Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/HuzEuSTzo5KKVR4m8WEOOpJQtLc.roa
File: HuzEuSTzo5KKVR4m8WEOOpJQtLc.roa (raw, json)
Hash identifier: V5VDMWAcGg8mdGU+PloKEWgFtLeHK7wBNMV/fa8b+/I=
Subject key identifier: 1E:EC:C4:B9:24:F3:A3:92:8A:55:1E:26:F1:61:0E:3A:92:50:B4:B7
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018D7D75E910EF50AC80FFBD5C6B21BB95AE
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/HuzEuSTzo5KKVR4m8WEOOpJQtLc.roa
Signing time: Tue 06 Feb 2024 08:08:15 +0000
ROA not before: Tue 06 Feb 2024 08:08:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398465
IP address blocks: 178.253.44.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Feb 2024 15:40:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7d:75:e9:10:ef:50:ac:80:ff:bd:5c:6b:21:bb:95:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Feb 6 08:08:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1eecc4b924f3a3928a551e26f1610e3a9250b4b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:4a:16:20:e2:a8:4a:a8:72:ca:6c:7f:32:7f:
4f:f3:06:b8:2d:19:5f:3e:b3:54:92:d9:7b:93:c0:
e4:e4:f2:21:ea:d2:a8:35:93:6e:f0:f0:a2:e0:90:
f2:b4:6e:4a:16:2b:6c:55:c7:9b:50:97:2f:9c:7e:
93:d0:68:38:41:75:e8:96:77:0b:c8:38:3b:59:10:
fc:01:f9:85:52:69:96:5b:c4:80:8b:2d:d5:f6:d4:
38:45:96:91:3b:73:22:ec:09:2b:bb:20:e1:7d:47:
e8:2c:f6:bb:04:13:cc:08:e3:f1:da:9f:08:ab:c6:
75:5a:8f:d8:34:80:b9:f1:7f:58:29:31:d9:4b:c2:
2c:4e:bb:07:17:84:10:74:f2:6b:d0:c5:49:38:e7:
d9:2d:3d:88:68:d2:46:b3:77:52:e5:c2:0a:7a:03:
5d:b7:c5:25:ba:d4:90:51:ab:21:21:42:48:be:52:
1f:8c:30:2d:70:a7:59:0e:3c:d4:7f:85:5b:06:22:
73:e3:f9:fe:10:41:95:51:16:76:d3:a1:99:5c:bc:
47:b4:c9:45:25:27:4b:99:57:84:da:37:87:fe:a8:
1f:d9:57:c3:e0:fe:b8:fc:f0:4d:72:5f:ef:78:e8:
3c:94:36:2e:2b:bc:40:f2:fc:50:08:3e:25:87:d3:
d9:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:EC:C4:B9:24:F3:A3:92:8A:55:1E:26:F1:61:0E:3A:92:50:B4:B7
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/HuzEuSTzo5KKVR4m8WEOOpJQtLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.44.0/23
Signature Algorithm: sha256WithRSAEncryption
20:fc:cc:c3:b7:ab:44:62:10:b4:57:1c:29:bd:3a:46:bc:99:
90:41:bf:6a:fa:eb:e4:21:c2:c4:7f:8c:61:d2:9f:00:ad:26:
91:40:94:59:37:ec:04:35:73:e2:a1:fb:a7:62:ef:27:0d:9f:
9e:b8:55:57:6c:ba:14:17:a0:e5:e9:75:7f:2a:5e:c9:3f:17:
f6:1a:6f:73:8d:db:47:3c:0a:c8:f3:b9:a4:64:1f:ff:b9:28:
42:08:09:1a:22:fb:73:f1:3e:a6:15:af:c4:31:16:6b:2b:a6:
58:c6:ec:2f:64:c3:ba:33:be:8f:df:a0:e0:ad:9a:e8:72:5a:
d0:38:3b:33:e3:be:fc:d7:b4:12:d6:6b:30:3b:a0:60:68:bd:
72:a3:c0:d6:75:c2:fc:da:dd:fe:65:7c:d8:ec:ff:8c:bf:29:
51:d9:80:55:b1:e8:2c:52:7b:da:d4:98:17:60:6f:0c:20:aa:
14:ae:d8:89:12:98:f0:ee:29:4f:d2:b7:20:e2:07:20:d2:59:
dd:c3:78:44:2f:c5:a8:e2:f6:d8:c8:8b:7f:67:c2:67:b6:49:
e8:ed:49:9e:c6:d0:d9:17:16:59:46:be:cb:e8:9e:ed:20:6d:
e2:c7:a2:52:fe:e5:56:a4:08:8b:ca:69:e5:36:ce:b2:89:1f:
c7:74:c4:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 8 19:54:00 2024 by rpki-client on console-ams.rpki-client.org