Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f7c11f-4e9e-436d-a3df-fedbd4c66a0e/1/tB1gYe_tBaeQAX7vSNQpe9DA6Mo.roa
File: tB1gYe_tBaeQAX7vSNQpe9DA6Mo.roa (raw, json)
Hash identifier: PFBYD2qnCL296Ui/CNpIhVXMhTxVLyBMCQTBQkPmNQE=
Subject key identifier: B4:1D:60:61:EF:ED:05:A7:90:01:7E:EF:48:D4:29:7B:D0:C0:E8:CA
Certificate issuer: /CN=50f88e05c898796c82ff0147568816e933420e18
Certificate serial: 01857169AC00534D45797B76F505D31F91E0
Authority key identifier: 50:F8:8E:05:C8:98:79:6C:82:FF:01:47:56:88:16:E9:33:42:0E:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPiOBciYeWyC_wFHVogW6TNCDhg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f7c11f-4e9e-436d-a3df-fedbd4c66a0e/1/tB1gYe_tBaeQAX7vSNQpe9DA6Mo.roa
Signing time: Mon 02 Jan 2023 07:37:08 +0000
ROA not before: Mon 02 Jan 2023 07:37:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50673
IP address blocks: 178.18.28.0/24 maxlen: 24
178.18.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:ac:00:53:4d:45:79:7b:76:f5:05:d3:1f:91:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50f88e05c898796c82ff0147568816e933420e18
Validity
Not Before: Jan 2 07:37:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b41d6061efed05a790017eef48d4297bd0c0e8ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6e:61:eb:6b:c2:b8:f4:48:db:5a:a0:7b:58:
9f:8e:02:72:6b:8f:3d:48:f0:5e:80:47:dd:cf:95:
74:37:42:46:59:f6:4a:11:11:e4:2e:8c:0d:d3:ef:
fb:0d:59:72:e5:0c:79:b1:45:25:69:bb:9a:83:bc:
7e:bf:57:bd:44:d2:21:81:a7:a8:1a:4e:b1:e9:b5:
95:d8:cc:d1:ba:cd:b5:61:0c:27:68:13:6a:59:ba:
50:07:61:6d:c6:06:79:4f:fb:01:4c:ea:3d:c9:fa:
da:19:c1:7e:03:01:b9:58:76:6a:82:00:bd:ee:09:
ec:21:36:77:e6:7c:43:92:b3:39:e2:ed:c6:89:c0:
7a:09:a1:38:fe:62:2d:e6:ab:9f:c7:c5:92:d8:ee:
a8:db:16:56:01:79:de:86:fb:19:4c:eb:c1:7c:71:
ba:41:a4:fb:0a:79:4c:94:49:b2:93:60:90:61:c3:
8f:c8:bc:78:61:22:62:c3:c2:98:14:07:83:39:c6:
ac:1f:3b:29:9c:33:74:aa:b4:b7:bc:ab:40:2f:7c:
57:06:4c:dc:6b:56:d7:f0:b8:43:50:3f:24:0d:ab:
91:b5:a9:be:92:bf:32:1e:cf:9e:80:3d:4f:35:38:
75:e0:06:7a:96:ce:98:70:93:5c:7d:55:2b:1a:a8:
b8:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:1D:60:61:EF:ED:05:A7:90:01:7E:EF:48:D4:29:7B:D0:C0:E8:CA
X509v3 Authority Key Identifier:
keyid:50:F8:8E:05:C8:98:79:6C:82:FF:01:47:56:88:16:E9:33:42:0E:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPiOBciYeWyC_wFHVogW6TNCDhg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f7c11f-4e9e-436d-a3df-fedbd4c66a0e/1/tB1gYe_tBaeQAX7vSNQpe9DA6Mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f7c11f-4e9e-436d-a3df-fedbd4c66a0e/1/UPiOBciYeWyC_wFHVogW6TNCDhg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.18.28.0/23
Signature Algorithm: sha256WithRSAEncryption
17:30:07:04:20:98:f9:f6:0c:46:d6:a5:93:d4:17:85:33:0b:
bb:b9:c7:37:3e:20:93:bd:23:d6:e3:51:25:a2:ec:3b:71:d7:
8d:ee:3e:91:d5:86:db:9f:e6:9e:fd:5c:f5:a8:68:a4:f2:b3:
2f:86:59:e4:d1:09:ad:fc:e0:7d:23:92:57:6c:38:29:3d:5d:
b2:96:02:d4:26:0b:ce:a5:13:ed:b8:ec:58:39:56:e2:e7:a2:
b0:2d:b1:65:ac:57:c7:cb:6f:39:07:0c:33:2f:e1:92:ea:57:
0e:03:ee:ab:f3:c2:98:20:a1:b0:c1:7c:9e:e0:f2:a8:1b:10:
47:71:44:95:70:cb:94:01:c2:76:fe:a2:d5:3e:6b:c2:fe:13:
60:ef:8b:ba:20:b9:c0:35:5c:dd:d0:22:80:99:e8:cf:bf:25:
50:80:9f:07:31:f8:0a:9b:1a:31:5b:cd:20:ec:22:df:94:f3:
10:c9:af:ab:b9:b1:71:a3:b4:b2:5d:95:95:0d:a0:79:25:71:
2d:95:5e:49:4d:c1:d9:12:34:7e:44:49:83:56:a5:90:6e:cf:
3a:b5:da:4e:24:4a:7c:03:ba:7d:84:f6:0b:73:1f:58:78:3d:
d6:6c:03:eb:2d:12:26:6b:75:fa:b4:02:28:37:76:73:c3:81:
1a:42:26:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:19 2024 by rpki-client on console-fra.rpki-client.org