Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/3BJ_GQX2VQk7nmBy1-bB1LAUFFk.roa
File: 3BJ_GQX2VQk7nmBy1-bB1LAUFFk.roa (raw, json)
Hash identifier: sR5BnPLV8e4bOB7mMIef2Q1nMeQC4vPDRz4Ko0QZKeQ=
Subject key identifier: DC:12:7F:19:05:F6:55:09:3B:9E:60:72:D7:E6:C1:D4:B0:14:14:59
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A430483A3B392A08BC75B725F8005
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/3BJ_GQX2VQk7nmBy1-bB1LAUFFk.roa
Signing time: Sun 01 Jan 2023 03:05:06 +0000
ROA not before: Sun 01 Jan 2023 03:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206812
IP address blocks: 178.170.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:43:04:83:a3:b3:92:a0:8b:c7:5b:72:5f:80:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc127f1905f655093b9e6072d7e6c1d4b0141459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fa:70:a7:76:ae:d6:20:6a:c1:26:0d:9d:57:
c4:66:19:8d:7f:ff:33:29:10:ed:2e:43:45:c3:84:
67:c9:25:b1:f5:e6:54:59:4f:2a:9b:b4:6d:c6:53:
79:42:52:7a:9c:20:ed:e3:01:34:c3:7a:f3:92:bc:
06:7b:19:fe:02:f3:e9:83:e6:8c:43:e1:50:c3:b7:
db:6a:47:8e:60:2c:70:95:74:99:50:02:69:6b:e5:
04:7e:08:2f:16:1c:e1:f9:3d:63:d0:01:a7:ed:4b:
0c:4c:f3:d4:f0:ca:65:14:53:d5:74:cb:3a:e9:7d:
11:64:1a:06:2e:98:3f:c9:4a:e1:46:79:14:c9:37:
39:27:df:e9:0d:bc:a0:d1:04:21:a8:a1:ba:5d:fc:
bb:96:aa:ff:2a:49:3d:c9:69:6f:75:02:3d:c1:63:
e0:e1:f2:dc:b3:0b:73:5f:57:0a:bb:b8:1e:3d:16:
c2:1e:d8:b5:b3:83:7d:b1:56:cf:8a:f1:a2:2a:e3:
99:7e:b3:16:aa:52:4f:b9:3b:07:cb:41:f8:90:99:
29:06:69:fb:24:65:69:b9:8a:88:9a:57:47:a6:93:
85:fe:00:03:b3:d7:16:27:96:40:3b:e1:29:e6:9f:
b3:90:10:30:5d:d4:41:aa:ce:23:25:74:34:b8:ad:
e6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:12:7F:19:05:F6:55:09:3B:9E:60:72:D7:E6:C1:D4:B0:14:14:59
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/3BJ_GQX2VQk7nmBy1-bB1LAUFFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.170.189.0/24
Signature Algorithm: sha256WithRSAEncryption
33:ef:32:2c:de:18:48:fc:6a:e2:40:10:8c:b5:8e:d9:b4:78:
3f:25:56:ca:ee:2b:7d:97:81:38:ca:e5:f3:53:bd:87:6d:da:
07:84:c2:37:e4:8e:16:4c:40:57:03:9c:ab:24:09:86:f7:6e:
59:e9:1b:60:2a:33:c1:8d:a5:17:41:65:f5:59:c5:f4:08:30:
db:16:3b:9d:2f:bf:4b:82:94:9c:a8:d4:92:63:ba:8a:d3:88:
fa:45:8a:dc:f5:d3:35:7d:7d:6f:9f:c0:59:6e:7a:8b:69:c0:
90:fa:e4:61:90:7d:29:46:11:c5:2d:1d:54:e2:06:51:50:6d:
d3:d0:6a:00:e5:5f:73:85:02:62:a1:1f:ba:29:ab:55:2e:6b:
0c:14:aa:5a:fc:5d:c5:44:17:a9:7d:63:5b:18:f8:db:d0:88:
c4:d2:4a:f2:cb:06:85:64:1a:3b:97:19:87:a4:60:85:be:8b:
f7:21:be:59:61:e6:38:37:dc:d6:7d:ff:af:80:b1:25:9e:21:
6f:31:82:16:28:9b:01:89:73:61:48:32:b7:63:b0:01:1f:47:
62:44:87:3f:7f:e5:57:2e:bb:25:35:3d:c6:3f:e9:07:e2:af:
24:0b:2d:cd:9f:30:1a:40:72:48:cc:fd:30:55:87:a8:dc:78:
a7:d7:3c:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org