Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/h1vsLLv4ZZ4r7tc59n6E16-GAN8.roa
File: h1vsLLv4ZZ4r7tc59n6E16-GAN8.roa (raw, json)
Hash identifier: Dc6ESk34YLadkBXerp4dNr4HYxFc7nbY0UWQnoA2bNU=
Subject key identifier: 87:5B:EC:2C:BB:F8:65:9E:2B:EE:D7:39:F6:7E:84:D7:AF:86:00:DF
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 01916841B6D5E8C57BA1D66BF95D19CF59A6
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/h1vsLLv4ZZ4r7tc59n6E16-GAN8.roa
Signing time: Mon 19 Aug 2024 01:30:22 +0000
ROA not before: Mon 19 Aug 2024 01:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 178.22.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 02:49:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:68:41:b6:d5:e8:c5:7b:a1:d6:6b:f9:5d:19:cf:59:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Aug 19 01:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=875bec2cbbf8659e2beed739f67e84d7af8600df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:03:db:df:21:93:9e:5c:35:04:63:79:bd:6d:
ab:3e:a4:14:1e:79:24:87:83:1b:e0:7c:ca:e3:23:
1d:03:45:82:3b:90:f0:8b:2f:43:57:79:b4:f7:95:
a6:3f:8c:de:d0:8b:48:35:bf:72:15:e8:c5:68:5a:
d7:4e:84:2c:5c:81:90:71:df:2e:1d:4f:21:7c:86:
ff:dc:21:59:14:f0:1c:8a:ac:97:32:ce:2d:39:25:
43:43:d3:8d:86:d7:9a:9f:da:25:2c:2c:b9:84:01:
b5:13:e3:2c:d7:68:d4:03:53:5a:0b:2f:7f:b9:52:
d9:33:5b:c9:3e:34:a3:a2:1f:ef:53:b6:c5:e1:b1:
c3:ea:89:80:a0:11:b7:06:0a:08:9e:60:cc:63:11:
e7:b2:54:c1:05:fc:27:ef:3e:06:a7:d7:c1:10:e9:
f0:23:da:2f:9b:fc:53:ee:7b:06:63:58:fe:12:97:
d1:90:d9:ae:ba:e8:ab:50:f7:79:a4:8e:fc:b8:83:
7b:97:1f:35:e1:b7:70:3f:db:03:25:1f:d8:55:f5:
7a:42:bf:af:f6:f7:dd:46:3f:96:87:35:85:2e:b7:
3d:98:cf:ad:b1:82:d9:35:63:f5:58:d0:85:44:69:
c3:95:34:4f:1e:f6:99:44:cb:27:ae:8a:81:8d:80:
f8:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:5B:EC:2C:BB:F8:65:9E:2B:EE:D7:39:F6:7E:84:D7:AF:86:00:DF
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/h1vsLLv4ZZ4r7tc59n6E16-GAN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.22.26.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:69:a5:f0:e1:cc:ad:70:b4:6c:a9:24:86:d9:bf:e7:c6:c3:
a6:0d:8c:48:a2:29:3f:f7:33:fa:77:dd:97:bf:93:f7:c4:99:
f9:0f:69:34:76:26:63:bc:ef:8e:f8:e2:f3:af:6d:f5:0b:d2:
35:38:52:cd:a1:53:8b:d3:ce:32:4e:db:91:2f:15:d2:f1:bb:
a4:ec:90:6c:46:cc:3f:af:0c:b1:40:b2:ed:06:12:5a:d9:bd:
52:3a:1b:4c:13:27:0c:8a:12:bb:09:3e:2e:71:b1:d0:cf:34:
02:a6:30:f8:95:f1:c7:6f:14:1e:06:78:cb:2b:5f:49:22:38:
e3:73:6e:02:dc:5f:b5:cf:9b:a5:f5:57:0e:2b:f5:d9:fd:bc:
3d:c5:3e:80:d3:90:f6:41:95:ab:de:77:5c:3f:b4:a0:bf:0e:
47:fd:dd:9e:4e:b0:30:24:5b:93:31:93:2a:c9:fe:06:36:55:
60:33:05:85:b3:93:c8:04:cf:62:da:e1:3b:c8:9c:82:92:43:
41:86:9a:46:d3:4f:a1:49:9e:44:ab:a4:01:af:75:fa:8c:4c:
35:c5:79:90:5f:ae:a6:03:4c:31:7d:d3:ff:ce:21:4c:64:d5:
c3:cc:5d:22:3d:a2:ec:22:bf:fb:19:57:33:42:4b:58:3a:75:
33:91:87:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 4 04:53:39 2024 by rpki-client on console-fra.rpki-client.org