Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/bT8A49SBKMlxcheLRbcpDppi5y0.roa
File: bT8A49SBKMlxcheLRbcpDppi5y0.roa (raw, json)
Hash identifier: C2znaYUw5g6ViGYNbMp+2wvVpn3KQUtG61NLm5M8FuU=
Subject key identifier: 6D:3F:00:E3:D4:81:28:C9:71:72:17:8B:45:B7:29:0E:9A:62:E7:2D
Certificate issuer: /CN=1739f964cd489fcd2500b37681d58479d553c8ab
Certificate serial: 01856F66D08C78AEFB807F178149E3A6D1B2
Authority key identifier: 17:39:F9:64:CD:48:9F:CD:25:00:B3:76:81:D5:84:79:D5:53:C8:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/bT8A49SBKMlxcheLRbcpDppi5y0.roa
Signing time: Sun 01 Jan 2023 22:14:47 +0000
ROA not before: Sun 01 Jan 2023 22:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51343
IP address blocks: 178.214.32.0/19 maxlen: 19
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:d0:8c:78:ae:fb:80:7f:17:81:49:e3:a6:d1:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1739f964cd489fcd2500b37681d58479d553c8ab
Validity
Not Before: Jan 1 22:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d3f00e3d48128c97172178b45b7290e9a62e72d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:11:3b:bf:3f:f4:80:9c:47:6c:be:bf:b8:e9:
72:59:75:d4:21:b4:aa:27:88:b3:1f:a9:59:d7:0a:
61:12:86:60:f7:f8:4e:d6:fe:e6:56:50:d1:76:e7:
2a:60:ac:30:9d:96:17:f7:a0:05:07:5e:4c:79:fb:
94:e0:b9:c1:f5:91:22:2f:f2:3d:2f:ea:f9:2f:f9:
79:67:f7:18:8f:4f:8e:47:70:f5:56:bc:db:41:5a:
4e:bf:d5:d3:12:8c:7c:f7:91:ea:66:3d:9c:b8:4d:
c0:e1:10:53:cf:bc:f0:2f:d3:11:98:9f:f2:e9:09:
82:74:1d:3a:d5:c5:94:ee:fb:a2:28:8f:51:17:a0:
64:00:1c:f8:21:45:8a:15:bc:eb:af:b1:07:6a:4a:
fb:7e:aa:d5:be:11:ea:1d:b3:c5:5b:96:50:4c:2f:
e4:62:2c:b0:7b:39:74:76:70:2a:12:55:d1:9a:09:
ee:e2:1e:26:3e:22:1a:c6:c7:3c:78:92:d9:59:5d:
a9:87:d0:7a:9b:62:5c:41:cf:2c:41:4e:28:e6:83:
8f:9b:55:12:92:9e:5b:fb:8f:cd:38:3e:16:71:00:
0c:16:cf:e1:8f:af:a3:35:4b:f8:6f:f7:da:17:d5:
0b:65:7d:82:e5:90:a3:bb:a0:5d:1e:53:d4:d1:af:
e4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:3F:00:E3:D4:81:28:C9:71:72:17:8B:45:B7:29:0E:9A:62:E7:2D
X509v3 Authority Key Identifier:
keyid:17:39:F9:64:CD:48:9F:CD:25:00:B3:76:81:D5:84:79:D5:53:C8:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/bT8A49SBKMlxcheLRbcpDppi5y0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.214.32.0/19
Signature Algorithm: sha256WithRSAEncryption
2f:b2:4c:ea:8e:85:13:1f:f2:b3:30:41:0c:02:bd:ae:d1:16:
e4:c5:9b:7d:f5:c5:14:e4:48:23:ac:e5:50:37:df:cb:16:18:
48:41:b0:47:59:fe:ea:86:33:b6:28:7a:6c:e9:2d:94:25:e9:
c0:47:e5:db:8b:5e:a3:0a:bb:3b:0f:7e:3e:f2:c4:64:20:15:
d3:6a:8b:1b:d7:0b:91:4a:2c:46:8e:f3:04:09:79:58:e6:e0:
f7:6e:4d:5a:de:b2:28:a1:6b:d4:c7:a3:57:2d:d1:1d:98:92:
5f:12:09:1f:f1:cd:1e:4d:fd:eb:4b:df:99:7b:28:8e:5f:f1:
41:d7:56:61:00:79:32:28:b4:0c:cc:3a:50:52:89:a7:61:3d:
3d:78:51:d8:f8:af:cc:66:6f:08:24:f9:33:c8:c0:e7:9b:93:
7a:51:ae:93:75:e9:21:44:fa:49:23:b2:cb:a1:1a:27:38:b3:
c7:e3:a6:c6:f3:32:c6:09:12:a0:5d:dd:88:43:ae:d1:80:88:
5c:19:b5:02:14:53:ee:74:d9:35:c3:30:b0:de:0d:a7:f9:0e:
0b:5f:36:db:63:f2:32:cd:17:64:55:66:d2:e4:61:5c:0d:e6:
89:5c:52:77:2f:7e:ab:ed:30:65:28:f6:21:a1:34:a8:87:39:
ce:87:3a:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:00 2024 by rpki-client on console-fra.rpki-client.org