Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/9X2inQk8b8cTWggZqOOPYoqa6gQ.roa
File: 9X2inQk8b8cTWggZqOOPYoqa6gQ.roa (raw, json)
Hash identifier: CkNXAizFV7u5OVOpAfDwnkwsvq3/n+UvqZnyPTmKi9U=
Subject key identifier: F5:7D:A2:9D:09:3C:6F:C7:13:5A:08:19:A8:E3:8F:62:8A:9A:EA:04
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEED8BA8E6E3C08175EDBFFF017774F
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/9X2inQk8b8cTWggZqOOPYoqa6gQ.roa
Signing time: Sun 01 Jan 2023 06:04:53 +0000
ROA not before: Sun 01 Jan 2023 06:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205748
IP address blocks: 178.16.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:d8:ba:8e:6e:3c:08:17:5e:db:ff:f0:17:77:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f57da29d093c6fc7135a0819a8e38f628a9aea04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c7:f4:0a:63:64:80:e3:d1:0f:c5:f3:8e:58:
fa:7e:6d:40:9c:eb:8a:04:91:5e:32:20:cf:f7:a6:
ef:17:70:58:9c:8d:24:c0:47:cd:e0:58:7a:6a:03:
18:d8:cb:a2:56:9d:79:84:50:12:32:d1:2b:7b:45:
b8:2a:87:35:de:2f:af:ae:62:32:52:fc:d0:80:7b:
ee:8e:ee:d4:9c:d9:1b:36:70:32:a6:a3:1a:19:90:
b5:6b:94:82:88:b0:e7:58:b8:9e:27:18:ad:1e:07:
12:c5:06:ab:92:4d:32:1c:1c:16:2a:ca:43:fd:9b:
9d:5c:d4:bc:af:05:d4:41:00:48:aa:d4:a7:49:d2:
95:7d:cd:10:7c:1d:61:18:e3:5a:83:bf:7d:e8:d1:
ea:02:45:ac:8e:4f:bf:a6:7e:d7:b2:86:e9:57:cc:
d4:03:10:d6:99:9c:cb:85:a5:6a:a9:e0:1f:50:98:
03:6d:25:88:a2:c7:3b:cc:a4:bc:3d:33:69:89:e0:
5d:9d:3b:59:da:63:85:90:93:7d:da:bf:96:c3:72:
24:53:02:55:48:84:22:08:4f:76:c7:0f:9a:97:21:
a3:12:51:cc:48:a2:40:6a:8d:ab:bc:33:b9:7a:bb:
fc:be:47:5c:e7:70:03:6c:cf:7c:91:03:1f:e2:8c:
6a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:7D:A2:9D:09:3C:6F:C7:13:5A:08:19:A8:E3:8F:62:8A:9A:EA:04
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/9X2inQk8b8cTWggZqOOPYoqa6gQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.16.126.0/24
Signature Algorithm: sha256WithRSAEncryption
46:f9:f3:8a:92:7d:2b:3c:00:90:93:56:3c:af:8f:a9:38:6d:
27:ba:ee:01:11:99:38:d5:dd:9f:f2:9b:f8:28:e3:6c:a9:9a:
a0:af:65:d5:03:a4:69:f0:cb:51:b0:9c:cb:f1:f1:23:fa:12:
6b:0e:bc:9a:5d:16:98:26:f8:6a:94:3b:e0:88:4d:53:35:b5:
23:d9:eb:18:09:56:9a:73:ae:de:65:2b:7f:8b:cf:8d:b4:5e:
ad:31:7d:91:c9:1b:6a:c0:0b:8e:17:94:80:33:59:1a:56:34:
f8:ea:a7:f1:5e:eb:08:39:d0:01:c5:c8:68:4e:b0:0d:d4:7b:
3b:2a:b0:81:10:2e:dc:21:f7:77:b3:de:72:b7:39:05:4d:1f:
35:94:a2:bc:60:b8:21:a3:dc:dc:ea:1e:f2:3b:28:0e:0c:05:
52:2d:74:84:58:14:99:55:d7:33:21:c3:b9:1a:3c:05:6f:b7:
b6:2d:2a:4e:83:4d:bd:08:76:94:33:28:57:1c:ff:b2:84:23:
d9:36:b4:bb:43:02:59:e8:5e:6c:a5:a2:5d:a6:d9:17:a4:36:
5d:7b:30:59:8b:6d:9f:2a:62:f0:c4:e2:7f:f8:ea:30:dc:06:
2b:92:21:0d:ab:5a:3b:fb:8f:d0:e2:10:9e:35:84:be:6e:77:
98:85:60:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org