Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/3vzAfmCcnApgjegf7sZfrpFBKPk.roa
File: 3vzAfmCcnApgjegf7sZfrpFBKPk.roa (raw, json)
Hash identifier: tviU5LoshBwqgPq7rS8Ho5FrI9cf2qXsRA4e5RKtXRI=
Subject key identifier: DE:FC:C0:7E:60:9C:9C:0A:60:8D:E8:1F:EE:C6:5F:AE:91:41:28:F9
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0186A97ECA72FE13F8175897876F4408B81F
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/3vzAfmCcnApgjegf7sZfrpFBKPk.roa
Signing time: Fri 03 Mar 2023 22:01:44 +0000
ROA not before: Fri 03 Mar 2023 22:01:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210703
IP address blocks: 178.253.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Apr 2023 11:17:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a9:7e:ca:72:fe:13:f8:17:58:97:87:6f:44:08:b8:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Mar 3 22:01:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=defcc07e609c9c0a608de81feec65fae914128f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1c:a4:9f:72:01:f9:2b:91:81:6a:14:dd:6b:
7c:74:cd:4a:58:31:cb:de:f8:97:9c:e7:94:48:4d:
70:98:7b:05:e8:13:54:8b:be:e1:23:9f:9c:1c:69:
3c:a7:ce:9f:a7:23:a8:61:a3:0a:03:91:61:21:20:
89:f2:fe:6d:95:1f:ca:f1:28:40:cc:14:d2:05:2c:
eb:10:eb:68:29:52:bb:92:70:b4:78:42:a9:8d:26:
a8:49:3c:0b:c9:4c:dd:84:56:2f:f1:37:a1:93:69:
0d:a6:bd:81:03:74:25:ce:f6:38:18:f5:e3:6e:f1:
81:f7:e5:ee:2b:1a:cc:4c:9a:85:da:97:17:ce:fd:
38:ef:2d:55:ae:86:50:02:56:a8:2b:45:cb:4d:7d:
f8:49:a7:0d:1f:73:91:d9:70:3c:9f:66:7e:1c:bb:
f6:8a:c4:28:8e:30:55:86:96:a3:cb:99:25:07:80:
92:10:1f:9d:b3:c9:cb:ca:a4:42:0f:7c:7c:96:4e:
94:d7:35:c2:41:4c:c7:ec:97:73:f3:e9:a5:70:82:
31:20:f0:ff:bc:1f:60:ba:e1:75:eb:41:fd:12:64:
fc:85:93:9c:b1:3f:02:51:d8:0b:4d:b7:33:6d:b1:
49:a9:83:66:81:df:9d:fe:da:6f:c1:6f:bd:40:89:
47:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:FC:C0:7E:60:9C:9C:0A:60:8D:E8:1F:EE:C6:5F:AE:91:41:28:F9
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/3vzAfmCcnApgjegf7sZfrpFBKPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.32.0/24
Signature Algorithm: sha256WithRSAEncryption
37:91:22:a8:6a:e5:cb:c0:d0:59:07:8d:ec:34:99:cd:a7:d1:
ce:3f:40:1b:68:1c:4a:1a:6d:85:26:15:51:29:9d:c9:b3:56:
c3:2e:4d:56:f6:83:31:b5:6c:e0:34:67:f8:82:43:a8:5c:0a:
3f:29:1b:21:31:b2:de:46:da:48:19:37:e8:d3:cb:08:5c:ac:
32:c6:f3:ec:a4:16:49:0b:c5:6c:3b:d5:eb:c2:db:5d:75:e8:
2e:58:58:e3:e1:5e:7f:db:17:4d:95:7f:63:c4:a6:f9:1c:9b:
02:7e:e1:25:fe:67:c6:6c:97:a6:39:38:db:f0:cc:e9:e8:13:
87:6c:fd:2c:73:d6:df:65:c1:94:75:1c:5f:b7:b6:3b:1f:f6:
a9:f7:bc:ea:ba:48:d0:db:73:b9:01:a1:9a:75:47:b4:59:2d:
a9:c9:ea:98:17:74:0c:38:10:36:2d:f8:c0:27:7c:72:7c:fb:
44:8e:c2:5b:ca:a9:58:ae:dc:4a:be:0e:a1:be:0f:ac:d3:48:
3a:4f:f6:bd:87:d3:dc:7d:d7:03:5c:b1:80:0c:a3:b5:4b:5d:
61:2a:09:2e:a0:bc:ba:21:42:34:cc:78:89:be:ec:41:b0:2b:
a1:d4:82:c1:bf:77:4e:9b:8c:01:ba:cd:b8:24:f7:11:43:5b:
ff:07:c0:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:18 2024 by rpki-client on console-ams.rpki-client.org