Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/72IOk0rY1sbbDcrJG0Nw5DX7g_k.roa
File: 72IOk0rY1sbbDcrJG0Nw5DX7g_k.roa (raw, json)
Hash identifier: qJk9fcPlaDUe8yyqkiEjMJd4xExVr4qTGI7GFAnkoHA=
Subject key identifier: EF:62:0E:93:4A:D8:D6:C6:DB:0D:CA:C9:1B:43:70:E4:35:FB:83:F9
Certificate issuer: /CN=c85d01b442946e1924313d564f31b7e42e2455e7
Certificate serial: 01857079720E1E19AFD9E417E2CC854672B1
Authority key identifier: C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/72IOk0rY1sbbDcrJG0Nw5DX7g_k.roa
Signing time: Mon 02 Jan 2023 03:14:45 +0000
ROA not before: Mon 02 Jan 2023 03:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201416
IP address blocks: 178.211.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Jan 2023 06:39:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:72:0e:1e:19:af:d9:e4:17:e2:cc:85:46:72:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85d01b442946e1924313d564f31b7e42e2455e7
Validity
Not Before: Jan 2 03:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef620e934ad8d6c6db0dcac91b4370e435fb83f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:54:dd:67:13:ac:bf:7f:06:27:03:fe:9f:59:
3c:f9:1f:96:2e:c3:48:76:a0:54:0e:ae:67:44:61:
a9:cf:7c:a0:fa:13:3f:0c:5a:4b:3f:6f:61:c9:b7:
d8:cd:21:b8:e9:db:fc:29:16:f3:42:bf:4a:97:be:
9b:67:ee:b8:9c:bd:16:ef:a2:fa:f4:f2:9d:a7:41:
96:02:bf:ea:09:85:0a:05:17:15:93:f1:58:b8:14:
df:c5:2e:d0:cd:18:53:f1:7b:7a:a7:8c:e9:57:d1:
97:38:e1:7f:2c:32:b3:8d:fb:f9:5b:1e:0d:0f:f9:
07:c1:84:93:3c:00:f2:64:a9:c1:bd:ee:10:bf:55:
e0:69:4b:8d:47:3c:63:03:68:68:2c:fd:9d:62:bb:
b8:48:55:ae:e0:2b:49:6c:0f:ff:68:ec:2c:32:99:
54:e2:10:96:51:3e:1f:ef:d3:ae:47:0e:4b:47:cb:
ff:47:39:5d:9f:17:36:d4:a2:7d:6e:ec:ba:12:dc:
fe:b4:a5:f0:e9:05:3d:46:15:99:63:71:7c:23:0f:
b8:b8:bb:69:80:01:40:d9:d3:27:d9:9a:4c:87:c2:
32:30:86:7b:3d:f2:96:75:4b:f6:da:87:c7:d2:64:
a3:b8:50:51:d1:a7:68:86:dd:96:29:2a:ac:cd:2e:
63:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:62:0E:93:4A:D8:D6:C6:DB:0D:CA:C9:1B:43:70:E4:35:FB:83:F9
X509v3 Authority Key Identifier:
keyid:C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/72IOk0rY1sbbDcrJG0Nw5DX7g_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.211.152.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:0e:6c:6f:10:26:34:29:2c:ed:c2:20:25:69:9a:fa:02:e7:
7a:94:e7:f7:90:00:00:7d:0f:dc:b8:3a:e5:7c:a7:42:96:0b:
8a:09:8f:b1:d0:e5:49:48:ae:a3:2e:85:d5:4d:39:d1:44:c1:
27:4d:68:29:40:15:e2:89:d3:0e:aa:4f:66:14:0c:f7:40:4b:
4e:68:21:30:74:d9:98:1a:0f:3f:ea:f6:2e:9c:39:1f:2b:95:
09:6c:a1:63:eb:a3:f3:76:be:27:e3:6e:98:c9:cf:b2:ae:7c:
05:67:3a:5b:71:8a:0f:da:a0:8f:c4:7b:07:36:0f:b2:25:1c:
57:91:8e:71:47:cd:17:bf:11:4f:99:d2:54:09:ba:a0:62:de:
d6:b4:66:5a:b9:2e:34:63:13:c2:90:7c:02:26:97:38:4e:00:
5b:dd:dc:f7:98:cd:ed:a5:d3:55:6c:a6:0e:2e:1a:cd:0d:9a:
9b:e7:17:ba:78:46:ee:8c:5b:5c:48:7e:9d:8c:89:ae:5c:31:
ce:59:87:ce:09:37:fd:81:70:6d:bd:8c:3c:58:95:40:34:43:
2c:e9:4d:3c:2f:3f:94:7c:3b:06:e6:7d:3f:d7:d0:02:97:cb:
d0:a0:b8:f5:bf:df:5f:6e:96:5d:8b:40:30:92:2c:f4:96:29:
d9:06:a5:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:01 2024 by rpki-client on console-fra.rpki-client.org