Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/42f81b-c42c-4254-abb9-2142f8fb676e/1/u2atkZq1PrKSES1AuPPmqDHJ5Hw.roa
File: u2atkZq1PrKSES1AuPPmqDHJ5Hw.roa (raw, json)
Hash identifier: lVvE+jBfEBV+dvz9KY30A7my1j4Vd4XS/9vDY7jmtKE=
Subject key identifier: BB:66:AD:91:9A:B5:3E:B2:92:11:2D:40:B8:F3:E6:A8:31:C9:E4:7C
Certificate issuer: /CN=25ae551af0bb5d7977ea73f6896f25f1eca28f9d
Certificate serial: 018B8090342713DDD08F153793368737B391
Authority key identifier: 25:AE:55:1A:F0:BB:5D:79:77:EA:73:F6:89:6F:25:F1:EC:A2:8F:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ja5VGvC7XXl36nP2iW8l8eyij50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/42f81b-c42c-4254-abb9-2142f8fb676e/1/u2atkZq1PrKSES1AuPPmqDHJ5Hw.roa
Signing time: Mon 30 Oct 2023 12:30:16 +0000
ROA not before: Mon 30 Oct 2023 12:30:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200845
IP address blocks: 185.178.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Nov 2023 15:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:80:90:34:27:13:dd:d0:8f:15:37:93:36:87:37:b3:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25ae551af0bb5d7977ea73f6896f25f1eca28f9d
Validity
Not Before: Oct 30 12:30:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb66ad919ab53eb292112d40b8f3e6a831c9e47c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4b:11:31:30:6e:e1:eb:8f:f1:55:ac:d1:44:
85:da:79:45:1b:7e:04:0c:16:ee:6b:67:ff:0c:a6:
bc:d2:fb:9a:13:4c:ac:a5:af:d8:79:ff:5e:d0:d8:
ee:f5:29:55:73:e9:a1:28:66:4b:01:88:06:d8:00:
1b:06:58:99:89:3b:32:12:a2:99:ef:e7:ae:53:14:
18:96:d4:bc:60:f7:49:2f:0e:2b:4f:d4:5d:20:de:
c6:56:5a:4a:99:ee:81:f0:c2:c4:c6:b5:43:4f:12:
de:72:74:2f:64:b8:e8:f1:1a:8d:4f:a8:31:70:5c:
9f:07:02:72:ca:c4:5b:c5:d9:dc:b9:e8:0c:04:0a:
51:88:cd:fe:37:d7:8c:b9:bf:94:03:d7:eb:06:9a:
e5:b9:77:ce:50:59:3d:07:54:c9:41:2e:f5:1c:f3:
33:c3:6a:a9:4b:6c:0e:de:65:76:39:70:dc:a0:00:
ca:d8:63:e7:b2:dd:aa:26:c0:33:53:e3:b9:ef:27:
6c:6c:4c:60:1f:be:cd:1a:94:c4:77:8e:69:ad:75:
5c:57:da:ad:40:21:4d:68:2c:65:73:e6:8d:b2:41:
1e:10:f5:e7:8e:ac:61:89:41:08:8f:78:78:52:00:
a0:12:a0:02:d7:f2:fa:1e:ed:a2:fe:07:f1:76:b1:
a2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:66:AD:91:9A:B5:3E:B2:92:11:2D:40:B8:F3:E6:A8:31:C9:E4:7C
X509v3 Authority Key Identifier:
keyid:25:AE:55:1A:F0:BB:5D:79:77:EA:73:F6:89:6F:25:F1:EC:A2:8F:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ja5VGvC7XXl36nP2iW8l8eyij50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/42f81b-c42c-4254-abb9-2142f8fb676e/1/u2atkZq1PrKSES1AuPPmqDHJ5Hw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/42f81b-c42c-4254-abb9-2142f8fb676e/1/Ja5VGvC7XXl36nP2iW8l8eyij50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.170.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:3e:1f:4e:ee:89:74:20:7c:41:22:0c:03:04:63:54:75:2f:
d6:bb:6a:28:2c:f1:95:e3:4a:1c:e8:e6:59:4a:8d:fd:52:89:
39:7d:78:17:34:d0:00:11:28:19:0d:75:8f:a7:97:e0:31:94:
20:67:d5:90:7d:21:5e:5e:e5:75:4b:2b:04:b3:68:aa:31:be:
7e:ba:4a:85:63:82:6e:3c:1b:37:ee:b7:50:0d:65:b0:ae:9b:
1d:23:87:0c:bc:bc:44:1e:38:bc:10:4d:05:bd:53:d8:ac:e8:
58:3f:03:c4:0c:fd:b7:09:55:1e:7e:f4:d9:fc:1f:42:dc:cb:
cf:90:ad:d1:b3:79:ac:29:17:ff:a4:63:ce:f9:57:64:0f:99:
d9:20:53:9e:5c:1f:2a:66:9f:92:70:f0:9f:77:2f:10:9a:c6:
26:43:bd:7d:d3:79:64:e2:68:44:fc:dd:73:40:c4:bd:11:e2:
93:f4:03:63:a9:21:bf:43:6c:1f:42:28:b0:33:1d:a3:45:9f:
e1:f9:88:2a:9e:ac:1f:b8:24:d7:a1:bd:67:39:da:88:ee:09:
33:2a:6b:6f:e3:8c:1d:95:08:1d:f3:30:14:a1:46:a9:5e:ab:
64:a6:b8:76:60:5a:92:5d:ba:65:6d:1a:e3:5f:e3:15:45:b2:
22:12:c6:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:29 2024 by rpki-client on console-fra.rpki-client.org