf:50:6a:bd:a7:01:b2:06:de:70:b0:c7:5c:22:2d:
be:4d:87:86:b0:c1:33:66:fb:b9:b0:de:d8:28:a1:
47:c6:b7:a4:0f:da:1c:25:97:ce:d0:23:b7:4e:9d:
7f:d1:b2:17:7d:82:4a:7a:a1:e3:8e:77:55:87:88:
dc:99:1c:3a:d5:74:a5:64:03:b1:0e:93:35:ba:0d:
e5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F0:FB:75:8A:DC:28:90:AC:B3:3B:D4:75:C1:5C:B1:62:80:9E:86
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/WPD7dYrcKJCsszvUdcFcsWKAnoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.254.168.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:ed:be:5d:c3:06:62:7b:df:b4:2e:74:e9:fc:e8:be:9b:b5:
02:2f:51:e0:eb:92:95:9b:57:1e:70:52:2f:d8:5c:2e:d3:27:
ad:a0:1c:a5:7e:a8:06:b0:42:17:aa:38:38:03:b4:7d:04:9e:
c7:22:b8:74:9e:cd:9d:c8:cc:6d:14:e0:68:94:2b:db:7f:ce:
9f:35:4b:4e:3b:22:18:bd:63:d0:fc:57:76:a7:f8:c9:29:0e:
7e:71:41:93:d3:e8:d8:36:62:ce:6e:fa:81:3f:a2:6c:cc:59:
89:16:cb:7e:e5:fb:7c:ee:2a:b7:c1:42:20:b9:90:5f:3d:f3:
54:3f:88:47:20:7f:4c:3d:cb:ca:5a:ba:49:0b:17:54:38:52:
95:95:86:89:30:ec:f2:40:3c:4d:da:ae:71:07:79:4a:fa:86:
05:c6:bc:c0:dc:a1:5d:e0:6b:40:a6:16:4a:bc:dd:1f:ae:2b:
a3:b3:29:a9:70:3b:d2:22:24:5a:0b:86:a3:d4:50:6e:13:6c:
ff:98:7d:10:4e:03:27:b2:ce:ec:aa:b6:89:6c:69:2a:02:0e:
22:9b:86:e0:0a:fc:47:56:00:83:51:45:e6:bc:09:cf:6a:07:
19:d2:c6:2b:b1:65:11:d2:6b:00:94:03:ed:42:27:7c:03:e9:
12:cf:47:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org