Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/1fde18-2873-4fe0-869c-3820f7ee2cb8/1/dYBnOtOzUS1Z1c7LkT5F5rVs1c4.roa
File: dYBnOtOzUS1Z1c7LkT5F5rVs1c4.roa (raw, json)
Hash identifier: xlc3LGSx15sjFNLCypVESmCBv14mWsUACgz3D6jtslw=
Subject key identifier: 75:80:67:3A:D3:B3:51:2D:59:D5:CE:CB:91:3E:45:E6:B5:6C:D5:CE
Certificate issuer: /CN=63495a4cecbeafb3eadf6ed0349bb0b96da464ee
Certificate serial: 01856EA6BC337262AFE85688D6E0C908F976
Authority key identifier: 63:49:5A:4C:EC:BE:AF:B3:EA:DF:6E:D0:34:9B:B0:B9:6D:A4:64:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y0laTOy-r7Pq327QNJuwuW2kZO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/1fde18-2873-4fe0-869c-3820f7ee2cb8/1/dYBnOtOzUS1Z1c7LkT5F5rVs1c4.roa
Signing time: Sun 01 Jan 2023 18:44:58 +0000
ROA not before: Sun 01 Jan 2023 18:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8468
IP address blocks: 178.16.224.0/21 maxlen: 21
178.16.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:bc:33:72:62:af:e8:56:88:d6:e0:c9:08:f9:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63495a4cecbeafb3eadf6ed0349bb0b96da464ee
Validity
Not Before: Jan 1 18:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7580673ad3b3512d59d5cecb913e45e6b56cd5ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:d6:2f:cb:b0:6e:c3:83:19:5b:f5:91:78:0e:
56:03:18:b9:a8:a1:d2:3b:55:e8:03:20:b4:20:f5:
2f:aa:6c:5e:ca:6b:71:7b:27:6a:fa:27:33:43:f8:
81:03:6d:90:f7:da:c1:01:fd:21:7b:2a:66:87:6f:
43:a2:59:a0:51:93:7e:8a:ec:ce:24:b4:ef:d0:ac:
8e:07:ad:d5:7d:3e:38:78:79:36:01:b5:ae:8f:27:
29:2a:eb:2f:21:e7:01:c2:87:e3:76:86:d5:e1:00:
11:62:d9:ae:ce:80:30:23:52:d5:3e:40:68:c0:99:
3a:62:57:4f:b0:63:c4:85:9f:97:b3:8d:07:86:99:
4c:6e:aa:28:99:1c:bb:86:06:90:fd:48:66:8b:b0:
cd:c0:de:4f:bd:d8:24:17:57:ec:a5:08:4e:05:54:
54:94:8e:40:37:ca:52:79:fb:4c:22:35:d2:90:01:
e6:5b:31:f9:71:35:ac:65:e6:bd:b0:04:c0:dc:92:
6b:68:36:1e:da:7b:f4:29:bd:db:48:00:77:e7:37:
e5:8d:73:77:f8:ea:11:1f:11:ea:05:81:ae:37:b0:
fb:83:73:7d:7f:f0:45:a6:e5:4f:e0:b4:f1:77:bb:
a2:e4:2b:d5:3d:81:e3:b6:0b:78:7e:fc:42:1b:65:
8e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:80:67:3A:D3:B3:51:2D:59:D5:CE:CB:91:3E:45:E6:B5:6C:D5:CE
X509v3 Authority Key Identifier:
keyid:63:49:5A:4C:EC:BE:AF:B3:EA:DF:6E:D0:34:9B:B0:B9:6D:A4:64:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y0laTOy-r7Pq327QNJuwuW2kZO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/1fde18-2873-4fe0-869c-3820f7ee2cb8/1/dYBnOtOzUS1Z1c7LkT5F5rVs1c4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/1fde18-2873-4fe0-869c-3820f7ee2cb8/1/Y0laTOy-r7Pq327QNJuwuW2kZO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.16.224.0/21
178.16.237.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:ad:c1:7f:62:8b:7b:19:20:3f:c0:16:38:b8:02:2e:f5:02:
f2:f6:1f:d2:19:fb:dd:61:00:1e:0f:13:82:e6:8a:ba:5f:42:
a2:b0:f1:35:3d:6d:27:55:7f:28:f6:42:70:19:62:95:8c:00:
55:17:df:c1:07:6a:af:c3:f8:8e:4f:02:a2:13:f2:bf:ae:1e:
4d:e8:f3:43:56:85:66:08:9d:b8:7b:b2:e0:04:07:71:04:12:
a8:70:fd:7e:80:74:ac:ff:78:f7:3c:a8:b3:5d:96:30:ae:1c:
b1:8f:7d:69:d7:28:57:f5:2f:69:67:f6:c8:7d:12:04:4b:4c:
d8:c8:d6:e9:38:d3:56:c7:ae:65:1b:9a:88:19:be:fe:f9:8b:
c6:9c:8c:a4:c8:a3:37:ac:90:d3:80:88:90:b5:c7:66:ca:b4:
d6:86:df:c7:00:ab:66:9e:05:9e:cd:2f:3f:5d:ae:01:2e:25:
35:98:37:92:75:c4:57:a9:de:ea:f3:f4:d7:86:32:25:c2:29:
d9:ce:67:46:ed:77:53:7f:c8:cf:fe:bd:1e:51:34:64:b6:2a:
32:c2:1c:88:56:e7:0f:ae:d3:2e:86:7c:f8:0e:9b:fb:c4:f4:
b6:6c:b2:af:3c:dc:09:61:55:ea:73:b3:cd:0c:5f:43:7f:b9:
94:0d:bc:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:17 2024 by rpki-client on console-ams.rpki-client.org