Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/hF3A3kqgN-CxbhqMe6y-Lbr7eKg.roa
File: hF3A3kqgN-CxbhqMe6y-Lbr7eKg.roa (raw, json)
Hash identifier: qro8JYvFcXW/n86Lh6HlfrSYCY25u4Gg9tP3fFL8H+E=
Subject key identifier: 84:5D:C0:DE:4A:A0:37:E0:B1:6E:1A:8C:7B:AC:BE:2D:BA:FB:78:A8
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01876536CB3D5238365ABA62D508D195D044
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/hF3A3kqgN-CxbhqMe6y-Lbr7eKg.roa
Signing time: Sun 09 Apr 2023 08:51:42 +0000
ROA not before: Sun 09 Apr 2023 08:51:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198989
IP address blocks: 178.253.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jul 2023 15:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:65:36:cb:3d:52:38:36:5a:ba:62:d5:08:d1:95:d0:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Apr 9 08:51:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=845dc0de4aa037e0b16e1a8c7bacbe2dbafb78a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:20:26:9c:47:b1:fb:3e:86:65:80:da:8a:c6:
6d:7d:fc:b3:f4:ab:fc:f4:be:d5:e1:a5:b3:eb:72:
31:4f:f8:28:92:ed:99:b6:1b:24:eb:2e:42:40:53:
88:5a:11:ec:d7:e8:bc:8f:0b:f7:52:ed:31:62:40:
c4:25:6c:88:13:52:31:ce:95:75:4c:be:07:af:7a:
3e:ef:72:2c:ec:88:8d:93:0e:51:85:57:13:ca:20:
de:43:5f:8c:b4:1f:92:1d:b3:c0:71:41:80:05:91:
a1:ca:30:d5:f1:b2:8d:67:80:c8:9c:9a:05:68:6c:
88:83:86:8c:eb:18:06:d1:ec:ce:f6:d7:b5:bd:86:
c4:b9:69:80:88:24:10:d9:4e:8f:f5:f8:e1:41:1c:
70:48:84:b1:55:67:60:b3:9c:0b:e3:81:a4:e3:77:
24:73:9b:4b:2b:57:27:30:23:d9:35:32:a2:bb:1d:
c3:91:b2:a2:a1:ff:aa:ef:b8:74:1d:88:e3:c9:05:
f4:cd:09:1d:b4:0e:e2:21:0b:7f:78:c9:36:66:4b:
81:24:31:c7:e3:80:c0:2d:50:94:c6:34:b6:3f:e5:
bd:5d:99:18:11:f3:71:c8:db:e5:e8:c8:2c:2d:68:
71:d9:fe:54:ae:be:e9:2e:b4:38:84:97:f5:2f:13:
a8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:5D:C0:DE:4A:A0:37:E0:B1:6E:1A:8C:7B:AC:BE:2D:BA:FB:78:A8
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/hF3A3kqgN-CxbhqMe6y-Lbr7eKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.32.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:f9:1e:b5:4d:27:31:63:13:3e:c7:73:e9:53:e1:50:00:03:
71:f8:9c:54:fe:8e:9c:35:7e:06:bc:ef:58:6e:c0:0e:e0:17:
33:28:55:43:89:bf:91:0f:c8:83:3c:29:16:ba:1b:d4:49:a0:
dd:32:19:da:a8:fe:3f:38:71:53:29:7d:33:8f:c2:d4:84:12:
f9:a9:34:0b:a7:83:28:e2:c7:ad:9a:ee:10:d3:f8:e7:bc:37:
98:b2:5d:ef:b0:aa:c2:26:0b:2d:d6:81:f4:be:83:8b:6b:c3:
d5:51:f7:88:84:8d:69:c5:88:b7:0a:21:0c:2c:a5:a2:77:fa:
eb:fa:5b:28:80:36:33:cf:49:7a:74:0f:8a:ce:75:c6:d5:e6:
7a:b8:67:ba:da:99:ae:cc:be:63:66:17:7b:17:30:6b:f2:7e:
7f:32:c7:99:4b:87:f7:fc:85:a5:ae:41:27:03:11:f9:49:6f:
74:57:f6:b6:9d:12:8a:03:0a:aa:2e:7e:9f:84:7e:52:d4:71:
53:34:45:9c:9b:27:3a:2a:30:fe:d3:68:94:cc:12:b9:7a:fb:
05:c4:9e:e8:fb:0f:28:8a:35:28:c2:12:10:d3:8d:cb:60:d9:
9d:6c:7f:bb:c6:45:cd:ef:ce:59:33:25:38:14:38:4c:74:68:
fc:02:0a:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org