Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/76b1d3-4fd9-46cf-83e6-20c4dc1e4a77/1/xR0OVowXozXNI0h4SR-nGO8m90M.roa
File: xR0OVowXozXNI0h4SR-nGO8m90M.roa (raw, json)
Hash identifier: sdXS18OABveqzahI5fS7hNdnpVL8U5AqorJjWJQnXt4=
Subject key identifier: C5:1D:0E:56:8C:17:A3:35:CD:23:48:78:49:1F:A7:18:EF:26:F7:43
Certificate issuer: /CN=98eb33c2cefb5da34607b00b5005e44b75524a1f
Certificate serial: 01856D0ABDCD24D6BDBA40A2CF09AAF52D78
Authority key identifier: 98:EB:33:C2:CE:FB:5D:A3:46:07:B0:0B:50:05:E4:4B:75:52:4A:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mOszws77XaNGB7ALUAXkS3VSSh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/76b1d3-4fd9-46cf-83e6-20c4dc1e4a77/1/xR0OVowXozXNI0h4SR-nGO8m90M.roa
Signing time: Sun 01 Jan 2023 11:14:58 +0000
ROA not before: Sun 01 Jan 2023 11:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56958
IP address blocks: 178.211.133.0/24 maxlen: 24
2a12:d280::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 09 Feb 2023 23:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:bd:cd:24:d6:bd:ba:40:a2:cf:09:aa:f5:2d:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98eb33c2cefb5da34607b00b5005e44b75524a1f
Validity
Not Before: Jan 1 11:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c51d0e568c17a335cd234878491fa718ef26f743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:3c:a8:ba:1f:77:ab:96:88:eb:e9:3c:6b:f3:
08:61:38:c5:04:18:09:4f:b2:07:1e:b0:9b:7c:f6:
b7:99:da:01:d3:0c:53:c8:f6:9a:86:37:03:44:84:
5c:7e:de:dc:02:6e:d6:a8:7b:ce:d0:43:a9:31:1e:
0e:04:cd:71:35:2d:99:87:be:cf:e5:86:ab:41:cd:
84:0d:c0:86:19:ab:ae:f8:e2:94:0d:75:7e:c9:ac:
8d:a0:05:48:b9:31:a1:f2:23:ca:1d:77:2d:60:a1:
6b:35:1d:35:90:e9:4b:0e:d1:2a:65:64:a0:92:1d:
46:c5:a2:c6:48:e1:72:30:41:41:fa:e8:94:a5:34:
d4:81:c9:de:66:1a:a5:4e:46:de:15:a3:ee:fd:ff:
8d:0a:d8:59:bd:64:52:9a:40:26:7a:1e:ce:23:2a:
01:7e:eb:74:c1:0f:53:3d:99:cc:1d:b6:c8:44:67:
17:bc:64:b3:09:5c:79:c4:51:3f:98:d8:ef:fc:53:
9b:62:4b:ca:81:9d:5e:62:ea:29:46:9b:c9:48:09:
5c:b1:83:ac:ce:f1:c2:bf:37:db:bf:39:c8:e9:8c:
1e:f9:6a:72:12:c5:24:65:2b:58:ff:d5:07:45:c2:
ea:2b:16:3f:e3:5f:ed:09:37:19:13:41:cb:52:e6:
f5:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:1D:0E:56:8C:17:A3:35:CD:23:48:78:49:1F:A7:18:EF:26:F7:43
X509v3 Authority Key Identifier:
keyid:98:EB:33:C2:CE:FB:5D:A3:46:07:B0:0B:50:05:E4:4B:75:52:4A:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mOszws77XaNGB7ALUAXkS3VSSh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/76b1d3-4fd9-46cf-83e6-20c4dc1e4a77/1/xR0OVowXozXNI0h4SR-nGO8m90M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/76b1d3-4fd9-46cf-83e6-20c4dc1e4a77/1/mOszws77XaNGB7ALUAXkS3VSSh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.211.133.0/24
IPv6:
2a12:d280::/32
Signature Algorithm: sha256WithRSAEncryption
b1:c6:6c:d1:d1:ff:8c:48:cd:2b:be:40:24:1c:0b:ec:4e:a7:
c8:d7:66:24:3c:04:e5:d1:22:af:6d:15:5c:c9:bf:58:06:cc:
91:7f:9c:2f:2d:f9:f5:c0:b4:37:ca:19:82:91:60:4f:0e:91:
5b:75:93:44:b5:4b:f2:11:0e:ef:eb:92:1d:33:b1:39:2a:e0:
ee:26:18:c0:56:55:b4:0a:55:5c:6b:89:5a:27:73:bc:f3:3e:
b6:5c:26:6a:59:a4:45:84:26:12:d8:71:51:49:68:14:7c:bf:
4d:69:67:f8:db:45:73:fe:9c:91:f3:95:3d:8f:1e:b4:17:57:
03:75:e1:8e:4f:d7:9f:37:bb:50:78:c8:05:c8:be:e7:96:43:
27:a5:28:7d:0a:e0:5c:41:ea:4e:47:8e:84:12:ec:51:14:b2:
50:b0:8d:b9:38:0f:97:52:52:da:b9:a6:1d:39:54:0f:56:f7:
f4:75:9f:06:32:4b:68:14:ec:95:7d:bf:49:6a:2b:61:13:e6:
92:8d:06:c3:e0:2c:62:49:7d:86:08:ee:cd:b9:4b:4a:00:a8:
4b:e0:c2:6e:9f:58:8e:c7:a1:93:26:a3:d4:4a:99:21:36:ee:
ef:ab:90:e3:d2:d5:4b:36:7f:fa:f2:f1:84:da:9e:43:8a:ef:
d8:5c:b9:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:48 2024 by rpki-client on console-ams.rpki-client.org