Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/3iJhXCOkRtIj0Nqiu3eKw2n5xSk.roa
File: 3iJhXCOkRtIj0Nqiu3eKw2n5xSk.roa (raw, json)
Hash identifier: +eqLD3Gn3UySfNbws+7b6DrDiQLFX86BRoGrvCkorAU=
Subject key identifier: DE:22:61:5C:23:A4:46:D2:23:D0:DA:A2:BB:77:8A:C3:69:F9:C5:29
Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Certificate serial: 01877631B4DFF885993281C71BFC43E24BCF
Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/3iJhXCOkRtIj0Nqiu3eKw2n5xSk.roa
Signing time: Wed 12 Apr 2023 15:59:41 +0000
ROA not before: Wed 12 Apr 2023 15:59:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209372
IP address blocks: 178.171.50.0/23 maxlen: 24
178.171.48.0/23 maxlen: 24
158.46.149.0/24 maxlen: 24
158.46.148.0/24 maxlen: 24
178.171.60.0/23 maxlen: 24
178.171.62.0/23 maxlen: 24
178.171.70.0/24 maxlen: 24
178.171.69.0/24 maxlen: 24
158.46.160.0/23 maxlen: 23
158.46.177.0/24 maxlen: 24
158.46.176.0/24 maxlen: 24
178.171.88.0/23 maxlen: 23
178.171.0.0/20 maxlen: 24
178.171.20.0/22 maxlen: 24
178.171.32.0/22 maxlen: 22
178.171.36.0/24 maxlen: 24
178.171.37.0/24 maxlen: 24
158.46.251.0/24 maxlen: 24
158.46.250.0/24 maxlen: 24
178.171.94.0/24 maxlen: 24
158.46.188.0/22 maxlen: 24
178.171.104.0/24 maxlen: 24
178.171.101.0/24 maxlen: 24
178.171.102.0/24 maxlen: 24
158.46.196.0/22 maxlen: 24
178.171.100.0/24 maxlen: 24
178.171.110.0/23 maxlen: 23
158.46.205.0/24 maxlen: 24
158.46.200.0/21 maxlen: 24
158.46.207.0/24 maxlen: 24
178.171.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Apr 2023 04:17:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:76:31:b4:df:f8:85:99:32:81:c7:1b:fc:43:e2:4b:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Validity
Not Before: Apr 12 15:59:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de22615c23a446d223d0daa2bb778ac369f9c529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c4:8f:6b:87:9d:61:2b:9e:23:14:43:08:3e:
e4:59:93:8a:c2:8a:db:64:8e:ec:cf:6e:e0:b4:5b:
0f:1b:e2:74:16:21:f1:82:02:13:53:a0:cb:e2:ed:
6b:08:03:59:b3:4d:81:a5:78:87:32:35:26:f2:45:
e6:8c:49:72:9c:94:66:ab:8b:55:5f:e4:06:62:39:
09:f9:54:49:50:ec:fe:e5:db:10:53:7d:e8:31:91:
ff:ea:27:27:ce:29:ee:73:22:40:35:d3:e3:1d:d6:
a9:6b:31:1e:c9:b9:18:aa:27:c0:6a:83:f4:2f:03:
f6:40:6d:63:56:8f:8d:2e:a2:47:3f:c5:75:c9:2d:
2e:f7:43:10:3f:fc:df:22:f5:f1:22:33:5e:67:be:
82:3d:de:d3:5a:53:64:16:4c:ef:0a:68:f4:b2:f1:
79:f0:11:11:33:d2:4f:3a:e4:91:30:c9:7e:b5:2d:
36:77:03:21:f1:05:07:95:2d:c3:1d:7a:70:c9:1f:
b6:5c:79:55:c3:f2:63:a4:dc:e6:a4:0c:92:a3:85:
33:54:08:6a:62:d0:03:bc:e9:a8:64:8e:aa:01:0b:
fb:05:5d:9b:4a:23:27:d3:ae:58:ab:cc:39:bf:0b:
d0:01:55:82:e6:f6:87:28:49:75:ec:5e:5c:5d:62:
e7:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:22:61:5C:23:A4:46:D2:23:D0:DA:A2:BB:77:8A:C3:69:F9:C5:29
X509v3 Authority Key Identifier:
keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/3iJhXCOkRtIj0Nqiu3eKw2n5xSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.46.148.0/23
158.46.160.0/23
158.46.176.0/23
158.46.188.0/22
158.46.196.0-158.46.207.255
158.46.250.0/23
178.171.0.0/20
178.171.20.0/22
178.171.32.0-178.171.37.255
178.171.48.0/22
178.171.60.0/22
178.171.69.0-178.171.70.255
178.171.88.0/23
178.171.94.0/24
178.171.100.0-178.171.102.255
178.171.104.0/24
178.171.110.0/23
178.171.119.0/24
Signature Algorithm: sha256WithRSAEncryption
61:17:99:8f:f9:9e:69:6f:c8:c7:9b:82:61:c9:29:1e:d5:c2:
d5:df:0d:91:c9:3e:a6:95:2c:93:50:8f:07:39:ee:b4:0e:86:
f9:89:a1:2d:d4:91:88:ec:b2:86:c7:9f:37:16:59:c3:9e:44:
c6:7a:10:36:3b:b3:e8:c8:ce:b3:85:e7:5c:8b:cf:53:29:a2:
fe:28:47:28:30:48:c5:08:34:29:b4:de:96:50:9c:a0:9a:15:
ec:16:ac:d7:fa:4a:3c:0e:50:fe:ae:95:96:82:8f:dd:31:4c:
d3:b5:f7:3f:08:3a:7f:86:38:97:0a:f2:9c:e8:57:d3:42:16:
fa:e3:b1:2f:56:23:4f:93:36:09:a8:a8:07:d6:bd:2f:20:77:
03:cf:ff:d2:4d:73:25:05:8f:ec:88:e1:8f:a6:e8:08:b3:00:
48:a3:af:a3:4d:c1:07:0e:4a:31:2d:45:c7:8d:7b:cd:ee:77:
28:dc:06:c6:b1:d3:7c:ad:5f:55:e1:ef:cc:7c:4d:bb:c2:4b:
59:83:52:28:48:34:74:f6:ab:5c:f3:a6:76:db:dc:bf:8f:a8:
16:9d:ac:f8:13:ec:e0:44:53:e3:4d:34:8e:e0:eb:61:13:07:
e2:1f:25:03:4c:5d:c1:1b:40:92:a5:0d:34:65:a4:c4:0d:22:
0e:21:5d:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:09 2024 by rpki-client on console-ams.rpki-client.org