Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/c22c3f-91e6-45fb-af76-68a8089701f4/1/I8RONquttTn9FDah6oMOYnPBvbM.roa
File: I8RONquttTn9FDah6oMOYnPBvbM.roa (raw, json)
Hash identifier: IdoKI0f65hQNxdWvH4jYNbvvovk9+9/Sf59MF+5YczQ=
Subject key identifier: 23:C4:4E:36:AB:AD:B5:39:FD:14:36:A1:EA:83:0E:62:73:C1:BD:B3
Certificate issuer: /CN=5814dbbab63e9117d0b02cbab56639e6fd0d40d9
Certificate serial: 018570F0701DFEF5B845C3ED826923624F2F
Authority key identifier: 58:14:DB:BA:B6:3E:91:17:D0:B0:2C:BA:B5:66:39:E6:FD:0D:40:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WBTburY-kRfQsCy6tWY55v0NQNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/c22c3f-91e6-45fb-af76-68a8089701f4/1/I8RONquttTn9FDah6oMOYnPBvbM.roa
Signing time: Mon 02 Jan 2023 05:24:43 +0000
ROA not before: Mon 02 Jan 2023 05:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 178.21.33.0/24 maxlen: 24
178.21.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:70:1d:fe:f5:b8:45:c3:ed:82:69:23:62:4f:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5814dbbab63e9117d0b02cbab56639e6fd0d40d9
Validity
Not Before: Jan 2 05:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23c44e36abadb539fd1436a1ea830e6273c1bdb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f4:8f:8a:61:12:02:f6:e5:7a:95:34:3b:1a:
a1:c3:3e:72:b5:46:80:2b:05:82:11:00:da:25:5f:
b3:45:1a:f5:2c:6b:0a:56:cf:4d:2c:ef:da:70:86:
6a:97:4b:e6:44:b0:e5:27:ea:7f:43:36:21:e8:3d:
97:1e:f4:78:de:55:89:56:83:37:f9:83:98:ea:e7:
2b:e8:30:73:a7:84:7d:47:e2:49:99:0b:42:62:75:
29:c3:ec:ce:b3:93:d4:f0:b0:31:95:81:10:0f:93:
9f:24:a9:71:35:dd:92:4b:84:1b:43:85:5a:24:70:
9c:61:26:4e:e1:4a:5b:77:11:ad:77:17:33:0b:de:
7f:e6:38:1a:af:d9:0f:02:9f:70:a5:19:e0:9b:39:
91:ff:d3:7a:a8:bc:f5:28:22:7b:24:3b:eb:d7:55:
57:2a:2a:62:d1:7c:e9:ef:b1:4e:71:e4:e9:16:da:
85:f6:a0:d9:e1:08:b4:be:f6:86:7c:7b:e6:af:80:
7c:bc:70:fd:f3:92:cc:6b:95:1a:40:ac:e6:5b:6c:
2a:c9:30:80:7d:aa:ed:43:e9:30:58:e8:51:62:72:
aa:24:bb:d1:f2:65:14:1b:55:14:18:c8:0b:93:47:
f2:f6:70:d1:aa:e6:44:03:27:ea:12:af:76:41:1b:
8d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:C4:4E:36:AB:AD:B5:39:FD:14:36:A1:EA:83:0E:62:73:C1:BD:B3
X509v3 Authority Key Identifier:
keyid:58:14:DB:BA:B6:3E:91:17:D0:B0:2C:BA:B5:66:39:E6:FD:0D:40:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WBTburY-kRfQsCy6tWY55v0NQNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/c22c3f-91e6-45fb-af76-68a8089701f4/1/I8RONquttTn9FDah6oMOYnPBvbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/c22c3f-91e6-45fb-af76-68a8089701f4/1/WBTburY-kRfQsCy6tWY55v0NQNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.21.32.0/23
Signature Algorithm: sha256WithRSAEncryption
34:bd:53:83:5b:f2:6e:a2:8b:d3:09:6d:a0:25:98:ab:86:3d:
17:d5:3c:2e:d5:ee:95:04:77:b1:cb:7f:7c:f9:11:57:70:c2:
84:25:7a:b2:87:80:9a:91:0d:4c:39:14:25:c3:3b:97:57:6b:
94:ab:c6:32:eb:96:43:23:f6:4b:ae:1d:07:5a:74:2c:af:64:
1b:98:f7:38:cf:28:8f:df:b5:e5:c2:5b:c0:00:f9:a0:81:d7:
6d:29:f8:cb:be:95:9e:fa:97:5b:32:4c:8b:87:1c:bb:7f:ba:
5c:cc:07:e4:f5:13:8d:7f:c1:98:5f:22:25:b3:cb:5d:df:56:
8e:8e:34:6b:7d:d8:6c:ed:ef:03:77:6b:10:4b:9e:ee:cd:9b:
da:0f:c4:18:cf:a1:e0:d5:bd:1d:1d:b1:88:2a:f8:cc:63:b5:
cd:9f:de:7e:41:f9:a5:d4:dc:95:3b:2f:20:89:15:f0:4b:33:
35:04:21:80:4b:53:08:2a:13:f4:1c:c1:8f:3e:cf:67:7b:59:
e3:a8:dc:a2:4c:07:62:eb:e2:b3:8d:ac:b1:66:6a:32:ce:40:
f2:51:af:cc:a9:f9:ca:49:21:f4:17:e8:4a:ab:ae:53:6b:0b:
7b:8d:fe:ae:1e:e1:91:ab:d3:37:a5:29:bc:54:77:c4:a8:ae:
87:5f:29:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:55 2024 by rpki-client on console-ams.rpki-client.org