Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/tK6JSRiCE0KYsBsvQw8Ax44DPDc.roa
File: tK6JSRiCE0KYsBsvQw8Ax44DPDc.roa (raw, json)
Hash identifier: AKNju6eTYAki/sNaP0pRlr4S6XVDsGyYC9iHVL5Ane4=
Subject key identifier: B4:AE:89:49:18:82:13:42:98:B0:1B:2F:43:0F:00:C7:8E:03:3C:37
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018CCA2A68195E8B50BCD309667046522DA9
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/tK6JSRiCE0KYsBsvQw8Ax44DPDc.roa
Signing time: Tue 02 Jan 2024 12:33:45 +0000
ROA not before: Tue 02 Jan 2024 12:33:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 18464
IP address blocks: 178.173.224.0/19 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jan 2024 08:10:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:68:19:5e:8b:50:bc:d3:09:66:70:46:52:2d:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 2 12:33:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b4ae89491882134298b01b2f430f00c78e033c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:18:87:f8:c4:07:c1:3b:39:19:45:2a:1a:13:
9d:15:0e:56:24:83:fe:7d:41:b5:f5:09:b0:82:a3:
d5:39:fd:3f:ab:87:b3:43:ee:00:76:ce:84:b1:a8:
02:8c:22:88:53:42:4e:b5:3b:c8:7f:09:37:7a:03:
ba:9c:cb:b0:74:ff:9b:04:f4:51:ca:b5:86:6d:50:
3a:f8:f8:1a:41:f0:d9:c2:06:5f:56:0c:c1:32:dc:
67:37:81:35:f0:bd:37:33:db:98:b4:df:b1:45:6a:
c9:7d:9a:71:24:b9:12:ec:52:fb:08:0c:2d:a9:52:
8e:57:4e:4d:7c:3d:e6:e2:e7:68:e4:b5:1c:eb:c4:
16:6f:3d:5b:1b:5e:04:79:dd:25:f9:64:c8:b0:a5:
4f:1b:53:54:50:49:03:a0:9d:31:22:10:04:7d:e9:
80:62:2d:5e:df:a7:8f:8a:f8:f6:b1:e1:0b:2b:43:
a3:fe:e1:62:50:db:d8:0f:b0:7c:64:3f:98:3a:81:
f0:48:92:15:8f:73:77:17:47:2b:98:be:7f:cc:30:
a4:ac:c2:19:3e:7e:14:8b:b1:30:ff:d2:9e:86:7a:
9c:c9:89:54:82:16:f7:cc:3a:ae:df:fb:29:50:bc:
13:e0:23:10:f5:73:c8:97:99:2b:24:18:bd:1e:03:
3e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:AE:89:49:18:82:13:42:98:B0:1B:2F:43:0F:00:C7:8E:03:3C:37
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/tK6JSRiCE0KYsBsvQw8Ax44DPDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.173.224.0/19
Signature Algorithm: sha256WithRSAEncryption
be:8e:05:d4:f7:fc:75:e2:61:92:ea:4f:8d:54:f8:cb:e8:1d:
21:f3:86:7f:e9:60:b2:cc:43:c2:6b:f6:dd:50:5d:e3:be:03:
ae:fa:e8:ba:52:bd:7f:11:63:19:f7:86:4d:08:e9:60:15:25:
09:e6:84:1b:90:69:a0:62:ca:05:a7:24:ca:6d:e6:a4:b6:24:
f2:08:84:c1:60:d6:2d:6e:61:e6:0b:d0:b1:08:83:15:8c:6a:
bc:9a:70:60:59:f0:75:ce:4a:96:42:6a:11:6d:12:14:6f:9a:
7c:06:37:48:3e:b2:60:73:f5:3b:a5:1d:fd:32:a4:bf:60:43:
f9:e2:22:04:45:46:34:6c:7c:49:f3:5b:bc:d0:83:f9:fa:5e:
9a:2a:28:c3:ac:ea:cb:23:71:44:18:09:31:b1:15:d9:8d:3b:
22:e9:83:ea:cf:67:d6:5c:99:63:24:6f:ee:71:03:e1:be:bc:
a4:aa:c4:7e:30:a2:47:30:db:33:0c:33:54:bb:a1:dc:eb:95:
fb:02:33:23:0f:36:13:8f:b5:73:bd:69:32:ad:c8:d8:df:90:
4b:cf:4f:12:3f:9b:55:a1:ce:8c:d0:91:d7:75:ef:a2:b7:3b:
85:c7:b4:88:c3:9e:d6:b7:19:08:f2:46:01:99:05:9d:bd:2e:
c0:b5:84:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 9 12:41:17 2024 by rpki-client on console-fra.rpki-client.org