Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/fXPzGjNzVDpnFGDyG7XlwgSfH9E.roa
File: fXPzGjNzVDpnFGDyG7XlwgSfH9E.roa (raw, json)
Hash identifier: ejcf59zmGdiD4KrqP00UFIIogF9yG+r3/T5aXHL/oZs=
Subject key identifier: 7D:73:F3:1A:33:73:54:3A:67:14:60:F2:1B:B5:E5:C2:04:9F:1F:D1
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018BECB057DA5E5D310ABC225FA5187897A2
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/fXPzGjNzVDpnFGDyG7XlwgSfH9E.roa
Signing time: Mon 20 Nov 2023 12:24:21 +0000
ROA not before: Mon 20 Nov 2023 12:24:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 178.253.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ec:b0:57:da:5e:5d:31:0a:bc:22:5f:a5:18:78:97:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Nov 20 12:24:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d73f31a3373543a671460f21bb5e5c2049f1fd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:3c:c0:d5:79:c7:ea:34:be:ff:ca:e3:76:c2:
3b:61:77:96:b1:0e:87:b0:ad:e7:58:9e:17:3b:70:
00:8c:f3:f2:e8:fa:fc:4b:97:61:8c:82:e3:18:6c:
5e:72:eb:92:c1:52:b9:af:fb:d2:b5:34:85:66:5c:
98:97:57:12:35:de:e5:9b:ce:b5:d6:5f:8c:72:9b:
4e:c5:ec:c8:27:0d:dd:1a:a3:d7:d5:6c:9c:90:4c:
e5:0d:26:35:b5:d2:15:9a:22:b6:a2:bb:79:26:20:
a1:42:bb:ca:e8:1b:d7:a0:46:ae:27:c0:ff:83:6d:
16:6c:a9:21:b2:45:1d:77:7a:fe:85:be:97:71:fa:
35:e9:9c:3f:b8:ba:b9:13:90:7e:c1:28:14:39:f6:
5a:a7:1c:40:f4:3f:9a:8a:a4:4e:2e:0d:3d:34:42:
cf:cc:4b:d0:26:ac:d3:08:25:62:05:75:a9:a1:89:
9d:b0:9f:36:22:a6:2f:87:15:aa:0f:40:e3:45:96:
70:22:68:2a:bf:13:7e:5b:6c:81:3c:7d:b2:c0:77:
3f:69:e1:ef:e6:47:e0:c1:f0:7b:7a:36:4c:85:5f:
a2:b5:c0:fd:a6:08:00:de:6f:e5:79:51:ac:66:f7:
f2:11:30:89:4b:e1:90:bb:b5:ba:61:9a:2e:85:e7:
2f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:73:F3:1A:33:73:54:3A:67:14:60:F2:1B:B5:E5:C2:04:9F:1F:D1
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/fXPzGjNzVDpnFGDyG7XlwgSfH9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.32.0/24
Signature Algorithm: sha256WithRSAEncryption
05:25:08:40:bf:a4:35:68:de:73:03:73:08:3b:77:3b:21:99:
0d:96:12:d8:08:84:c2:ef:56:0f:6e:b7:8e:a3:26:c9:56:e0:
f4:c7:93:a1:8e:af:e9:3e:bd:e1:1e:09:6e:5b:b1:e0:08:49:
39:d5:aa:c3:0f:ff:8e:0c:61:4c:a6:b3:b7:cf:a1:4d:4a:21:
30:8b:44:36:16:70:c9:32:0c:73:1d:87:9f:aa:37:d5:4f:6c:
e0:3c:04:50:58:2f:ab:21:ff:7e:69:4e:63:01:35:97:1d:a7:
50:ad:76:4a:67:0d:c3:ec:b6:c5:a8:1f:47:8c:72:99:a7:01:
58:60:00:b1:64:bc:4d:27:ef:45:58:d5:2d:d6:1f:81:8b:5a:
99:d7:c8:f5:81:a7:4c:83:3d:22:23:ef:0e:96:53:89:65:26:
39:81:00:65:27:63:4c:d3:f6:6c:0b:7a:5f:cd:52:0f:eb:4b:
fb:31:8f:30:d1:6d:1e:cc:dd:a4:83:24:51:98:39:80:0d:fe:
4f:69:fd:03:b2:ec:85:5d:76:1e:4a:f1:43:9e:33:a0:61:38:
fe:fe:90:08:a6:8c:06:8e:d8:91:ef:3c:af:44:a2:56:11:ec:
b2:4f:4a:df:16:29:05:6a:20:84:28:24:71:59:dd:cb:d8:52:
60:66:9a:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:28 2024 by rpki-client on console-fra.rpki-client.org