Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/3b1657-7891-41a2-8b1d-c8421c3b6554/1/wk-dMGu9WlNkbVPO7_bi72wRfNo.roa
File: wk-dMGu9WlNkbVPO7_bi72wRfNo.roa (raw, json)
Hash identifier: Z/V2Hg3C3e87A7hZO7nuwn3LwiZItKIxFC53tTeyPT4=
Subject key identifier: C2:4F:9D:30:6B:BD:5A:53:64:6D:53:CE:EF:F6:E2:EF:6C:11:7C:DA
Certificate issuer: /CN=5688b11c5f24f2e938c88a51cb49ceb135364389
Certificate serial: 01856B9349878290DBACE8445A046FBC73D1
Authority key identifier: 56:88:B1:1C:5F:24:F2:E9:38:C8:8A:51:CB:49:CE:B1:35:36:43:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VoixHF8k8uk4yIpRy0nOsTU2Q4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/3b1657-7891-41a2-8b1d-c8421c3b6554/1/wk-dMGu9WlNkbVPO7_bi72wRfNo.roa
Signing time: Sun 01 Jan 2023 04:24:52 +0000
ROA not before: Sun 01 Jan 2023 04:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201935
IP address blocks: 178.219.64.0/20 maxlen: 20
178.219.64.0/21 maxlen: 21
178.219.64.0/23 maxlen: 23
178.219.64.0/22 maxlen: 22
178.219.64.0/24 maxlen: 24
178.219.67.0/24 maxlen: 24
178.219.70.0/23 maxlen: 23
178.219.69.0/24 maxlen: 24
178.219.68.0/24 maxlen: 24
178.219.68.0/23 maxlen: 23
178.219.68.0/22 maxlen: 22
178.219.66.0/24 maxlen: 24
178.219.66.0/23 maxlen: 23
178.219.65.0/24 maxlen: 24
178.219.71.0/24 maxlen: 24
178.219.78.0/24 maxlen: 24
178.219.78.0/23 maxlen: 23
178.219.72.0/23 maxlen: 23
178.219.72.0/24 maxlen: 24
178.219.72.0/21 maxlen: 21
178.219.72.0/22 maxlen: 22
178.219.77.0/24 maxlen: 24
178.219.76.0/22 maxlen: 22
178.219.76.0/23 maxlen: 23
178.219.76.0/24 maxlen: 24
178.219.75.0/24 maxlen: 24
178.219.74.0/24 maxlen: 24
178.219.74.0/23 maxlen: 23
178.219.73.0/24 maxlen: 24
178.219.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:93:49:87:82:90:db:ac:e8:44:5a:04:6f:bc:73:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5688b11c5f24f2e938c88a51cb49ceb135364389
Validity
Not Before: Jan 1 04:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c24f9d306bbd5a53646d53ceeff6e2ef6c117cda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2a:15:50:15:7d:d6:f8:38:06:2e:63:b3:29:
77:fc:34:d1:45:2c:b2:11:b3:57:07:0e:4b:6b:6b:
79:72:f7:28:e0:0d:e2:14:23:fa:c9:8b:32:13:15:
2a:cc:06:d2:2e:34:f8:a4:24:26:fe:a3:8d:8c:12:
d6:82:07:49:3b:b0:8c:78:fd:7b:d7:ab:54:d3:18:
43:79:c5:3d:1c:d3:54:d1:fe:9f:18:d6:e1:e1:8f:
fd:50:61:51:a3:ee:39:30:7c:91:23:c4:19:e9:a4:
6b:ba:74:87:08:59:1e:c2:d3:d9:77:bd:b8:0a:81:
f7:21:8d:a7:05:23:60:b2:4b:a9:c5:3e:d8:b1:2a:
7d:e5:ff:b2:ca:db:76:df:f8:67:e8:b8:9f:40:90:
29:d6:ea:81:8b:c1:60:3c:38:a6:5a:b0:ef:6f:5c:
90:c7:48:39:8d:f6:66:c7:1e:61:a8:eb:39:f4:f7:
e2:53:96:9b:94:9c:fd:28:fa:e2:4c:cc:7d:26:89:
88:a5:26:fe:b3:b1:b7:f8:d7:cd:0f:e1:55:e2:c3:
c0:4a:a5:cb:e3:a6:53:87:8b:ff:e5:eb:bb:6c:87:
e6:67:dd:ed:97:9c:50:c8:98:b2:c7:11:8b:f6:2b:
6c:04:aa:ed:7d:4e:8f:0e:29:10:c5:ed:cd:a9:20:
8b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:4F:9D:30:6B:BD:5A:53:64:6D:53:CE:EF:F6:E2:EF:6C:11:7C:DA
X509v3 Authority Key Identifier:
keyid:56:88:B1:1C:5F:24:F2:E9:38:C8:8A:51:CB:49:CE:B1:35:36:43:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VoixHF8k8uk4yIpRy0nOsTU2Q4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/3b1657-7891-41a2-8b1d-c8421c3b6554/1/wk-dMGu9WlNkbVPO7_bi72wRfNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/3b1657-7891-41a2-8b1d-c8421c3b6554/1/VoixHF8k8uk4yIpRy0nOsTU2Q4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.219.64.0/20
Signature Algorithm: sha256WithRSAEncryption
6e:c3:b0:6a:77:b8:97:b0:55:9c:22:ee:56:d2:97:ac:dc:90:
0c:ce:2e:62:8b:b0:bc:77:98:d2:20:8a:b0:27:eb:52:25:33:
b1:62:5e:83:ae:43:bc:54:a3:d1:47:7b:99:51:1b:00:cd:ce:
27:44:56:77:e8:20:a0:05:e6:de:4e:76:6d:a4:02:aa:86:74:
ec:c7:e6:eb:de:ea:23:0a:ee:0b:0e:57:48:2f:c0:2b:f8:91:
6c:ef:7f:f4:ba:bf:e3:e9:07:43:10:f3:10:79:87:79:17:cd:
e1:7b:6d:7e:35:23:61:d2:7e:72:4a:cd:8d:74:4d:e6:b2:50:
70:8f:45:5d:90:1f:4a:3c:9b:57:28:fe:4c:ec:fb:fb:4c:99:
96:5e:51:6a:58:78:5f:50:fa:ec:dd:3c:c1:35:c9:7e:35:72:
40:92:f7:c9:45:1c:e5:b7:cd:79:32:da:59:86:57:38:32:23:
d2:f7:5c:ab:5c:4a:5d:3d:1f:b4:c7:32:ed:4c:77:7a:18:af:
51:46:75:fb:56:2b:b3:b1:75:66:e8:fd:43:b6:46:f2:1f:ca:
57:ba:3a:90:a3:26:15:fb:9b:f1:ff:8d:7c:3d:45:d6:3e:95:
51:5c:86:3f:00:19:8e:c2:59:e3:86:72:fe:38:48:d3:50:8b:
33:e8:e9:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:18 2024 by rpki-client on console-ams.rpki-client.org