Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/d85bc7-58a6-407a-8acb-7509f7f4c5a6/1/avkBtyPhFRrpgE5XgvvyyYHdknA.roa
File: avkBtyPhFRrpgE5XgvvyyYHdknA.roa (raw, json)
Hash identifier: klZdGBFDESgDLM4/EqVNnY0jS8D5UGE7JtYLA4gN6zU=
Subject key identifier: 6A:F9:01:B7:23:E1:15:1A:E9:80:4E:57:82:FB:F2:C9:81:DD:92:70
Certificate issuer: /CN=e8f99cd884fb5cbab3f3b34e17a80a48adec3fe5
Certificate serial: 01857015098D06A0FDA52447FFC6465D6564
Authority key identifier: E8:F9:9C:D8:84:FB:5C:BA:B3:F3:B3:4E:17:A8:0A:48:AD:EC:3F:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Pmc2IT7XLqz87NOF6gKSK3sP-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/d85bc7-58a6-407a-8acb-7509f7f4c5a6/1/avkBtyPhFRrpgE5XgvvyyYHdknA.roa
Signing time: Mon 02 Jan 2023 01:25:04 +0000
ROA not before: Mon 02 Jan 2023 01:25:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 178.175.182.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:09:8d:06:a0:fd:a5:24:47:ff:c6:46:5d:65:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8f99cd884fb5cbab3f3b34e17a80a48adec3fe5
Validity
Not Before: Jan 2 01:25:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6af901b723e1151ae9804e5782fbf2c981dd9270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:37:80:d9:1b:b4:0f:5e:b6:3d:7e:d8:74:e8:
cb:69:f5:68:c9:cd:98:27:15:89:a4:16:19:df:e3:
5c:69:fb:b7:02:7e:71:6e:87:02:ee:81:f4:66:bc:
98:10:10:90:d6:b4:64:d1:e7:6b:8d:bb:fc:74:3d:
9d:62:f7:45:63:f7:21:fa:16:3a:f9:36:ec:ed:eb:
22:71:6c:4e:cf:6c:b0:51:94:89:77:0f:2b:2c:f7:
67:c2:84:67:de:ad:bc:08:d6:96:10:c1:89:11:e9:
d9:5f:7b:58:be:a7:04:4e:c5:0a:8a:26:d0:0b:f4:
39:c7:1d:f1:2a:f7:70:64:94:7f:6b:11:fd:e1:5f:
08:0c:28:ae:eb:5a:3a:2f:53:78:6d:d8:83:58:47:
0c:51:fc:d8:f7:5c:05:71:df:73:09:a8:77:0e:c0:
f3:1d:54:b2:35:9a:7f:26:ff:ab:9e:b2:98:5b:99:
03:ad:cd:60:ae:f5:54:cc:6a:7c:fe:f9:e4:0b:3c:
57:a4:da:67:bf:47:1b:d1:f1:95:50:a4:8a:83:db:
c8:f3:3e:04:97:58:d8:1e:fb:30:a2:d1:61:c2:38:
d0:12:62:c4:75:ce:d9:41:3c:51:9c:5b:5a:3c:08:
d8:61:f2:6a:f9:56:a1:ab:af:52:8b:93:2f:62:3f:
cf:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:F9:01:B7:23:E1:15:1A:E9:80:4E:57:82:FB:F2:C9:81:DD:92:70
X509v3 Authority Key Identifier:
keyid:E8:F9:9C:D8:84:FB:5C:BA:B3:F3:B3:4E:17:A8:0A:48:AD:EC:3F:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Pmc2IT7XLqz87NOF6gKSK3sP-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/d85bc7-58a6-407a-8acb-7509f7f4c5a6/1/avkBtyPhFRrpgE5XgvvyyYHdknA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/d85bc7-58a6-407a-8acb-7509f7f4c5a6/1/6Pmc2IT7XLqz87NOF6gKSK3sP-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.182.0/24
Signature Algorithm: sha256WithRSAEncryption
79:81:cd:c9:a6:39:00:96:b2:4f:f6:ae:88:f1:1d:6c:94:93:
aa:4c:3d:3b:e0:d2:ac:2c:35:3f:35:2e:15:fb:36:d4:62:56:
48:42:02:b9:51:c6:a7:ad:c1:78:14:22:f0:07:c3:f7:f3:2d:
78:9c:98:82:30:9e:0a:ef:47:7d:65:32:28:0e:8a:4c:cc:09:
31:61:76:a4:38:54:d7:95:cf:bf:57:91:95:7d:ba:cc:38:c4:
f1:b7:53:ff:2b:39:d1:9d:00:df:f7:22:57:91:61:86:3c:72:
13:7f:95:60:b1:be:17:4b:0a:d6:c9:fb:a8:99:16:41:d1:86:
c7:d0:10:71:5a:81:7b:6f:bc:54:1f:17:03:93:45:f7:53:58:
5f:e8:12:f0:1c:a9:db:b5:91:ff:d1:7a:61:2f:f9:a9:bb:8d:
15:41:56:4c:17:c7:84:49:a2:e6:9e:bb:2b:c4:35:ae:58:f4:
15:bd:1b:dd:a3:ad:e9:95:cc:d6:5d:35:c3:e0:45:95:c9:11:
79:83:14:a2:49:8f:d4:1f:1e:b6:e0:3f:a8:fa:b7:9c:02:42:
81:be:61:4f:69:19:a3:41:97:8e:1a:58:e5:e1:a3:ac:49:46:
34:c5:a7:f9:fe:5c:f4:28:28:15:f8:50:e8:81:ad:22:f2:83:
e0:47:4d:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:22 2024 by rpki-client on console-fra.rpki-client.org