Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/aGWjwp4Rxz-XvWeIa5h8FJ3V7TI.roa
File: aGWjwp4Rxz-XvWeIa5h8FJ3V7TI.roa (raw, json)
Hash identifier: 5Lpat8X/jjTS0bwaOHU1LcLGELy6ft7zYKil0YGk0ag=
Subject key identifier: 68:65:A3:C2:9E:11:C7:3F:97:BD:67:88:6B:98:7C:14:9D:D5:ED:32
Certificate issuer: /CN=7c3c39d1899e699bf5177418ee381489edff4380
Certificate serial: 018843BE0E85FF2B4F86DBA386EDA085FADA
Authority key identifier: 7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/aGWjwp4Rxz-XvWeIa5h8FJ3V7TI.roa
Signing time: Mon 22 May 2023 13:55:08 +0000
ROA not before: Mon 22 May 2023 13:55:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.27.178.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:43:be:0e:85:ff:2b:4f:86:db:a3:86:ed:a0:85:fa:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3c39d1899e699bf5177418ee381489edff4380
Validity
Not Before: May 22 13:55:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6865a3c29e11c73f97bd67886b987c149dd5ed32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:32:f3:dc:3d:b0:32:26:92:b7:c3:ed:8a:98:
3b:0a:7d:7d:32:63:67:8e:56:8e:77:61:78:8a:74:
ca:f4:f9:fd:74:81:1c:6a:76:68:f2:45:23:f6:13:
e7:1f:df:4d:bc:4d:70:70:de:5e:fe:03:03:25:80:
10:a6:c9:0a:d1:e0:5a:0a:49:5b:4a:a1:a4:4f:d4:
83:1f:82:6d:3c:5b:61:08:d8:01:89:56:07:0b:11:
32:83:44:ec:82:d0:91:58:82:3b:bd:f8:bd:6e:3a:
ac:24:91:cd:c3:f6:4a:72:25:8c:b1:08:39:8c:81:
82:5d:49:23:71:0e:5e:ea:2a:32:31:f6:26:98:5f:
fb:9c:fd:45:23:1d:f6:1b:44:16:c6:a5:86:0f:d7:
38:ef:e4:6c:c8:62:69:e1:44:93:66:a0:34:f6:f2:
85:d4:28:12:15:f1:08:84:97:e1:ac:12:2c:b4:66:
9a:a2:4a:dc:c9:55:9e:4c:e1:ec:39:81:da:1e:27:
b6:0e:94:ca:d3:19:8c:b8:72:bb:9c:ce:1a:bd:a0:
0d:d3:4e:e4:f2:5c:e9:fb:e9:ba:ce:70:69:7d:c4:
70:e4:b4:24:c8:d1:17:43:d7:2a:49:bc:25:fa:5f:
e5:73:57:04:be:73:d6:01:15:78:ab:ea:07:8f:e3:
68:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:65:A3:C2:9E:11:C7:3F:97:BD:67:88:6B:98:7C:14:9D:D5:ED:32
X509v3 Authority Key Identifier:
keyid:7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/aGWjwp4Rxz-XvWeIa5h8FJ3V7TI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/fDw50YmeaZv1F3QY7jgUie3_Q4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.178.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:f7:57:fa:cd:25:34:66:f8:f0:c3:28:f5:72:b4:8d:25:3a:
93:d5:3b:d1:49:07:62:71:b3:2e:c1:8d:49:84:66:61:ba:70:
4d:3f:18:fd:f4:44:1d:0e:8b:06:52:c4:2a:6d:29:46:65:ab:
db:c9:6d:29:df:c0:6c:be:45:c7:06:85:4a:6d:39:44:75:ab:
72:73:54:d1:33:f1:34:24:76:95:d7:77:3f:b7:aa:d4:bd:39:
ff:a6:7a:9c:b4:61:48:bd:b9:c0:fd:19:fa:7e:af:8d:87:5f:
e9:3b:56:76:5a:2b:5a:61:91:83:f0:d4:c3:eb:ef:f1:00:57:
9f:c7:e5:0a:bd:db:04:67:f8:ec:37:e9:b7:92:1e:38:a8:2e:
95:aa:1d:09:5c:a4:50:b9:f0:32:2a:39:94:25:ea:3d:ec:8e:
89:e6:f8:b0:5f:60:b7:07:53:4f:08:13:85:40:c0:32:0b:4b:
4d:36:ee:6d:cc:2c:e2:5f:25:6c:f5:e0:13:04:60:2b:4c:91:
ec:db:73:5d:00:0a:ed:4a:43:19:71:05:25:3e:0a:49:9d:6f:
ab:d5:3f:e6:c0:0c:83:01:05:af:3c:76:db:46:b8:b5:03:27:
a3:11:6a:06:af:9e:b4:d5:bd:f4:5a:ad:24:63:39:1f:fb:c5:
7e:8e:6f:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:18 2024 by rpki-client on console-fra.rpki-client.org