Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Pj8xkeSJdSA6I-VgRhNreLI2a_U.roa
File: Pj8xkeSJdSA6I-VgRhNreLI2a_U.roa (raw, json)
Hash identifier: kaFhgAeLQunPvxPtpaIYHZML/GqMTFi1dbuWb8DX7KA=
Subject key identifier: 3E:3F:31:91:E4:89:75:20:3A:23:E5:60:46:13:6B:78:B2:36:6B:F5
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0185708CEB40977CA660383638DA2E070E9F
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Pj8xkeSJdSA6I-VgRhNreLI2a_U.roa
Signing time: Mon 02 Jan 2023 03:36:01 +0000
ROA not before: Mon 02 Jan 2023 03:36:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211432
IP address blocks: 178.253.33.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:eb:40:97:7c:a6:60:38:36:38:da:2e:07:0e:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 03:36:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e3f3191e48975203a23e56046136b78b2366bf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3f:b1:e4:18:26:46:d3:78:39:a3:5f:04:26:
19:f3:30:9f:a2:22:8a:5c:ab:d4:95:94:b8:12:3a:
32:cb:8e:3a:02:f0:4c:ab:84:e7:67:b1:7a:57:ae:
3a:1f:7a:dd:23:28:d3:4b:d6:b9:a6:b8:8a:d3:c6:
f1:7d:60:3d:4e:3f:da:8b:6a:ce:d1:e3:ab:cb:91:
37:65:65:4d:32:26:b9:08:a7:e7:58:97:a2:e8:c2:
07:4d:de:d1:fb:14:2d:a4:d5:50:36:0a:00:a0:e4:
b9:48:53:d5:db:9e:df:5f:5d:ec:e2:83:44:0d:76:
d7:a4:02:3d:c7:92:db:6b:c7:85:02:62:7d:4f:cb:
89:cb:a9:9d:70:f1:29:36:e6:75:1f:88:97:21:51:
5e:d1:a1:e4:df:b2:30:a0:e1:98:ee:ad:f1:ec:01:
56:68:5d:b0:3b:8e:be:5f:4c:23:8f:01:12:5d:89:
3a:84:ab:c0:93:ad:ee:fe:00:79:29:5a:b0:e0:85:
16:4b:95:f1:b1:fd:7c:2d:50:2b:07:2b:2d:4a:4e:
1f:37:fb:40:e1:b4:7f:1f:91:e6:e9:20:4b:3a:57:
83:64:28:c1:06:8f:db:d4:69:3c:49:a8:03:73:3f:
e0:df:3c:82:05:51:52:0f:90:96:f8:46:fa:a6:46:
fc:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:3F:31:91:E4:89:75:20:3A:23:E5:60:46:13:6B:78:B2:36:6B:F5
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Pj8xkeSJdSA6I-VgRhNreLI2a_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.33.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:02:ec:d0:64:c2:10:6c:94:ff:2c:61:f2:5a:76:40:25:f3:
c5:ba:f5:b5:7b:d8:e8:ee:02:0a:c6:b8:0a:3f:82:b3:fb:b2:
4e:30:8d:75:d0:a3:d3:4f:8a:d5:32:66:08:c2:2e:39:a7:1c:
9e:82:1b:8d:fd:20:43:e8:36:32:f9:8f:72:72:bd:09:74:b8:
22:7a:b6:df:17:be:eb:a3:13:75:06:03:b3:63:48:46:21:e2:
b6:fb:ba:2b:2a:13:c4:19:36:e6:73:ba:44:2b:04:4f:ab:40:
32:18:f0:a3:e3:24:bd:99:06:43:2c:16:95:6b:a9:bd:e4:d1:
70:9c:35:b6:5b:02:54:94:f7:a6:18:ae:83:70:4a:33:ba:5c:
e4:5c:1c:d2:e2:a7:df:af:22:91:11:b3:d3:63:35:ff:77:91:
09:c9:3a:7d:19:d5:06:e6:70:1a:34:28:48:39:21:4f:54:cf:
60:bc:ba:dc:bf:c8:bd:56:b1:0b:d9:6e:bc:19:be:bd:65:5a:
46:5f:cc:fb:53:46:b0:2b:a9:cc:e1:33:41:0a:4a:2f:0d:cb:
ea:11:ed:bc:ad:a6:23:4f:15:7a:4e:4f:fc:66:f4:6a:d2:b5:
2b:52:ab:5a:e6:b0:85:93:68:2b:95:4f:48:d6:3b:9c:c0:52:
51:65:25:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 13 22:28:19 2023 by rpki-client on console-ams.rpki-client.org