Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/LbS0RTOifC-TwiAzjj_7W2BHh5k.roa
File: LbS0RTOifC-TwiAzjj_7W2BHh5k.roa (raw, json)
Hash identifier: Lk4mHPopV7GDju2NvNMESJVIEdBIhktyeHkms6EY+XQ=
Subject key identifier: 2D:B4:B4:45:33:A2:7C:2F:93:C2:20:33:8E:3F:FB:5B:60:47:87:99
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0185708CED0413ED4A968C294D3BA3602426
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/LbS0RTOifC-TwiAzjj_7W2BHh5k.roa
Signing time: Mon 02 Jan 2023 03:36:01 +0000
ROA not before: Mon 02 Jan 2023 03:36:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 272110
IP address blocks: 178.253.22.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Jan 2023 08:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:ed:04:13:ed:4a:96:8c:29:4d:3b:a3:60:24:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 03:36:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2db4b44533a27c2f93c220338e3ffb5b60478799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:88:17:5e:0e:8c:26:bf:15:db:53:bf:92:50:
5a:4c:3d:7f:a2:43:d1:1f:8b:60:15:1c:19:38:a1:
9e:f0:4b:3f:22:34:a6:cb:d9:92:56:ef:e5:c7:87:
dd:37:a9:c2:64:ff:89:8a:92:b0:10:d3:cb:26:2d:
71:6c:4d:f6:51:63:10:b6:4d:ae:4a:fa:aa:cc:b3:
d2:9a:d6:69:72:3b:f1:c1:53:b4:57:43:f2:9c:11:
eb:43:f5:87:a2:8b:a1:ed:c0:01:d1:b4:ad:2e:2a:
f9:6e:d5:3c:d4:3f:81:1a:c2:7f:28:e4:2a:d6:49:
81:d7:df:7e:f7:e1:d7:6e:71:8f:c5:55:90:ee:38:
04:ee:fa:81:67:9b:d0:89:cd:51:a8:4b:a4:b1:9a:
64:df:ba:77:75:bb:b9:52:9d:56:f3:4e:47:5c:c7:
b4:07:1e:cb:19:3f:9c:5b:30:40:bf:7b:e6:e2:ab:
16:32:d7:6a:dc:80:06:8a:37:cb:a2:42:5e:6e:ea:
1a:a1:9c:00:18:db:10:a0:79:5c:50:f2:55:73:0c:
87:9f:57:cd:f5:e6:ca:bc:66:0c:68:71:5c:ff:49:
cc:66:11:50:12:c9:d6:11:44:66:a2:5d:81:ed:77:
4b:bc:32:3e:7a:d4:e6:f3:02:ad:46:ed:54:a1:90:
ce:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B4:B4:45:33:A2:7C:2F:93:C2:20:33:8E:3F:FB:5B:60:47:87:99
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/LbS0RTOifC-TwiAzjj_7W2BHh5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.22.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:47:3a:0c:b6:d7:05:9c:99:e3:df:0d:9c:7a:07:82:19:11:
73:b7:ad:58:0a:e9:37:9d:0c:8b:56:7a:7d:21:f5:da:c5:da:
0e:00:61:a9:84:fb:f1:75:0f:e0:e9:ca:14:db:90:98:d8:d5:
bf:c8:a9:fa:a2:dd:10:21:5d:68:72:a1:22:8e:a6:f8:a3:6f:
6f:e9:0c:0e:1b:c1:6f:5c:cb:55:dd:40:27:9a:46:70:76:fc:
91:3a:da:88:e3:d3:4f:bc:f9:70:0c:f1:d8:59:c5:64:16:c1:
d6:71:28:5c:11:31:ae:ff:1b:e9:c0:50:39:09:86:cb:9e:e0:
8c:d4:6f:47:39:78:1b:f3:b3:5a:a9:67:f7:1a:5c:f1:5c:9e:
32:59:6c:99:1a:e3:27:fb:83:c6:84:7b:b8:9e:19:13:a0:5d:
17:fb:68:ba:21:ce:f6:81:cd:eb:1e:89:0c:1a:e3:33:2d:e9:
13:aa:4d:6f:1e:fc:84:e2:6b:d6:c2:61:f3:b1:72:ec:d5:71:
a9:17:4d:a7:fe:a2:28:bf:7e:98:ec:66:7e:92:48:1c:6a:f8:
23:3a:26:51:79:1e:de:d4:9c:6b:84:0a:e8:ad:e5:42:b6:01:
82:34:7b:63:d1:22:68:91:a1:65:a2:50:0a:2c:59:dd:9b:0b:
b0:d8:67:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org