Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/66GBJjvZMwMZb8tmmoH_OA5NDGc.roa
File: 66GBJjvZMwMZb8tmmoH_OA5NDGc.roa (raw, json)
Hash identifier: lum1mtBntl8sNdksG9HP6bZfrJVQoeGvT7XhC/f92VY=
Subject key identifier: EB:A1:81:26:3B:D9:33:03:19:6F:CB:66:9A:81:FF:38:0E:4D:0C:67
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018AB6E072EFFFF0550ECD4A37AA22AB52E3
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/66GBJjvZMwMZb8tmmoH_OA5NDGc.roa
Signing time: Thu 21 Sep 2023 08:34:37 +0000
ROA not before: Thu 21 Sep 2023 08:34:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 178.253.235.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b6:e0:72:ef:ff:f0:55:0e:cd:4a:37:aa:22:ab:52:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Sep 21 08:34:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eba181263bd93303196fcb669a81ff380e4d0c67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:13:75:24:27:f9:2c:03:99:22:12:3d:c3:8a:
27:fd:66:7f:b3:20:4b:68:bc:61:19:f8:5d:09:26:
55:17:52:89:27:66:5d:66:87:66:b0:64:24:d3:f0:
6a:e0:c9:d3:9b:03:00:5a:3a:60:65:1b:6a:62:f2:
3f:75:ea:1b:5f:74:43:5a:5c:2b:82:25:62:b1:35:
ae:ea:e3:88:db:db:d7:1f:fa:4c:22:6b:5f:e7:4a:
88:25:b1:c4:86:74:66:42:21:e6:06:ec:92:92:96:
55:e8:96:69:76:28:ae:f4:3a:fe:27:fe:f8:27:7f:
76:d9:ac:bc:82:47:d2:02:df:8c:cc:df:5c:a9:b1:
ce:5e:47:d7:9a:b5:55:75:6e:b6:54:e6:e7:9f:8e:
22:4e:7b:27:e6:4a:0c:d4:f3:e0:f5:bb:fb:ff:f4:
ce:fe:ab:26:94:ad:79:7a:11:4c:a7:ab:17:08:75:
df:11:c4:b4:58:09:de:60:23:e0:a2:b2:fd:84:d8:
bb:0f:fe:2c:4a:e2:01:ef:31:07:f0:d9:38:1d:f8:
83:d4:32:c1:77:e7:49:ad:42:e5:a0:ac:47:57:e7:
29:df:58:2d:47:ab:67:ee:6c:6a:0b:e8:18:c0:09:
00:ae:f3:78:75:95:f4:c3:9e:07:67:80:9c:bb:b0:
14:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:A1:81:26:3B:D9:33:03:19:6F:CB:66:9A:81:FF:38:0E:4D:0C:67
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/66GBJjvZMwMZb8tmmoH_OA5NDGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.235.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:ce:a9:f2:18:60:4c:48:70:2e:99:9d:b9:02:94:bf:74:09:
fe:fa:b0:2e:5b:eb:47:a9:67:a5:36:70:26:4d:6f:0b:83:52:
8b:0b:44:72:09:36:9f:db:b3:76:d5:28:fa:b2:a8:d7:b6:0f:
47:9c:d7:53:9a:ce:3b:53:ea:77:5b:9b:02:de:6a:70:fd:1b:
a1:01:de:79:48:90:b6:ab:9d:fa:b1:cc:39:54:d9:4e:fd:f3:
e4:f0:e2:d3:11:6a:df:73:98:3b:8c:bd:25:1a:87:03:5a:16:
a5:76:ee:e2:5e:f7:63:ee:94:58:bd:10:31:84:c4:17:7f:d7:
c2:be:d5:16:4d:43:6e:ec:94:b5:4c:f5:59:e2:81:aa:f4:be:
fe:49:1d:a1:1d:12:dd:ca:9f:7b:4c:e5:80:88:42:ad:ed:6e:
9a:c2:11:f1:d6:0a:50:08:58:c8:df:f1:3a:06:f4:3e:b4:46:
cc:1d:b5:e7:70:47:22:7e:2d:c9:11:22:e4:c5:63:04:98:3c:
0d:e0:9e:1c:b5:2a:4f:74:be:dd:96:d8:53:67:9c:ee:cc:b0:
5f:16:05:9c:72:24:5e:07:28:81:70:ce:97:45:d6:91:e6:43:
eb:50:f0:48:f9:10:e1:60:64:73:3f:0f:a5:56:f3:c8:b6:92:
7c:25:c7:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:36 2024 by rpki-client on console-fra.rpki-client.org