Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/R9DwfOUFHMSaIcgM4UBXMlzbRGQ.roa
File: R9DwfOUFHMSaIcgM4UBXMlzbRGQ.roa (raw, json)
Hash identifier: vP4VoeF1reoxDHlPb+MahLftVaM2KOlO28PLRqP18iU=
Subject key identifier: 47:D0:F0:7C:E5:05:1C:C4:9A:21:C8:0C:E1:40:57:32:5C:DB:44:64
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0185BBC360F0962B50F2DA40E9198D09FF39
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/R9DwfOUFHMSaIcgM4UBXMlzbRGQ.roa
Signing time: Mon 16 Jan 2023 18:07:01 +0000
ROA not before: Mon 16 Jan 2023 18:07:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 178.253.26.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Jan 2023 10:37:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bb:c3:60:f0:96:2b:50:f2:da:40:e9:19:8d:09:ff:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 16 18:07:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47d0f07ce5051cc49a21c80ce14057325cdb4464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:c7:6c:dc:0f:74:5c:02:54:63:23:97:49:fc:
bb:1f:93:1f:51:04:ee:90:f1:f6:c1:05:e0:0a:49:
f6:2b:7d:7d:52:eb:d2:d4:f8:31:4e:0c:8d:5a:9c:
bd:dd:40:11:00:6f:6c:fa:48:b7:34:27:be:cf:7b:
ca:44:97:f7:54:fc:c5:df:be:30:52:eb:ce:a5:59:
e2:03:a4:68:a9:8d:86:d1:dd:0f:89:b0:22:90:31:
32:34:e1:c8:69:01:bd:9d:47:40:0c:4e:c9:85:e2:
60:74:bc:87:84:59:78:92:58:5d:34:57:1f:70:b3:
bc:e0:b3:c2:8e:9e:36:e0:be:17:3b:dd:66:bb:b6:
58:9d:6f:46:7c:7e:dd:18:06:07:53:4f:ce:81:6a:
48:9c:38:a5:bd:20:8c:87:17:0d:a3:f7:5e:06:f3:
61:92:50:50:5e:44:70:ce:7e:6e:a5:ce:d9:39:7a:
cf:b8:f4:bb:b8:35:be:76:7f:b7:69:cc:a8:4a:1b:
73:51:45:1c:8b:d8:f1:a5:a0:c3:82:94:5a:e4:fe:
63:b9:23:bb:45:0d:b7:b3:3c:d1:9c:2b:22:98:9d:
04:1e:f8:76:0a:a8:ed:c8:d7:de:8b:e0:fb:c8:f3:
6e:32:4f:5a:0e:23:dc:27:22:c9:98:d1:f8:e5:e2:
33:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:D0:F0:7C:E5:05:1C:C4:9A:21:C8:0C:E1:40:57:32:5C:DB:44:64
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/R9DwfOUFHMSaIcgM4UBXMlzbRGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.26.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:35:56:02:46:33:ad:fe:fb:a2:e6:27:f6:2f:cc:79:f8:f6:
1f:31:fe:e2:7e:27:6d:09:4e:27:87:fe:dc:b0:0e:4f:b3:6c:
8e:a2:c8:61:de:a2:74:e2:65:c5:2d:19:03:d7:b0:06:83:c2:
fe:1a:c2:83:26:31:01:15:5b:74:5f:7e:40:b3:3e:35:0e:82:
e8:31:dc:24:22:6d:46:22:44:6e:21:8f:42:23:12:e9:d8:09:
e6:b3:35:f5:42:89:a3:f9:7e:a3:4c:43:0c:60:c4:b4:8a:69:
c1:d1:17:79:57:e1:85:c5:2f:9d:f0:86:52:7c:08:36:40:73:
56:0c:44:b3:a6:03:45:cd:5e:06:97:35:a8:91:01:ee:71:bc:
77:55:b8:67:f5:f3:13:15:7e:70:c9:ea:df:29:e9:44:7d:4b:
f3:3d:c1:4f:fe:a6:d9:fa:ae:2b:1a:6b:d7:2a:f3:dd:f8:e3:
4f:92:af:e8:50:6d:34:5f:e3:fa:e5:c2:a9:70:8b:5b:10:4d:
b7:18:89:2b:7b:9d:e9:16:e7:e7:bb:33:26:e0:ee:be:c8:24:
49:6b:53:c7:54:31:d9:a6:88:5b:93:4f:01:e7:74:31:05:c0:
96:30:34:57:f1:78:22:f4:c0:46:37:6e:76:88:a1:a1:7d:55:
ed:72:d1:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org