Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/p17V7tKQIumu_U989lNBUpXVLqY.roa
File: p17V7tKQIumu_U989lNBUpXVLqY.roa (raw, json)
Hash identifier: X5CjDbwOLzmtEHQGJvZOdx/5ipWOY2ptXJHe9ZKBTVs=
Subject key identifier: A7:5E:D5:EE:D2:90:22:E9:AE:FD:4F:7C:F6:53:41:52:95:D5:2E:A6
Certificate issuer: /CN=4148cbad1748205b4f4334bba638c64c2b21fc0e
Certificate serial: 018C5EA130788F109B7EAE1ED07461AABD19
Authority key identifier: 41:48:CB:AD:17:48:20:5B:4F:43:34:BB:A6:38:C6:4C:2B:21:FC:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QUjLrRdIIFtPQzS7pjjGTCsh_A4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/p17V7tKQIumu_U989lNBUpXVLqY.roa
Signing time: Tue 12 Dec 2023 15:24:31 +0000
ROA not before: Tue 12 Dec 2023 15:24:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 196936
IP address blocks: 178.217.96.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5e:a1:30:78:8f:10:9b:7e:ae:1e:d0:74:61:aa:bd:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4148cbad1748205b4f4334bba638c64c2b21fc0e
Validity
Not Before: Dec 12 15:24:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a75ed5eed29022e9aefd4f7cf653415295d52ea6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:61:09:94:e9:07:7f:f1:fb:f2:ea:3a:ad:58:
c8:3e:46:37:9c:11:d0:75:48:e5:8b:d4:30:53:6f:
ac:75:a6:17:be:9e:0e:aa:61:ed:80:50:cc:6f:3c:
25:0c:e3:0e:5b:2c:84:cb:f5:ed:55:fa:03:06:36:
a5:6b:bd:90:48:42:84:6d:10:6c:48:c5:8a:9e:ef:
2a:6f:ff:3b:b2:60:88:b0:36:b1:c0:8c:cf:e6:50:
90:7c:bb:63:87:d1:c2:4e:25:f9:92:f0:22:db:c9:
f0:9e:6b:70:ae:89:2c:cc:98:63:52:c7:63:4c:70:
bf:39:ed:d9:c3:f9:ba:05:fd:a3:f7:ad:1d:f6:05:
59:c1:12:dd:60:43:22:71:eb:6d:86:ce:5e:74:77:
fc:88:c5:4f:dd:d3:33:17:50:99:49:ae:0f:5e:f9:
30:35:5f:4c:d3:fd:0c:cf:c3:29:b4:2f:3e:da:ae:
40:19:2a:94:70:7a:da:d1:d3:ca:a8:f9:31:fc:2e:
5a:5f:8d:56:4c:67:fb:7e:4f:09:09:fc:24:6a:65:
67:65:66:29:d6:80:37:d9:bb:ad:b3:c6:b9:2b:59:
78:88:4b:c6:0b:22:6b:b2:eb:4d:2c:de:f0:47:1f:
06:0d:a5:36:47:ac:8a:8f:03:a3:25:68:71:50:1e:
1b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:5E:D5:EE:D2:90:22:E9:AE:FD:4F:7C:F6:53:41:52:95:D5:2E:A6
X509v3 Authority Key Identifier:
keyid:41:48:CB:AD:17:48:20:5B:4F:43:34:BB:A6:38:C6:4C:2B:21:FC:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QUjLrRdIIFtPQzS7pjjGTCsh_A4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/p17V7tKQIumu_U989lNBUpXVLqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ce21b3-c4de-456d-b538-97975d34fc6c/1/QUjLrRdIIFtPQzS7pjjGTCsh_A4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.217.96.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:d0:b8:bc:c8:55:9e:9f:42:81:90:be:01:c9:7a:f3:64:27:
d6:f6:7f:83:ba:dd:b0:53:b0:d2:cb:a8:c2:66:e9:66:1c:30:
eb:a3:4d:18:b9:bd:6a:db:cb:eb:5b:76:25:11:97:9b:8e:83:
05:14:ad:e8:3a:b8:34:33:18:69:46:a7:db:0c:56:02:f7:52:
a9:c5:32:e9:91:87:a4:f0:82:61:2b:df:21:9d:55:5c:0d:60:
31:1a:e3:0d:ed:6a:5c:f4:52:26:c6:a1:e7:6c:3e:96:dc:26:
a8:b4:15:f1:92:1c:24:3d:93:30:2f:2b:4a:cc:6e:1d:90:6b:
a8:a5:b9:b7:3e:a7:b0:7b:10:a6:18:91:1c:03:ee:33:64:cb:
d5:06:4e:bb:e0:95:37:f2:c5:e7:97:ee:7e:de:d9:5b:7f:f4:
f9:e4:58:3b:fa:cb:e6:00:95:4a:ee:19:0d:5f:c9:f5:1e:40:
a1:f2:9d:b5:79:34:c6:73:08:e7:15:75:5d:38:2a:5e:25:b3:
7a:cf:d2:d2:c3:46:59:b6:d7:c3:d9:e7:08:7b:54:12:17:47:
1d:eb:f3:a2:e9:bb:09:0b:d1:0a:88:4a:22:7b:9d:7f:df:e5:
ca:e6:4b:37:23:10:49:af:f0:f6:a2:cc:4c:a1:d6:d2:ab:f0:
12:4e:84:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:28 2024 by rpki-client on console-fra.rpki-client.org