Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/5c8818-54d4-4f78-b31d-517f6ff3e4f9/1/1-lgL-bZmtFfTRsf7LXuayjOZT00.roa
File: 1-lgL-bZmtFfTRsf7LXuayjOZT00.roa (raw, json)
Hash identifier: Ke8y1Q/RfyvKICJM+V4Z7Zvl/GhMge7GqMdu68eDR3I=
Subject key identifier: FA:58:0B:F9:B6:66:B4:57:D3:46:C7:FB:2D:7B:9A:CA:33:99:4F:4D
Certificate issuer: /CN=7c1bc58ad95da78492b42d8863d45e8f6aa6aa24
Certificate serial: 0185711E7A4CCF0A2A147CD8DB17493F5E2E
Authority key identifier: 7C:1B:C5:8A:D9:5D:A7:84:92:B4:2D:88:63:D4:5E:8F:6A:A6:AA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fBvFitldp4SStC2IY9Rej2qmqiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/5c8818-54d4-4f78-b31d-517f6ff3e4f9/1/1-lgL-bZmtFfTRsf7LXuayjOZT00.roa
Signing time: Mon 02 Jan 2023 06:15:00 +0000
ROA not before: Mon 02 Jan 2023 06:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48964
IP address blocks: 178.216.224.0/21 maxlen: 21
178.216.224.0/23 maxlen: 23
178.216.226.0/23 maxlen: 23
178.216.228.0/23 maxlen: 23
178.216.230.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:7a:4c:cf:0a:2a:14:7c:d8:db:17:49:3f:5e:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c1bc58ad95da78492b42d8863d45e8f6aa6aa24
Validity
Not Before: Jan 2 06:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa580bf9b666b457d346c7fb2d7b9aca33994f4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f6:61:ef:2d:92:1e:bd:c7:fc:b0:b3:db:97:
36:fb:c1:2d:0c:7f:a4:0a:b1:5a:cf:a0:9e:2b:27:
16:31:b4:18:79:38:2b:73:2c:01:9f:6f:11:1a:d3:
be:ac:db:da:7d:0e:fd:09:97:4d:d7:50:85:81:83:
ab:e9:60:6c:38:15:49:a6:6f:72:b6:e1:28:88:a9:
f1:e8:21:00:3f:dc:82:27:01:6c:a6:65:ef:e1:48:
43:a4:80:5e:27:af:c7:90:48:a2:4f:36:94:27:69:
f8:1f:f3:3d:9c:7b:fd:25:ac:a5:22:41:37:12:0a:
cc:81:73:26:b8:ac:be:33:5c:e8:5e:c6:fc:31:4d:
8d:75:04:3a:04:8c:2b:31:ec:6e:63:1c:f4:60:3a:
a2:7b:93:23:ba:ce:a7:ba:c6:d5:e3:14:21:66:2c:
1d:96:86:fd:e7:b8:04:90:b8:ba:7c:ce:b1:84:62:
1a:73:19:5b:fd:50:71:c6:db:bb:c3:0c:bc:53:ac:
c1:0e:62:4b:99:7f:6d:b4:8a:6a:e1:1a:89:56:99:
02:b4:19:e1:6d:cc:5a:b0:d4:c2:e9:11:b3:22:01:
12:1e:00:27:66:ce:9c:33:0e:4b:f1:36:53:cd:e6:
43:62:c4:b6:87:5d:33:8f:bc:34:9c:72:83:5e:0d:
34:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:58:0B:F9:B6:66:B4:57:D3:46:C7:FB:2D:7B:9A:CA:33:99:4F:4D
X509v3 Authority Key Identifier:
keyid:7C:1B:C5:8A:D9:5D:A7:84:92:B4:2D:88:63:D4:5E:8F:6A:A6:AA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fBvFitldp4SStC2IY9Rej2qmqiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/5c8818-54d4-4f78-b31d-517f6ff3e4f9/1/1-lgL-bZmtFfTRsf7LXuayjOZT00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/5c8818-54d4-4f78-b31d-517f6ff3e4f9/1/fBvFitldp4SStC2IY9Rej2qmqiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.216.224.0/21
Signature Algorithm: sha256WithRSAEncryption
8b:f0:2b:a6:c3:a3:99:eb:46:25:95:5a:b9:a9:24:71:59:b8:
5a:5d:5c:f6:a9:aa:f1:ef:2b:e4:ce:a8:38:05:49:a6:f8:96:
7c:ba:4c:32:16:a7:0c:c4:87:8d:dd:b5:dd:c1:4f:e3:22:8f:
3c:65:c5:47:50:a3:b2:4a:dd:e4:12:16:4b:60:f3:7d:fc:b6:
e9:28:06:c7:af:3f:f9:65:81:25:17:a3:cc:54:73:04:ba:ae:
64:14:36:40:31:bb:3f:76:5d:e7:38:76:6f:26:95:21:97:e4:
93:3d:81:42:e4:f9:93:bc:7b:6c:1f:13:37:ee:e9:55:4e:19:
1a:05:94:bb:15:22:e4:aa:4b:58:c2:a1:5a:7f:31:4d:1a:6d:
09:9c:c9:0c:01:f2:4f:85:26:45:c5:14:36:b5:ad:e1:bc:32:
f9:67:12:00:eb:9f:80:5c:d0:05:50:a2:56:f5:07:51:01:07:
6e:24:22:2e:93:77:a5:56:7a:16:de:4f:f6:2c:32:86:b3:b0:
16:7a:53:22:27:f1:80:e7:20:8a:93:09:ca:ab:e6:f4:42:3e:
9e:0c:20:83:2e:5b:1a:09:f7:a5:29:8d:8c:f6:13:aa:f8:69:
11:eb:41:68:ef:01:37:4d:da:a2:e0:4f:5d:60:ea:79:3b:5f:
4d:53:66:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:47 2024 by rpki-client on console-fra.rpki-client.org