Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/1-_zEx8l3HrGNZcTp0u2e0iFgUUs.roa
File: 1-_zEx8l3HrGNZcTp0u2e0iFgUUs.roa (raw, json)
Hash identifier: PX+5N5k85QaCh8f9hi2VdVwjKZQfIL7Jy4AxH7ixHyw=
Subject key identifier: FB:FC:C4:C7:C9:77:1E:B1:8D:65:C4:E9:D2:ED:9E:D2:21:60:51:4B
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0185BEC382F5D2F4DE5DBF4EB612C345559C
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/1-_zEx8l3HrGNZcTp0u2e0iFgUUs.roa
Signing time: Tue 17 Jan 2023 08:06:02 +0000
ROA not before: Tue 17 Jan 2023 08:06:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 393427
IP address blocks: 178.253.40.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 17 Jun 2023 08:04:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:be:c3:82:f5:d2:f4:de:5d:bf:4e:b6:12:c3:45:55:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 17 08:06:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fbfcc4c7c9771eb18d65c4e9d2ed9ed22160514b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1f:86:cc:91:48:41:6a:2b:12:ef:65:49:e9:
b4:7c:c3:08:67:0a:6f:8f:6e:2f:51:77:85:a7:d3:
63:c4:e6:b8:28:5b:a1:ff:48:7c:f5:46:61:2b:a2:
d1:bf:f6:9f:c7:12:b3:d9:7b:0f:32:b4:78:e3:ea:
a3:1e:a0:4a:16:1d:d0:8e:ab:21:42:bc:13:67:b0:
4b:5b:9d:57:d5:65:b2:75:f5:5c:ad:a8:69:db:78:
59:1b:e1:37:be:5c:33:9f:74:bb:30:7a:01:2c:da:
39:cf:6a:04:eb:bf:6f:cd:69:91:12:c5:55:11:a6:
cb:fa:ca:2c:7a:67:d7:b9:ff:a4:3b:89:ac:08:89:
2e:cc:af:c1:ea:33:e1:7c:56:f8:d6:c4:52:8d:42:
8b:3d:02:23:fc:62:b8:03:b1:2d:40:92:e1:4a:d2:
29:16:fa:9c:c4:f4:82:1c:cc:1b:06:11:cd:21:94:
d4:7e:29:30:be:c4:dd:ee:c6:76:50:b0:3c:94:6a:
2e:55:4d:f6:14:0d:dd:0f:1d:f6:9b:eb:90:20:23:
60:ee:7e:35:3d:c3:3f:a2:ea:c8:f2:48:3d:c1:93:
16:d8:07:80:18:4f:fc:b2:27:28:8e:a4:87:72:48:
a9:a1:c4:ca:40:4d:ea:49:be:6c:b1:10:51:db:ee:
1a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:FC:C4:C7:C9:77:1E:B1:8D:65:C4:E9:D2:ED:9E:D2:21:60:51:4B
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/1-_zEx8l3HrGNZcTp0u2e0iFgUUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.40.0/22
Signature Algorithm: sha256WithRSAEncryption
10:91:e2:dd:c9:d1:be:eb:35:04:52:a1:a6:0d:6b:4a:94:ca:
e2:26:3a:bb:64:d3:d1:ec:65:ab:0f:b6:ee:61:e1:16:ad:32:
c6:37:5a:7e:4d:07:b5:fd:ce:aa:9f:db:48:82:c6:d8:cc:61:
d6:ba:04:8a:8e:66:37:71:a2:d6:7c:d6:d6:8c:75:41:aa:12:
44:5e:c0:9d:77:db:85:f4:6d:41:93:c1:ed:3d:bc:7a:83:db:
00:b7:30:f4:13:66:86:ca:72:45:ca:6b:cf:61:e3:fd:d1:82:
e8:4f:2d:f1:65:e3:6f:f7:78:ea:d6:52:38:72:4f:8f:b9:26:
15:17:74:06:cc:4a:e9:c4:72:a5:a0:e3:70:b7:7c:55:03:83:
52:4f:ac:c8:f9:a4:96:9a:90:66:5e:84:71:d9:d8:28:21:a5:
3d:6a:cf:77:28:53:a8:0e:da:8d:c2:bf:7a:4b:84:a1:51:61:
76:ac:81:57:51:7f:5b:e6:b1:99:41:03:69:77:85:2e:c4:96:
db:ae:75:c1:17:17:43:70:36:67:f1:75:ea:00:2f:18:ab:8c:
0e:81:20:35:0f:7f:ec:1b:e5:8a:d4:ba:76:46:a5:42:f5:f1:
fa:c9:6f:cb:8e:e0:e4:52:ad:86:ff:f7:14:75:8e:dc:0b:83:
54:35:41:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:18 2024 by rpki-client on console-ams.rpki-client.org