Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/beuCfnka20MfIBkmxro1RtsXSZE.roa
File: beuCfnka20MfIBkmxro1RtsXSZE.roa (raw, json)
Hash identifier: LqmohLQ1Wh1vaurpZ7YQEJNxSvtZmD90etkPAxzUC7o=
Subject key identifier: 6D:EB:82:7E:79:1A:DB:43:1F:20:19:26:C6:BA:35:46:DB:17:49:91
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A3A727EB2CA3BB546401B4594CCC4
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/beuCfnka20MfIBkmxro1RtsXSZE.roa
Signing time: Sun 01 Jan 2023 03:05:04 +0000
ROA not before: Sun 01 Jan 2023 03:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199735
IP address blocks: 178.170.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:3a:72:7e:b2:ca:3b:b5:46:40:1b:45:94:cc:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6deb827e791adb431f201926c6ba3546db174991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fd:50:f2:27:de:57:16:85:ac:1c:21:aa:fa:
88:15:63:6c:fd:ee:1d:eb:cc:fe:9b:b7:65:8a:24:
5a:d2:3f:ab:d6:b8:b4:e9:48:90:68:b8:11:39:02:
0b:9f:22:3b:07:7d:79:4e:16:f7:1f:e3:f3:70:07:
30:08:6f:28:5d:3d:9a:2d:4b:98:2f:36:28:c5:1b:
62:eb:97:ec:8e:c1:53:1d:c5:36:b8:71:e7:0c:0a:
1f:2b:32:4e:21:1d:9b:80:27:f2:da:5a:c0:e2:d3:
ac:37:c7:97:96:00:31:f4:95:fe:d9:af:50:92:92:
0b:e8:31:4e:90:c7:0d:ba:8b:91:62:2a:65:42:f7:
46:30:b5:2f:fd:3e:47:f2:90:49:9a:e4:6f:84:9f:
dc:77:46:13:fd:4c:28:3e:9f:88:78:b0:eb:67:9c:
69:5d:98:35:4c:d2:97:2c:58:b7:16:19:fd:ca:69:
be:7d:d5:3f:6e:51:27:4d:44:d6:05:da:4f:89:ca:
fc:16:99:9b:b4:e9:57:d3:c0:9f:d9:38:56:4a:26:
6c:06:88:44:7b:f9:35:4d:f6:42:63:ca:0b:d5:e1:
96:97:90:8b:ca:1d:36:e6:89:94:dd:7a:ec:34:8e:
f0:ff:c5:11:cd:e7:33:af:45:17:06:12:f5:39:84:
e1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:EB:82:7E:79:1A:DB:43:1F:20:19:26:C6:BA:35:46:DB:17:49:91
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/beuCfnka20MfIBkmxro1RtsXSZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.170.249.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:3a:13:af:7d:48:cc:c9:a8:1e:16:ae:cd:55:2c:4b:c0:64:
45:e9:3c:83:27:2e:dd:50:c9:eb:ca:e8:4e:f9:ba:0e:55:7e:
4b:41:b3:b2:e0:35:59:25:94:63:ff:b0:d0:ce:95:2d:e8:1b:
c8:de:d2:33:ab:b4:cb:ed:7b:f9:a4:1d:27:48:95:a9:0f:96:
9a:01:c3:9b:97:2e:ca:25:80:1e:62:24:9f:59:cb:70:54:df:
0d:2f:05:b9:71:4c:79:cb:9e:b2:cf:aa:bb:38:af:70:2a:2c:
26:2b:65:fd:26:88:11:63:de:2d:4c:9a:aa:90:14:d5:da:25:
ca:44:64:e5:3c:aa:74:9d:72:6b:59:17:b6:c9:3a:49:66:82:
0f:ec:d1:d7:ca:7a:d1:13:2a:b4:a3:e9:d2:88:c3:69:1d:36:
22:f7:4c:ea:a0:d9:00:d4:da:f4:13:06:bd:e4:05:01:3f:18:
18:51:00:59:2d:02:b6:9c:d8:34:64:51:eb:24:0e:56:8b:b1:
c6:d0:d6:47:05:b8:4c:45:99:f7:f9:dd:55:36:d6:49:2a:62:
a8:1c:59:25:1c:2d:e6:12:0b:91:7f:97:3f:28:0a:6e:87:45:
44:b8:2f:b6:f3:34:ca:ab:fe:25:8c:5e:c3:cb:3c:75:67:7f:
f5:0f:21:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:32 2023 by rpki-client on console-ams.rpki-client.org