Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/1UzIJiVFDxWAnVA_meEwxjqEeeg.roa
File: 1UzIJiVFDxWAnVA_meEwxjqEeeg.roa (raw, json)
Hash identifier: BROdey+UMq6uRnC6cFTmM/GmeGc+lQ9CfNeZECZLjRs=
Subject key identifier: D5:4C:C8:26:25:45:0F:15:80:9D:50:3F:99:E1:30:C6:3A:84:79:E8
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01866DA7C98F1C588D338DD2186EB0D3B063
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/1UzIJiVFDxWAnVA_meEwxjqEeeg.roa
Signing time: Mon 20 Feb 2023 07:09:18 +0000
ROA not before: Mon 20 Feb 2023 07:09:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200215
IP address blocks: 178.170.231.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6d:a7:c9:8f:1c:58:8d:33:8d:d2:18:6e:b0:d3:b0:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Feb 20 07:09:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d54cc82625450f15809d503f99e130c63a8479e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2c:b6:80:33:d3:2c:c4:d1:c8:84:1f:cf:be:
db:e7:6a:e1:0a:fd:56:b3:b7:75:97:98:33:e7:ad:
dc:50:71:a2:4c:ca:9b:01:5a:aa:c1:b9:22:a4:02:
03:1c:36:f6:0f:c1:64:be:2a:b5:76:ee:69:0b:33:
dd:ca:04:4a:a7:39:4e:3c:98:71:13:de:38:c0:c0:
f5:5e:ed:f9:35:0a:ab:25:a9:2f:25:d5:40:6c:d6:
b7:d3:2d:5e:84:a4:55:96:7c:ba:0f:63:f2:a5:a6:
31:53:2f:22:87:8d:4c:23:53:52:40:54:b5:a8:f2:
41:41:2f:e3:e3:18:c8:cd:17:35:a5:23:0d:6e:92:
8b:ac:f9:a0:d8:fb:b5:7c:3a:e7:84:3d:c1:cd:d6:
18:46:f8:24:9a:9e:25:7c:e1:fa:55:d7:89:21:48:
70:d2:95:44:db:8e:2b:4f:fc:73:5f:f7:2c:ef:47:
d5:4a:66:8c:ec:ca:1c:10:e8:f5:a8:60:8b:8b:c0:
2d:7b:c2:ae:e4:e0:b9:0c:15:f8:b7:40:24:3d:bb:
d9:76:97:72:59:17:1e:80:b8:d5:f3:08:cb:d3:b1:
e0:77:f3:c4:cf:b5:60:be:a7:e2:1f:c6:b8:ac:fb:
78:a4:00:a4:5e:07:a0:a8:ce:0c:d3:1e:18:cc:a8:
80:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:4C:C8:26:25:45:0F:15:80:9D:50:3F:99:E1:30:C6:3A:84:79:E8
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/1UzIJiVFDxWAnVA_meEwxjqEeeg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.170.231.0/24
Signature Algorithm: sha256WithRSAEncryption
01:34:31:0f:3b:42:c1:2a:a5:2d:97:af:96:a9:e6:43:4a:bb:
89:f2:fd:26:d1:bd:91:fc:b8:63:4b:a2:8e:07:a3:d6:ea:0e:
f0:1b:fa:03:e3:82:b3:9d:7a:85:d9:a9:f6:60:6b:65:94:f5:
c5:ba:06:ef:e1:cf:8b:5f:70:84:c8:14:3e:89:a1:1d:57:d7:
38:48:1d:51:25:3f:3a:fc:56:c9:e4:17:1f:da:85:47:bc:2f:
c1:53:5b:69:95:1f:b8:32:66:6e:5f:62:c0:eb:8e:99:d2:b5:
bc:2c:7a:1f:d5:7e:3c:94:e0:82:dc:34:ab:0e:f5:5f:03:46:
f4:f3:d8:47:23:fe:31:9e:e1:be:a7:35:eb:09:3a:bc:5f:c1:
1e:67:15:b6:9c:8b:eb:77:8d:37:e0:85:13:2c:b4:b4:32:82:
27:ba:c7:a0:9d:f4:50:2a:ba:ad:d1:7a:91:56:ac:59:03:5a:
87:7a:71:e8:c0:e2:96:0a:f6:a1:8e:8a:94:7a:a2:1e:49:2b:
b3:eb:35:2c:89:98:5a:b6:d9:bb:61:52:9b:c3:7a:11:40:be:
89:00:c2:19:02:ae:0c:46:06:2d:8d:49:98:29:2b:4d:28:a2:
3d:8f:17:ce:37:c1:11:b2:a3:fb:9b:6e:c2:87:bf:b9:3a:d7:
68:12:90:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:29 2024 by rpki-client on console-ams.rpki-client.org