Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/9gdwdA-GPGpSpvJ9zOLmxGf6pys.roa
File: 9gdwdA-GPGpSpvJ9zOLmxGf6pys.roa (raw, json)
Hash identifier: CIIG9Q1IFMwGpcKscPBPCDvyS7xaTp9CEI4rjP8oefE=
Subject key identifier: F6:07:70:74:0F:86:3C:6A:52:A6:F2:7D:CC:E2:E6:C4:67:FA:A7:2B
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0186A97EC9FE7F5D56633F4105494FE98905
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/9gdwdA-GPGpSpvJ9zOLmxGf6pys.roa
Signing time: Fri 03 Mar 2023 22:01:44 +0000
ROA not before: Fri 03 Mar 2023 22:01:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 138527
IP address blocks: 178.253.26.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Apr 2023 16:19:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a9:7e:c9:fe:7f:5d:56:63:3f:41:05:49:4f:e9:89:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Mar 3 22:01:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f60770740f863c6a52a6f27dcce2e6c467faa72b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:dc:14:fd:9a:18:62:b2:4b:fd:c4:60:dc:07:
4a:8d:49:39:b8:c7:f8:28:21:96:f5:95:79:02:9d:
5a:a4:cf:f5:61:66:dd:79:1f:d5:8c:62:86:48:38:
12:88:fc:9d:d6:4f:55:2e:04:a2:e8:c1:ea:0d:e4:
02:8d:cf:32:29:1c:ae:04:b6:7e:37:28:45:f8:90:
bc:1c:3a:cf:e1:d9:97:ea:f3:76:63:2a:1e:0a:7e:
56:80:80:e2:b7:b6:c3:4a:66:b6:d4:a5:4a:15:bd:
5c:e5:15:30:a4:be:b8:cd:6b:74:a5:4b:08:c5:0a:
24:1d:59:a9:ab:46:f2:0b:58:a3:75:a0:9f:8d:59:
2a:58:91:e0:8a:7f:4d:ca:d4:2e:9a:15:93:a3:af:
1d:ac:06:3c:78:a5:65:79:26:85:bd:d2:2d:ac:49:
16:16:55:a9:49:b8:32:37:c1:9b:d1:b2:05:5e:41:
a8:47:c7:25:98:b4:b1:84:ea:31:14:42:41:02:ba:
6b:b7:ee:54:e3:fc:b0:a0:02:4b:c3:e7:0b:76:8d:
20:1f:a6:0f:f4:c3:0d:9a:1a:65:04:79:1e:e2:14:
1a:6e:47:42:43:12:97:cd:ca:cb:50:c9:ec:dd:f6:
a3:31:b8:96:96:1b:9e:e1:f6:9e:44:9c:34:5a:3f:
c5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:07:70:74:0F:86:3C:6A:52:A6:F2:7D:CC:E2:E6:C4:67:FA:A7:2B
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/9gdwdA-GPGpSpvJ9zOLmxGf6pys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.26.0/23
Signature Algorithm: sha256WithRSAEncryption
63:7f:7a:5f:d0:68:7e:f7:4d:2c:e2:4e:94:85:c4:57:dc:de:
c4:99:74:e7:24:e4:bb:63:c6:c2:f3:f3:e3:1f:74:73:96:05:
b5:cd:54:15:9e:18:4b:b1:98:f4:48:1b:5f:fc:4e:bf:0d:a6:
a5:72:86:6a:da:c1:8c:29:70:34:0b:98:d0:44:a9:d8:90:bc:
62:45:5b:a3:44:8b:c2:e4:49:d0:65:8f:9f:6a:6e:cb:40:b6:
3f:64:9e:67:a0:81:ea:14:11:d5:c9:d8:21:1c:14:0f:57:56:
2d:52:91:26:2e:1b:28:ff:4c:f8:52:fc:ae:8c:0a:d0:08:47:
e2:d7:ad:3d:f9:b3:cf:91:4d:89:6c:e0:11:54:96:d7:c9:56:
0e:50:95:cc:9b:d5:02:da:95:8f:0b:3b:ee:ef:de:b4:fa:de:
f6:6e:bb:62:00:e7:ae:a9:7f:fb:9e:1d:8f:72:09:85:7f:34:
81:04:97:8f:50:c9:3c:0b:ea:65:d6:bd:e6:fc:a4:fb:5a:30:
7f:bd:55:3c:fc:f4:c9:06:0d:fa:c4:8b:a5:28:a2:85:b0:0a:
6b:f0:39:20:29:f1:16:63:63:18:ed:f9:64:64:98:c8:c1:6f:
eb:8c:eb:0a:6c:91:cc:ed:cc:aa:2e:5c:8a:1f:e6:60:4d:77:
62:4e:cb:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:18 2024 by rpki-client on console-ams.rpki-client.org