Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/03b8b4-fd9d-4fdd-adcb-4373e9ca9704/1/zEIRa6mKAvXDSESMeSY9RXl2sH0.roa
File: zEIRa6mKAvXDSESMeSY9RXl2sH0.roa (raw, json)
Hash identifier: 6jJkv24bsKTDDAuRJr4Y8H6z/I/4kjckD2ZEWx13e4g=
Subject key identifier: CC:42:11:6B:A9:8A:02:F5:C3:48:44:8C:79:26:3D:45:79:76:B0:7D
Certificate issuer: /CN=7e03dcb666dd224d91429f33c769faebfa951d04
Certificate serial: 01856DD40B49169539538AF4FB943DFD25F9
Authority key identifier: 7E:03:DC:B6:66:DD:22:4D:91:42:9F:33:C7:69:FA:EB:FA:95:1D:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fgPctmbdIk2RQp8zx2n66_qVHQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/03b8b4-fd9d-4fdd-adcb-4373e9ca9704/1/zEIRa6mKAvXDSESMeSY9RXl2sH0.roa
Signing time: Sun 01 Jan 2023 14:54:51 +0000
ROA not before: Sun 01 Jan 2023 14:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399114
IP address blocks: 178.211.157.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:0b:49:16:95:39:53:8a:f4:fb:94:3d:fd:25:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e03dcb666dd224d91429f33c769faebfa951d04
Validity
Not Before: Jan 1 14:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc42116ba98a02f5c348448c79263d457976b07d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:52:b0:ba:23:6f:07:91:e5:dc:3a:0e:1d:a2:
be:c3:87:3b:a5:51:f9:e6:60:10:04:27:a5:78:a9:
23:83:46:1a:1c:ee:34:3f:27:7c:5b:48:e5:63:e9:
d1:42:b8:55:c8:2b:71:d7:ef:79:96:39:56:44:0d:
f0:76:dd:58:b9:19:44:e9:58:39:92:1f:be:63:04:
03:59:57:cf:78:24:68:7e:19:21:5a:7f:65:df:38:
e1:45:80:0f:9c:07:76:b4:5f:10:3c:0e:4a:84:06:
9b:ff:58:74:a3:ee:bb:13:3f:13:40:af:fe:8a:28:
76:b6:2a:4e:84:b2:df:57:d0:89:81:ab:13:20:3f:
07:66:7d:35:cf:33:7e:fb:64:7e:02:e9:32:81:bd:
1d:7f:70:d2:8e:2e:d4:33:3b:5b:ce:25:19:21:03:
24:eb:5e:83:b3:5c:d0:4d:80:0d:9f:d9:21:83:dc:
f3:8d:4a:a5:28:ec:39:99:50:34:8a:ca:83:ab:a2:
d5:87:ec:ad:1f:ee:ff:99:3d:fc:b0:8e:b7:cf:10:
d8:95:e3:a1:55:04:8b:db:3b:28:fc:00:e9:23:9f:
f7:2f:6e:da:e3:22:97:78:d5:ba:9a:f1:83:52:c3:
cc:0b:4f:32:a9:44:c6:6b:5b:ec:2e:db:26:c3:80:
4d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:42:11:6B:A9:8A:02:F5:C3:48:44:8C:79:26:3D:45:79:76:B0:7D
X509v3 Authority Key Identifier:
keyid:7E:03:DC:B6:66:DD:22:4D:91:42:9F:33:C7:69:FA:EB:FA:95:1D:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fgPctmbdIk2RQp8zx2n66_qVHQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/03b8b4-fd9d-4fdd-adcb-4373e9ca9704/1/zEIRa6mKAvXDSESMeSY9RXl2sH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/03b8b4-fd9d-4fdd-adcb-4373e9ca9704/1/fgPctmbdIk2RQp8zx2n66_qVHQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.211.157.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:e3:54:06:a4:d9:17:1d:86:99:1c:52:a2:a7:91:de:00:c2:
be:8c:be:a0:c7:d1:d2:c8:1a:11:bb:dd:13:35:19:0f:e5:82:
41:cf:31:bc:38:27:df:94:c8:e1:de:7b:2e:7c:ba:30:43:b0:
64:47:e8:d6:9f:19:0d:a1:cb:21:fb:0f:dc:a2:2d:5a:43:e4:
20:ac:ea:63:fc:20:84:f2:e4:1d:5f:43:26:26:c1:38:8f:c6:
27:8c:a0:c9:71:be:e0:87:18:7b:3e:20:13:68:63:e8:d7:a3:
ca:96:46:93:2f:1b:4f:db:84:99:1f:dd:8a:49:34:ea:21:12:
31:17:19:2e:0a:7b:90:af:b9:1f:83:e0:f1:aa:ad:5d:40:15:
e6:f6:b6:83:32:a3:94:e6:9e:c2:ae:c6:10:c1:28:db:2d:bc:
e3:41:f4:44:62:bb:f5:ba:c8:e8:27:f6:b8:23:cd:d9:a0:6d:
2e:64:6d:56:be:f6:2e:e6:4b:b3:72:c6:2c:77:63:18:30:bb:
63:57:91:c1:a8:e4:ed:53:43:b3:05:47:e7:8e:bb:ff:dc:ca:
a7:37:c6:cf:7d:e9:46:17:92:6d:90:67:bb:7c:c9:f2:a4:da:
8b:9c:89:3a:8e:ff:21:f3:b0:94:3b:15:1f:29:14:80:ed:ed:
fd:2c:5a:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:22 2024 by rpki-client on console-ams.rpki-client.org