Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/jBdKN0bbGzNEytVlKvfsMcfJmF8.roa
File: jBdKN0bbGzNEytVlKvfsMcfJmF8.roa (raw, json)
Hash identifier: eQrPP41FxQSwRCfNGvtKtZv6pgW15DA8Yb65OGFk+cc=
Subject key identifier: 8C:17:4A:37:46:DB:1B:33:44:CA:D5:65:2A:F7:EC:31:C7:C9:98:5F
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 018E45FEB8191AB3C4E984F692D06AEA23B4
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/jBdKN0bbGzNEytVlKvfsMcfJmF8.roa
Signing time: Sat 16 Mar 2024 06:41:44 +0000
ROA not before: Sat 16 Mar 2024 06:41:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43754
IP address blocks: 178.239.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Mar 2024 08:43:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:45:fe:b8:19:1a:b3:c4:e9:84:f6:92:d0:6a:ea:23:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Mar 16 06:41:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c174a3746db1b3344cad5652af7ec31c7c9985f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:8d:73:4f:8b:41:4d:4a:53:14:93:5e:f6:fb:
75:d4:78:e7:f0:96:28:5a:4c:c7:17:06:31:b7:c9:
64:3f:8f:81:72:8d:2a:5f:e0:9f:ac:05:0d:dd:0e:
81:b2:9d:19:07:ca:da:f3:7c:3a:f6:6b:0c:af:ab:
c0:0f:f9:32:4a:d7:b7:d9:88:25:d1:6d:2f:ac:d3:
48:db:3d:e2:34:22:1a:6a:b1:44:8b:f3:42:8b:e7:
bd:8c:41:e9:e5:99:80:58:b2:50:b7:30:37:ed:dc:
38:74:2e:de:c4:84:c3:f8:2f:a7:68:37:36:9d:85:
75:68:4a:98:ed:86:83:58:7b:2f:24:86:26:2e:d6:
95:35:ce:54:6b:39:f5:91:d8:df:71:8e:6d:df:9c:
2f:10:1b:99:7f:58:2d:2d:5c:95:2f:db:23:ec:b7:
b2:d9:fa:3a:02:21:da:c7:fc:ab:85:81:83:38:c8:
7d:9f:5e:9c:90:be:ee:28:39:4b:c2:28:84:49:3d:
97:3a:a1:3a:5f:e3:2e:c4:7d:17:07:52:95:51:b9:
a4:e8:42:00:90:8e:d4:66:6f:30:5f:6e:21:96:86:
92:f9:a1:6e:08:68:50:99:81:23:59:9e:62:ad:4f:
6a:25:78:95:1d:23:02:20:fe:b9:c2:a6:7e:70:ac:
fd:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:17:4A:37:46:DB:1B:33:44:CA:D5:65:2A:F7:EC:31:C7:C9:98:5F
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/jBdKN0bbGzNEytVlKvfsMcfJmF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.155.0/24
Signature Algorithm: sha256WithRSAEncryption
09:55:d0:96:c5:2d:97:4d:52:ae:88:b9:7e:b7:b2:6f:1f:a6:
2f:5f:fd:59:b9:28:c3:ee:ff:ed:fa:cc:44:56:8c:6d:6e:ad:
cd:6e:f5:ed:e8:e6:4e:c2:fe:6e:3e:14:66:22:2a:ae:09:b5:
69:fd:0d:72:dd:d2:eb:42:c7:af:c4:52:3a:49:28:b3:68:88:
bb:58:9e:79:eb:6b:2c:74:b2:a4:f2:cc:a3:8b:b0:ec:09:b9:
aa:17:46:fa:36:d1:04:1a:d5:d5:20:73:ec:15:fd:ec:9a:46:
11:44:bf:54:cb:ae:86:e0:44:26:e6:f0:16:d5:81:19:ff:00:
4a:6f:63:61:66:41:d8:97:d8:d9:8d:a1:ed:87:04:fa:e9:b9:
ec:65:e3:eb:c7:b1:38:b3:42:a3:f6:af:24:92:b8:79:ad:70:
ff:9f:41:85:68:53:02:95:44:b6:eb:27:06:50:3f:a2:d5:81:
00:76:11:8b:dd:f5:8a:2b:c0:29:28:92:13:c5:c7:98:06:5c:
6e:21:01:b1:b9:10:41:2b:5b:08:9f:0c:04:31:80:9a:7c:8c:
a8:23:ac:48:ab:ed:8e:a8:e5:cb:b2:b8:14:2c:77:94:c4:86:
99:24:e1:3b:bf:1b:87:73:25:1f:54:70:96:98:d9:c9:f0:8d:
09:cd:ce:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:09 2024 by rpki-client on console-ams.rpki-client.org