Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/c22c3f-91e6-45fb-af76-68a8089701f4/1/tKiI_Z2H1Qq-G8gylyThoG9RrFo.roa
File: tKiI_Z2H1Qq-G8gylyThoG9RrFo.roa (raw, json)
Hash identifier: K5Ujw3E5sMiRGe6C9Hbnpt/mwqQ9XF9D0Mw+DTuhtqY=
Subject key identifier: B4:A8:88:FD:9D:87:D5:0A:BE:1B:C8:32:97:24:E1:A0:6F:51:AC:5A
Certificate issuer: /CN=5814dbbab63e9117d0b02cbab56639e6fd0d40d9
Certificate serial: 018570F070EB39ECA74E92D5F980C6A8B9EA
Authority key identifier: 58:14:DB:BA:B6:3E:91:17:D0:B0:2C:BA:B5:66:39:E6:FD:0D:40:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WBTburY-kRfQsCy6tWY55v0NQNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/c22c3f-91e6-45fb-af76-68a8089701f4/1/tKiI_Z2H1Qq-G8gylyThoG9RrFo.roa
Signing time: Mon 02 Jan 2023 05:24:43 +0000
ROA not before: Mon 02 Jan 2023 05:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203258
IP address blocks: 178.21.33.0/24 maxlen: 24
178.21.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:70:eb:39:ec:a7:4e:92:d5:f9:80:c6:a8:b9:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5814dbbab63e9117d0b02cbab56639e6fd0d40d9
Validity
Not Before: Jan 2 05:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4a888fd9d87d50abe1bc8329724e1a06f51ac5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b5:28:66:60:5d:b4:a7:2f:95:c7:9a:6a:71:
d1:66:29:82:16:48:94:b3:5d:44:7a:ff:94:3b:fa:
30:0c:50:0e:c2:4e:05:f8:e8:de:da:dc:e9:74:10:
9e:98:8a:28:b3:99:43:c2:a0:11:a8:1d:f5:a1:63:
16:4d:07:81:a5:ff:63:a9:ed:fe:06:72:de:ce:b0:
1d:55:b4:1d:25:05:53:d5:a9:0d:2a:73:1c:ab:42:
49:97:42:a5:81:f3:d1:c6:5f:56:f2:a8:ef:ea:96:
fc:e0:0d:18:65:a0:45:48:78:54:c7:06:57:ed:31:
78:73:e3:19:ec:d3:46:9a:af:22:f6:68:ae:c6:e3:
59:54:88:e0:2d:3a:db:a0:99:0a:cf:58:b0:2f:02:
fe:19:2b:1a:44:e4:fb:72:c1:f0:76:2f:c7:d7:04:
21:5f:7b:a6:a0:a0:89:8f:6c:f0:c8:1f:ea:aa:16:
05:58:cf:b2:b6:85:b0:68:d3:78:3c:4d:20:a6:c7:
d6:1a:a6:09:5c:71:71:c4:bf:ff:07:d8:88:db:8e:
5e:b4:da:04:a4:8f:e1:95:ad:01:15:e8:bc:1b:33:
43:8a:76:47:9d:86:c1:25:e9:b1:96:78:e1:e4:f6:
ea:76:f3:c4:0d:1d:09:6b:c8:73:17:14:01:f4:8c:
3f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A8:88:FD:9D:87:D5:0A:BE:1B:C8:32:97:24:E1:A0:6F:51:AC:5A
X509v3 Authority Key Identifier:
keyid:58:14:DB:BA:B6:3E:91:17:D0:B0:2C:BA:B5:66:39:E6:FD:0D:40:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WBTburY-kRfQsCy6tWY55v0NQNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/c22c3f-91e6-45fb-af76-68a8089701f4/1/tKiI_Z2H1Qq-G8gylyThoG9RrFo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/c22c3f-91e6-45fb-af76-68a8089701f4/1/WBTburY-kRfQsCy6tWY55v0NQNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.21.32.0/23
Signature Algorithm: sha256WithRSAEncryption
17:98:03:4f:1f:2e:cd:12:c4:dc:48:7c:52:3c:40:17:54:d0:
98:00:d6:c8:19:ed:03:ac:42:76:26:10:78:3a:de:96:2f:fa:
11:6d:1b:04:a3:ce:e4:c4:ec:c0:8c:97:6b:98:0a:b5:c5:3d:
03:5d:f1:a2:ca:64:ca:bd:fc:fc:63:e5:eb:45:9f:19:f3:fb:
65:19:55:11:d6:78:0d:0c:53:2a:f4:aa:5e:14:07:5a:7d:76:
36:71:28:30:24:68:41:90:6a:ac:22:05:9d:67:e6:45:86:17:
ee:7c:7a:e8:97:d9:8d:c8:2a:83:ad:77:60:dd:49:93:c7:b7:
b9:26:3f:bd:a6:d8:21:12:30:92:88:e2:6e:06:b7:bf:ed:25:
9b:ef:0a:77:41:d5:a8:1c:ec:a0:59:df:22:ae:df:18:47:f4:
5f:b1:97:d1:4e:58:a7:bb:3c:5a:b5:15:8e:4b:fb:4c:ba:ba:
57:2e:f2:d6:a6:e8:62:e5:b5:3d:fa:60:ec:8f:c8:8a:eb:27:
f6:4c:a2:9d:22:80:9a:f8:6a:6b:5d:7e:60:ab:01:38:98:96:
9a:7b:7e:2c:07:e9:19:69:9d:4e:0a:87:e1:3c:49:e3:d7:52:
da:2b:8e:48:f7:40:36:80:65:82:3a:13:c2:dc:eb:06:07:a7:
53:f7:26:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:55 2024 by rpki-client on console-ams.rpki-client.org