Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/kXVRJAOLnPgcNnmlalMjSSh5kR4.roa
File: kXVRJAOLnPgcNnmlalMjSSh5kR4.roa (raw, json)
Hash identifier: Wzlzs68YuXeDwctxq+w9nB0cljZk2sx4fzkwObq6fZY=
Subject key identifier: 91:75:51:24:03:8B:9C:F8:1C:36:79:A5:6A:53:23:49:28:79:91:1E
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018B3C31EC51ECFB6D031C775D5730F38046
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/kXVRJAOLnPgcNnmlalMjSSh5kR4.roa
Signing time: Tue 17 Oct 2023 05:53:06 +0000
ROA not before: Tue 17 Oct 2023 05:53:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 395517
IP address blocks: 178.253.16.0/24 maxlen: 24
178.253.38.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3c:31:ec:51:ec:fb:6d:03:1c:77:5d:57:30:f3:80:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Oct 17 05:53:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91755124038b9cf81c3679a56a5323492879911e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:29:64:29:39:d0:39:a0:85:43:4c:fd:00:a3:
ae:b3:6f:42:1e:aa:f9:17:73:25:28:4d:d2:b0:01:
e4:8f:7b:c7:11:51:30:90:e3:25:74:49:61:bf:a1:
e3:75:19:76:bc:69:c3:b8:01:a8:d7:5c:8d:19:79:
f2:a3:79:9f:35:9e:ee:cf:bb:97:8f:db:6b:1f:32:
ec:37:c9:51:dc:8c:6b:81:00:4a:2d:68:67:f4:a8:
ae:7d:c8:2c:cb:2b:30:df:7b:c9:bb:22:d6:c9:c1:
a2:17:3b:db:58:4e:16:dc:e2:e5:87:5e:fd:ab:6e:
5e:53:a5:b5:74:e8:32:ce:dd:40:e9:bd:1c:24:94:
12:76:47:16:37:51:ba:40:01:e6:df:b7:ac:9d:94:
86:f8:d7:77:cf:f4:b2:97:81:67:54:5f:fa:6c:f5:
1b:a4:73:e9:70:6f:f9:2d:65:a1:c5:a3:cb:cf:eb:
a1:bc:85:97:e7:66:9c:9e:cd:d6:9b:4a:7c:aa:bc:
f9:77:19:02:2b:aa:f1:c7:16:5c:e0:00:8c:f6:0c:
d5:5f:12:9b:4e:c3:da:70:4f:20:e2:9b:15:82:5a:
88:4a:51:eb:73:90:5d:c5:3e:26:1b:5d:ac:cb:e7:
8d:99:55:b9:be:f1:09:f6:e1:85:c6:ca:42:9c:36:
1a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:75:51:24:03:8B:9C:F8:1C:36:79:A5:6A:53:23:49:28:79:91:1E
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/kXVRJAOLnPgcNnmlalMjSSh5kR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.16.0/24
178.253.38.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:b8:93:c9:f5:3e:38:9b:49:7a:57:7c:ee:3a:20:ee:07:6a:
a4:82:4c:a6:da:43:49:97:84:9e:3f:cb:b2:c7:49:27:5b:c1:
a9:9d:a4:a3:13:71:fa:ba:9a:eb:9f:f4:2f:57:51:93:b2:cc:
20:a6:dd:c6:9c:f2:1d:82:6a:f3:b2:30:55:26:95:ff:59:c3:
e9:a5:92:7e:a5:ff:3a:87:4b:19:5b:cd:89:11:55:95:3d:79:
03:2d:16:db:52:ef:ce:cc:c6:62:13:24:0b:07:76:c8:07:4b:
a5:8b:eb:32:ea:8f:6d:b6:bf:ca:31:a5:95:b0:42:06:ac:b2:
a9:b6:92:b1:2e:a5:77:de:4a:81:a0:2e:22:8f:48:02:bf:69:
a7:74:26:03:de:d4:55:94:a9:77:d1:75:1f:67:01:c8:c5:81:
8a:7f:21:ba:86:84:c5:0b:69:73:2e:a4:c4:56:94:8e:40:d9:
09:c0:96:06:07:02:95:32:ac:39:77:f6:ec:d1:b1:34:0f:3a:
87:fc:31:02:eb:4d:c3:45:7e:c2:d8:77:32:22:46:b6:eb:e6:
be:c5:3c:c1:a2:5e:10:bb:3f:f6:69:b0:96:84:ed:0e:bf:fb:
f7:4c:02:79:2e:14:d8:cc:20:b2:95:d8:f5:94:20:7a:0b:8f:
4c:8b:3b:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org