Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/mNFJgK3B9d7YImuk6GchUooXljs.roa
File: mNFJgK3B9d7YImuk6GchUooXljs.roa (raw, json)
Hash identifier: 8ybHLMhPAsWTVn8aLoIeMS9M5YXxfw60KSYsDXP4vs8=
Subject key identifier: 98:D1:49:80:AD:C1:F5:DE:D8:22:6B:A4:E8:67:21:52:8A:17:96:3B
Certificate issuer: /CN=aeb66ec5e8f2405f6f8d486e73fb82b8de0dee0f
Certificate serial: 018570D51779E9446A98F9DAD955D535B364
Authority key identifier: AE:B6:6E:C5:E8:F2:40:5F:6F:8D:48:6E:73:FB:82:B8:DE:0D:EE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rrZuxejyQF9vjUhuc_uCuN4N7g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/mNFJgK3B9d7YImuk6GchUooXljs.roa
Signing time: Mon 02 Jan 2023 04:54:51 +0000
ROA not before: Mon 02 Jan 2023 04:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 134679
IP address blocks: 178.237.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:17:79:e9:44:6a:98:f9:da:d9:55:d5:35:b3:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aeb66ec5e8f2405f6f8d486e73fb82b8de0dee0f
Validity
Not Before: Jan 2 04:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98d14980adc1f5ded8226ba4e86721528a17963b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:64:4a:63:3e:d8:ad:55:51:66:1c:a7:74:58:
e5:32:30:49:8f:66:d9:10:7f:f9:b6:37:75:fb:43:
07:9c:7b:6c:0b:7f:f8:1a:77:e8:07:b3:55:79:20:
16:a3:27:93:4a:9f:eb:cd:84:26:04:4a:a2:c8:3c:
67:44:00:57:5e:61:16:87:74:5c:37:b2:32:4e:c2:
96:ea:2c:07:cd:01:92:a5:18:81:a2:f3:8b:be:41:
35:39:98:7d:c9:a6:47:2e:da:8a:43:7b:c9:b3:c3:
89:4f:56:ba:c7:ff:88:9c:74:08:61:20:c8:88:30:
c6:84:2b:ea:5d:86:29:ea:dc:67:e2:d7:3a:b8:b8:
6b:43:5f:c6:d9:ef:a1:ad:26:fa:e0:ab:36:44:ed:
d6:1f:08:a3:8f:c7:0f:fc:0f:98:e1:92:19:8b:00:
ab:dd:eb:f8:c7:e9:d3:a6:d0:c5:c4:a2:29:32:48:
12:53:e6:b0:7b:6e:86:e8:05:05:15:8b:8d:fc:eb:
e3:ee:c7:60:f5:3a:d0:04:a0:59:a2:ab:dd:8a:19:
f6:a4:f7:fb:c0:87:f7:08:92:5e:b1:0d:d5:c8:2f:
08:cf:37:83:f5:af:bb:a8:e3:88:56:49:09:50:d4:
18:17:65:79:de:c1:19:91:0f:4c:d2:32:07:b5:be:
8d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:D1:49:80:AD:C1:F5:DE:D8:22:6B:A4:E8:67:21:52:8A:17:96:3B
X509v3 Authority Key Identifier:
keyid:AE:B6:6E:C5:E8:F2:40:5F:6F:8D:48:6E:73:FB:82:B8:DE:0D:EE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rrZuxejyQF9vjUhuc_uCuN4N7g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/mNFJgK3B9d7YImuk6GchUooXljs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/rrZuxejyQF9vjUhuc_uCuN4N7g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.237.168.0/24
Signature Algorithm: sha256WithRSAEncryption
22:d4:d2:cc:9a:11:27:fd:b2:f4:8c:87:fa:01:2c:ac:d1:2b:
9c:85:d5:41:21:cf:76:01:ff:90:bc:8d:1c:50:6e:ab:57:e4:
97:16:15:fc:4b:d9:d0:6e:6d:f4:1f:98:11:7a:62:6d:2c:b6:
db:c5:b2:89:8d:5e:12:a0:01:bf:dc:d0:ae:bb:8e:43:9a:7f:
10:3b:77:f8:f0:0a:dc:4f:ff:e7:29:fd:50:ea:4a:b8:28:3b:
a5:cd:35:30:88:08:da:70:46:f8:1a:9e:3e:27:68:bd:8a:30:
90:a9:c1:0b:8d:84:76:0c:41:cb:55:2d:79:64:89:e3:08:8e:
44:56:26:bc:78:e7:2f:80:f2:17:f7:0c:37:d2:df:1b:d1:59:
9c:85:c8:a1:fd:99:23:60:96:03:96:64:17:33:50:19:7e:ca:
fa:6b:1c:d7:28:2a:b2:af:68:97:12:c4:e7:bf:5a:1b:36:e3:
9e:58:33:3b:4c:bc:be:cb:cd:69:64:67:02:f2:41:e3:b6:61:
cb:d2:2e:0a:f6:b4:46:e8:ac:c7:5c:df:79:ea:66:05:7c:97:
10:de:fe:17:74:eb:27:ec:00:56:14:26:8e:da:a0:b1:b7:dd:
38:c7:3c:76:b3:70:f0:be:8c:43:1c:aa:ab:73:e9:de:66:71:
28:d8:77:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:39 2024 by rpki-client on console-fra.rpki-client.org