Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/RP6dOEkI65r0KCEXCNdlQ-Hc0-0.roa
File: RP6dOEkI65r0KCEXCNdlQ-Hc0-0.roa (raw, json)
Hash identifier: 4+eqcLUceqoyDev4csahK1uI7z0bXF++b+ikDbBfWfI=
Subject key identifier: 44:FE:9D:38:49:08:EB:9A:F4:28:21:17:08:D7:65:43:E1:DC:D3:ED
Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Certificate serial: 0187561449372400340608F50C9E3D481F9A
Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/RP6dOEkI65r0KCEXCNdlQ-Hc0-0.roa
Signing time: Thu 06 Apr 2023 10:19:42 +0000
ROA not before: Thu 06 Apr 2023 10:19:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209372
IP address blocks: 178.171.50.0/23 maxlen: 24
178.171.48.0/23 maxlen: 24
158.46.149.0/24 maxlen: 24
158.46.148.0/24 maxlen: 24
178.171.60.0/23 maxlen: 24
178.171.62.0/23 maxlen: 24
178.171.70.0/24 maxlen: 24
178.171.69.0/24 maxlen: 24
158.46.160.0/23 maxlen: 23
158.46.177.0/24 maxlen: 24
178.171.88.0/23 maxlen: 23
178.171.0.0/20 maxlen: 24
178.171.20.0/22 maxlen: 24
178.171.32.0/22 maxlen: 22
178.171.36.0/24 maxlen: 24
178.171.37.0/24 maxlen: 24
158.46.251.0/24 maxlen: 24
158.46.250.0/24 maxlen: 24
178.171.94.0/24 maxlen: 24
158.46.188.0/22 maxlen: 24
178.171.104.0/24 maxlen: 24
178.171.101.0/24 maxlen: 24
158.46.196.0/22 maxlen: 24
178.171.100.0/24 maxlen: 24
158.46.205.0/24 maxlen: 24
158.46.200.0/21 maxlen: 24
158.46.207.0/24 maxlen: 24
178.171.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Apr 2023 15:52:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:56:14:49:37:24:00:34:06:08:f5:0c:9e:3d:48:1f:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Validity
Not Before: Apr 6 10:19:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44fe9d384908eb9af428211708d76543e1dcd3ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:2d:59:4c:bd:6b:c1:3c:c3:12:51:54:39:c8:
30:16:59:41:8b:9a:c0:bd:63:9f:7c:67:53:a4:50:
54:c3:18:a5:22:97:b9:4c:4c:0a:dd:11:3d:89:7e:
27:cf:5c:00:ef:0c:b2:e9:fc:ad:e4:5b:3f:27:8f:
a7:b2:c0:94:1e:87:61:d8:89:b8:3b:42:4b:c3:80:
c9:00:16:a6:40:b0:fa:4a:f1:e0:2c:51:f1:86:db:
b9:6e:4c:25:05:41:cf:2e:58:71:0d:a5:04:fb:c3:
20:a3:6b:72:56:4a:d8:fa:63:fc:18:12:ad:27:1d:
4b:a6:03:e2:8c:b6:a2:66:f2:87:1c:cc:57:5b:18:
42:0e:88:c1:52:1a:ee:9c:2c:d6:0e:b6:f4:46:55:
d8:b7:50:30:db:b0:6e:26:89:02:c3:65:62:48:a7:
de:f5:78:02:53:a3:29:f7:cb:3f:85:74:ff:3b:2f:
2a:1a:b3:3e:be:a1:9a:27:b4:28:42:84:50:de:54:
1a:44:5a:07:04:67:b5:46:3c:26:96:30:f2:61:ae:
ce:96:91:4f:d6:4f:6b:be:43:3d:6f:a7:da:94:12:
d4:87:2d:74:ce:3f:ca:fe:de:28:f2:6d:11:ec:38:
4a:47:ca:4c:4c:2b:ca:c4:35:d8:1d:fa:62:43:cc:
71:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:FE:9D:38:49:08:EB:9A:F4:28:21:17:08:D7:65:43:E1:DC:D3:ED
X509v3 Authority Key Identifier:
keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/RP6dOEkI65r0KCEXCNdlQ-Hc0-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.46.148.0/23
158.46.160.0/23
158.46.177.0/24
158.46.188.0/22
158.46.196.0-158.46.207.255
158.46.250.0/23
178.171.0.0/20
178.171.20.0/22
178.171.32.0-178.171.37.255
178.171.48.0/22
178.171.60.0/22
178.171.69.0-178.171.70.255
178.171.88.0/23
178.171.94.0/24
178.171.100.0/23
178.171.104.0/24
178.171.119.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:ed:5d:73:9b:a7:76:b6:a5:09:86:03:d1:6d:13:21:2e:8e:
38:b8:13:89:85:cd:72:ed:07:c0:3b:8d:43:42:e8:93:da:b5:
f4:f7:bd:52:91:f5:75:87:3c:e3:22:77:4b:35:8e:03:c1:bd:
b6:86:92:c3:61:76:01:20:99:6f:d5:7e:7d:14:23:ba:c0:5e:
7c:88:e9:01:15:93:b7:35:5b:29:e7:60:62:3d:bc:65:28:55:
c7:ec:bf:61:8c:a8:99:e0:c5:36:29:92:2a:67:32:4b:44:cd:
a4:75:de:8e:8d:b3:2e:93:46:dd:0a:4d:7d:1c:fe:60:08:f7:
22:d7:6f:b0:ae:f1:81:97:90:55:4c:4b:e0:2d:13:56:1d:0c:
68:31:4d:a3:c3:d3:a4:0e:6a:06:b1:9b:a2:65:9d:2e:b0:a4:
1d:82:e2:9f:86:f4:21:cb:44:62:2c:b3:7d:4a:f8:6a:6f:9b:
d8:14:2c:e0:e9:56:a0:17:8e:91:dd:46:1a:07:3d:52:f4:34:
03:6c:80:ac:57:71:c5:5a:ea:13:d8:aa:4e:40:71:59:01:f8:
5e:b5:cc:40:e6:aa:01:f1:af:f3:26:73:65:57:37:71:d7:5b:
31:cd:b5:3b:58:5e:98:82:02:55:6c:65:b6:08:9e:ec:a4:99:
78:31:36:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:09 2024 by rpki-client on console-ams.rpki-client.org