Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/yntEXmf5hzYYigm2yCQe7wAeOIc.roa
File: yntEXmf5hzYYigm2yCQe7wAeOIc.roa (raw, json)
Hash identifier: ykNQkXNkkxR/2Vx136Js9Cj45J0wZQSzNKX1SR8so/E=
Subject key identifier: CA:7B:44:5E:67:F9:87:36:18:8A:09:B6:C8:24:1E:EF:00:1E:38:87
Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Certificate serial: 018730BC24933F0DD97C0258DCBA2E0B9A7D
Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/yntEXmf5hzYYigm2yCQe7wAeOIc.roa
Signing time: Thu 30 Mar 2023 04:17:29 +0000
ROA not before: Thu 30 Mar 2023 04:17:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209372
IP address blocks: 178.171.50.0/23 maxlen: 24
178.171.48.0/23 maxlen: 24
158.46.149.0/24 maxlen: 24
158.46.148.0/24 maxlen: 24
178.171.60.0/23 maxlen: 24
178.171.62.0/23 maxlen: 24
178.171.70.0/24 maxlen: 24
178.171.69.0/24 maxlen: 24
158.46.160.0/23 maxlen: 23
158.46.177.0/24 maxlen: 24
178.171.88.0/23 maxlen: 23
178.171.0.0/20 maxlen: 24
178.171.20.0/22 maxlen: 24
178.171.32.0/22 maxlen: 22
178.171.36.0/24 maxlen: 24
178.171.37.0/24 maxlen: 24
158.46.251.0/24 maxlen: 24
158.46.250.0/24 maxlen: 24
158.46.188.0/22 maxlen: 24
178.171.104.0/24 maxlen: 24
178.171.101.0/24 maxlen: 24
158.46.196.0/22 maxlen: 24
178.171.100.0/24 maxlen: 24
158.46.205.0/24 maxlen: 24
158.46.200.0/21 maxlen: 24
178.171.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Apr 2023 12:17:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:30:bc:24:93:3f:0d:d9:7c:02:58:dc:ba:2e:0b:9a:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Validity
Not Before: Mar 30 04:17:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca7b445e67f98736188a09b6c8241eef001e3887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:fe:e4:c9:33:71:c4:c4:6e:05:b9:9b:67:74:
df:96:ba:48:77:aa:a2:01:fa:ff:d8:7d:ea:45:94:
e2:64:3d:12:58:2f:ba:3d:60:f1:00:e6:79:82:df:
16:07:b6:06:db:85:75:88:b2:ab:3b:0a:b5:09:6e:
b8:ba:84:87:a3:79:98:6e:eb:c2:20:b2:fd:aa:46:
fa:1d:41:80:18:93:3f:28:d4:cd:a7:ba:ec:6f:4f:
8b:7f:4d:98:e7:8a:c0:f4:16:0c:6a:5b:6f:d8:b7:
9e:e4:ac:57:d8:55:71:6a:53:a9:d6:e6:69:b7:10:
84:8f:a1:32:02:b7:6b:ac:f5:45:da:4a:cc:b3:c9:
0e:66:c8:b0:00:fb:39:4d:f9:cd:eb:5e:da:06:bd:
95:13:b4:79:01:5b:e5:4e:ea:85:f3:4f:b2:66:f5:
be:40:d1:89:b7:28:61:86:f6:98:a6:28:2f:bc:99:
6f:77:86:0a:8f:c9:52:65:f6:a1:4e:a3:9c:6a:ff:
49:84:16:8a:ed:fd:dc:b2:8c:3e:21:2c:d6:13:b8:
cb:60:bd:87:95:7f:da:19:16:44:38:d5:f7:3e:c0:
a0:51:4e:34:75:dc:5f:6d:7d:98:b4:99:32:ee:f4:
5e:c1:0e:2a:c8:c3:a2:62:ef:c0:80:bf:92:ea:79:
fa:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:7B:44:5E:67:F9:87:36:18:8A:09:B6:C8:24:1E:EF:00:1E:38:87
X509v3 Authority Key Identifier:
keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/yntEXmf5hzYYigm2yCQe7wAeOIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.46.148.0/23
158.46.160.0/23
158.46.177.0/24
158.46.188.0/22
158.46.196.0-158.46.207.255
158.46.250.0/23
178.171.0.0/20
178.171.20.0/22
178.171.32.0-178.171.37.255
178.171.48.0/22
178.171.60.0/22
178.171.69.0-178.171.70.255
178.171.88.0/23
178.171.100.0/23
178.171.104.0/24
178.171.119.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:4d:32:d6:c5:07:8b:9f:e5:c4:b3:39:23:05:ab:0d:26:23:
83:72:16:00:50:b7:26:04:e0:2a:95:bb:8f:c2:02:14:de:9c:
68:2e:1c:a4:9a:6f:f1:6f:c2:46:2f:e3:2b:df:0f:5d:ef:dc:
3d:b6:5c:f5:7e:58:28:6d:ba:85:0b:41:58:1a:11:a3:b9:5b:
7f:d2:e8:df:ac:bc:24:92:0d:71:2b:b3:57:2a:50:42:8d:0a:
83:15:8a:13:94:cb:5c:63:03:8d:d2:00:38:a4:a8:e2:13:36:
d4:e6:8c:b4:c9:25:23:e8:ff:33:f4:e1:93:48:77:53:42:8a:
23:b0:c8:b0:db:dc:11:b3:d0:cc:59:27:1d:ed:99:be:e4:19:
ac:77:da:da:ff:51:d1:a1:de:8a:a3:ad:f8:be:f9:f1:e6:36:
d1:ce:a3:43:df:14:45:02:8a:69:98:41:9a:56:3b:a9:51:54:
4b:b5:10:9f:cc:a0:51:5c:8a:e8:8f:35:07:52:06:0c:67:6f:
ec:81:a5:84:be:df:67:c7:71:90:f2:8c:63:13:b9:ec:cd:45:
a2:ec:22:87:e7:de:a1:7a:9b:46:55:28:36:66:27:f1:7a:9f:
17:40:88:ac:83:8f:37:3a:e3:4c:38:54:57:b7:72:33:06:02:
e2:c0:1d:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:39 2024 by rpki-client on console-fra.rpki-client.org