Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/iw_kjxjk8FDSGLrz79UQ-SRm83w.roa
File: iw_kjxjk8FDSGLrz79UQ-SRm83w.roa (raw, json)
Hash identifier: 4T4aMyX4buhyEd8nrbUgcyoRNX/oZWCtVFqf6baQhzA=
Subject key identifier: 8B:0F:E4:8F:18:E4:F0:50:D2:18:BA:F3:EF:D5:10:F9:24:66:F3:7C
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01880C63881FF53F85F93AAC0D4FCD89DCEF
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/iw_kjxjk8FDSGLrz79UQ-SRm83w.roa
Signing time: Thu 11 May 2023 19:57:09 +0000
ROA not before: Thu 11 May 2023 19:57:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 178.253.40.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0c:63:88:1f:f5:3f:85:f9:3a:ac:0d:4f:cd:89:dc:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: May 11 19:57:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b0fe48f18e4f050d218baf3efd510f92466f37c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:95:98:01:b4:4a:88:4c:5b:3a:68:ae:ea:46:
30:db:e0:d6:b0:a5:93:7e:4d:ef:6e:78:aa:a6:3b:
d3:50:61:98:06:23:a0:be:90:b9:45:c5:bb:9e:d7:
78:f2:d2:1c:e9:d0:6c:39:89:65:08:06:bf:32:04:
b2:0c:55:5f:51:e1:06:0e:92:77:9b:53:f6:7d:91:
79:c8:a4:fc:00:31:d5:9b:64:32:04:83:75:1e:91:
65:1c:6d:48:18:ee:fb:0b:8e:06:9e:11:df:c9:b0:
29:31:2c:86:47:44:5c:fb:9d:a6:9d:98:82:bf:90:
57:bc:72:df:2f:a0:bb:b1:b3:61:e9:36:42:e8:3c:
96:f4:f7:a6:fc:af:9a:0f:4f:38:50:8a:ed:39:0e:
08:58:a9:de:4f:9d:b7:42:a0:1f:28:ae:82:99:a7:
9d:f6:eb:2f:85:00:5c:a1:a2:61:0a:0e:af:71:73:
4f:74:f6:0f:4b:d1:19:f3:e4:b6:79:66:77:b5:30:
45:a2:e4:4e:19:ff:b5:61:db:41:f9:af:2b:a4:7e:
af:b6:26:30:ed:ab:ce:96:a0:d0:44:50:3c:1f:19:
ef:69:a8:bc:d0:b6:78:3f:e9:79:77:f3:19:07:1b:
1d:22:b9:60:a8:8c:22:8d:75:67:73:f2:e3:4b:b8:
41:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:0F:E4:8F:18:E4:F0:50:D2:18:BA:F3:EF:D5:10:F9:24:66:F3:7C
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/iw_kjxjk8FDSGLrz79UQ-SRm83w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.40.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:68:26:d5:6d:b2:ae:6e:cb:d7:07:c7:c5:6f:54:69:a5:26:
66:78:d9:89:19:97:52:b5:cc:fa:f6:3c:5b:09:98:37:53:7d:
83:d5:cc:e7:99:50:35:98:b0:9c:8e:94:8a:4a:3d:8e:28:4a:
90:1f:c1:67:ed:a2:36:4e:f7:22:8a:8a:de:4a:ca:8e:78:26:
9a:4f:87:b2:ff:01:74:a7:b9:23:9f:a1:c2:ef:4f:a0:1f:bd:
eb:e5:53:e9:74:7a:f5:73:8a:33:72:6c:6e:6c:34:91:52:15:
d4:74:23:f0:3a:f1:9a:0b:fe:d1:62:e9:6a:cd:1d:12:47:78:
69:18:c4:83:62:9c:e2:b7:a2:7f:82:26:dc:c2:bf:69:85:c8:
53:f1:aa:43:87:2e:5b:08:07:06:70:b8:0f:27:41:2a:5e:e6:
0b:86:1e:07:54:9e:44:11:b9:7a:5d:6b:56:35:67:3d:09:ef:
22:bf:9a:df:5e:f0:92:6b:80:5e:dc:a9:86:fc:cc:35:50:45:
71:83:06:9d:a3:8e:e2:b7:f3:7e:2e:97:de:66:0d:4a:5c:5f:
9a:35:67:3e:19:4e:85:a8:cd:b7:40:92:02:89:0f:95:67:d5:
f7:6a:77:77:bb:8b:82:a4:af:27:0a:c5:e8:1d:a7:bb:6b:e5:
20:5b:01:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:44 2023 by rpki-client on console-fra.rpki-client.org