Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/JvAQOU7Q9gS3yHRjkksaV7932iw.roa
File: JvAQOU7Q9gS3yHRjkksaV7932iw.roa (raw, json)
Hash identifier: mbkAMjnHjEFXYYA5C1g1osMBZ1nryi6Ow2dxp5B9r2Y=
Subject key identifier: 26:F0:10:39:4E:D0:F6:04:B7:C8:74:63:92:4B:1A:57:BF:77:DA:2C
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0185708CDEBF7BC6C2BDF8CDAF40991CCDBD
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/JvAQOU7Q9gS3yHRjkksaV7932iw.roa
Signing time: Mon 02 Jan 2023 03:35:58 +0000
ROA not before: Mon 02 Jan 2023 03:35:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41378
IP address blocks: 178.253.52.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:de:bf:7b:c6:c2:bd:f8:cd:af:40:99:1c:cd:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 03:35:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26f010394ed0f604b7c87463924b1a57bf77da2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:65:30:0c:33:70:1e:d2:62:1b:0e:d1:87:15:
01:7c:a0:2f:a1:a1:3d:86:7d:c7:1d:6d:ef:ff:e7:
c2:95:9e:33:a7:7b:b2:85:05:78:48:ae:8c:3f:38:
dc:ef:9a:a8:40:3c:3a:14:24:e8:d3:6f:d5:95:1b:
9e:ed:d9:91:ba:77:af:e5:1d:ad:de:4c:95:48:f9:
6e:59:d4:5a:6e:b2:40:ea:7b:97:3c:e8:cf:bc:02:
10:b2:4d:dc:52:fa:24:a3:48:bc:8b:f6:e2:7c:59:
11:38:b4:0a:27:a7:43:5d:43:ae:7b:bf:98:39:3e:
23:27:07:1d:f9:51:00:00:16:75:a8:b3:9d:85:2e:
f2:22:c3:94:d6:40:f0:8f:ea:e3:05:2a:39:4c:59:
5a:ad:1e:8d:c2:f9:f0:5b:a8:70:87:cc:eb:3e:c8:
53:55:db:a3:e0:0b:eb:10:d6:96:23:4b:08:ae:7e:
8b:c8:da:c8:a9:be:06:a4:c1:47:d0:d7:bf:00:d3:
78:d9:a7:2e:74:fa:5c:5e:b5:2f:2f:ae:49:8b:df:
de:60:41:24:03:e4:89:a9:02:1e:3d:fd:c7:85:30:
98:9b:25:3b:07:b1:4e:0a:ab:93:53:87:81:4b:86:
14:c0:24:83:33:f7:08:19:d0:68:1b:87:fc:1f:e9:
12:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:F0:10:39:4E:D0:F6:04:B7:C8:74:63:92:4B:1A:57:BF:77:DA:2C
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/JvAQOU7Q9gS3yHRjkksaV7932iw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.52.0/23
Signature Algorithm: sha256WithRSAEncryption
41:9c:cb:78:24:c4:d2:8f:ed:97:9f:61:19:27:a1:02:4b:0c:
4a:0b:4e:f7:58:cf:0d:04:ef:63:4c:cf:3c:82:71:80:c2:20:
1e:d5:55:46:4c:3c:3b:c2:db:c7:5d:db:f6:3d:04:ee:97:a8:
c7:bd:47:b2:f8:4c:07:f7:f8:8c:1e:bc:fb:91:f5:bd:9a:3f:
c9:b7:dc:4b:c0:6a:bb:d6:41:86:63:45:97:6e:15:d8:e8:50:
86:82:05:e5:a2:28:dc:95:25:8b:bd:41:e8:c6:f0:36:12:aa:
b1:48:dc:dd:0e:10:3e:b6:59:54:56:cf:09:14:41:e6:3d:5f:
3c:2b:dd:fb:1d:9e:dd:aa:17:64:18:53:f1:32:14:1e:36:dc:
21:b4:ce:55:21:9c:e2:09:50:d1:bc:69:3b:a1:be:1e:88:fb:
ac:a0:68:fd:ad:a0:6b:70:a3:b8:66:fa:c8:bf:41:fe:36:03:
95:94:14:ba:98:10:8b:b8:a0:9d:02:45:e6:0e:32:0b:9c:4b:
99:a9:ef:4f:4f:44:38:2b:a5:74:26:43:e1:2d:51:6c:43:8b:
81:72:05:f5:fa:dd:87:02:5c:ca:b6:f9:a4:55:b8:e3:70:05:
39:e1:db:a6:ab:4c:90:81:5c:2f:ce:7c:e8:aa:95:70:9a:4b:
9c:56:75:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org