Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/MNyvz9BtKbgyTV4uz49LRTUlqDA.roa
File: MNyvz9BtKbgyTV4uz49LRTUlqDA.roa (raw, json)
Hash identifier: UTzAEM2vKOK7kLEN5wjdEncKHKgUO3WfGh/+9GlfRBA=
Subject key identifier: 30:DC:AF:CF:D0:6D:29:B8:32:4D:5E:2E:CF:8F:4B:45:35:25:A8:30
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018CE99ABC1522F525FE1E847FA0BD7D256E
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/MNyvz9BtKbgyTV4uz49LRTUlqDA.roa
Signing time: Mon 08 Jan 2024 15:04:41 +0000
ROA not before: Mon 08 Jan 2024 15:04:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42964
IP address blocks: 178.238.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jan 2024 15:14:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e9:9a:bc:15:22:f5:25:fe:1e:84:7f:a0:bd:7d:25:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Jan 8 15:04:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30dcafcfd06d29b8324d5e2ecf8f4b453525a830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ef:59:57:eb:37:60:95:9b:38:9d:9b:52:e8:
cb:59:75:7e:06:66:92:9e:ab:6e:a7:94:d8:ae:8d:
9e:ea:cf:5b:d1:88:4e:ec:4f:07:28:ae:bd:1f:4d:
ce:fe:6d:3a:b5:73:df:7d:64:09:95:0c:fa:88:6a:
ed:c4:10:b3:1b:af:81:c6:1c:5b:be:de:71:1c:00:
da:ce:5a:e6:23:f4:0c:cc:6b:04:ee:9d:24:84:fb:
41:bb:de:b1:fd:c0:f8:82:b3:f8:ca:97:e1:78:f6:
06:5d:14:8b:83:ce:14:86:6c:74:49:17:c8:8e:d4:
3f:ae:98:6f:0b:ae:35:d4:0a:64:89:39:7e:3c:d7:
3c:9d:55:1f:af:c8:51:6c:a7:a1:39:c9:2d:f7:72:
86:54:13:d0:23:c5:62:7a:65:1e:fb:c1:16:14:90:
b3:f2:59:d8:6b:81:24:10:63:41:70:3e:8f:ec:88:
30:87:e8:14:a5:b6:e5:e7:ae:09:21:e7:ec:75:5f:
f0:13:f9:c9:d8:f4:a7:32:71:ca:ad:7e:11:1e:99:
97:d7:46:ec:e4:34:22:43:56:3d:f6:6d:b9:c6:b0:
69:ec:d0:1f:d5:2a:87:63:3f:c8:94:ad:9e:ba:92:
b9:1d:90:5b:93:7a:eb:3d:b8:6c:fd:e3:f7:73:7d:
16:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:DC:AF:CF:D0:6D:29:B8:32:4D:5E:2E:CF:8F:4B:45:35:25:A8:30
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/MNyvz9BtKbgyTV4uz49LRTUlqDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.238.223.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:f4:47:25:59:83:59:01:36:55:b2:3b:d2:a0:8d:59:c5:9b:
fc:09:e1:96:6c:5f:af:0c:0b:1f:b0:ba:bc:f2:d9:f4:c0:33:
af:e5:bf:de:7a:67:d5:fa:10:64:3b:8e:96:83:66:ef:82:dc:
24:4f:4d:f1:d0:be:4b:35:a9:42:d0:96:25:35:d3:aa:9e:84:
44:77:ff:ae:c6:63:7e:69:8c:2a:fd:8d:47:ff:80:13:2b:ae:
33:cd:85:c8:f7:6b:61:d5:4f:3d:5e:99:ef:d1:22:7e:c3:fa:
43:a4:21:64:1a:87:d6:de:06:b5:fe:f5:40:9f:6f:36:cb:ee:
37:cf:a9:7a:21:36:11:cc:be:03:b1:50:42:b2:54:c8:cf:e5:
a2:ed:ed:4b:00:6a:c9:01:92:09:c8:34:fb:6f:f3:22:90:6c:
3f:a3:6e:10:53:de:f2:77:c8:c6:e8:55:d8:12:8b:e5:34:74:
3b:04:60:f8:88:6f:74:d8:1e:e8:12:31:7c:c3:2b:22:da:e9:
3b:ac:e4:03:df:ac:ec:d9:14:cb:a1:10:51:3e:3f:16:76:c3:
1c:e4:7a:9d:b1:1e:b6:ce:d3:e6:e7:61:94:8f:26:7c:b3:26:
c8:6c:88:4b:7b:78:57:2c:ed:aa:29:aa:be:0a:6d:ff:60:71:
cb:6e:0f:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 8 20:35:25 2024 by rpki-client on console-ams.rpki-client.org