Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ls9mshw53AQYahEfxG4IBHdT-es.roa
File: ls9mshw53AQYahEfxG4IBHdT-es.roa (raw, json)
Hash identifier: 4dX5YroahltTQbWyK1aviZoMWSgT9awRf9Sb/PHO7OU=
Subject key identifier: 96:CF:66:B2:1C:39:DC:04:18:6A:11:1F:C4:6E:08:04:77:53:F9:EB
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018A3DBAB0F2C9522C73E5771B63365EE6E4
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ls9mshw53AQYahEfxG4IBHdT-es.roa
Signing time: Mon 28 Aug 2023 19:59:19 +0000
ROA not before: Mon 28 Aug 2023 19:59:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197842
IP address blocks: 178.253.55.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3d:ba:b0:f2:c9:52:2c:73:e5:77:1b:63:36:5e:e6:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Aug 28 19:59:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96cf66b21c39dc04186a111fc46e08047753f9eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:48:da:b6:41:cd:d6:d3:ae:20:2c:b4:2d:28:
b1:b6:b0:af:4c:25:6e:dd:5f:58:47:2e:96:a6:a8:
e9:c4:75:48:6d:1b:6c:ad:c6:a0:0b:47:6d:89:ad:
32:ea:5f:9b:c3:21:ff:65:67:db:fb:2b:ac:d1:5b:
98:9b:60:83:fa:62:51:4b:ec:ed:6e:9b:2a:06:d6:
28:25:c6:6a:16:4c:ce:63:92:27:65:c3:a2:bb:07:
41:89:66:c3:64:65:41:d4:1a:20:12:2e:d0:02:1c:
da:01:b2:dd:eb:bd:06:a2:e6:6d:e7:8d:8e:37:5a:
2c:c4:a4:db:f1:ae:74:2b:26:2f:20:77:88:2c:99:
36:e6:21:f7:5c:5d:8b:03:4b:99:c1:35:29:87:21:
26:04:6c:07:f6:d9:93:f5:1e:b3:c5:58:c5:bf:c7:
fe:2a:80:07:e7:6e:ef:25:93:e4:3b:94:7a:10:36:
f9:1b:76:f6:91:de:04:58:c6:50:33:5c:3b:1e:1b:
63:ca:f1:12:3b:56:2e:bb:31:5d:c3:2a:9f:83:c0:
27:31:0d:98:98:a7:bc:fc:47:d4:cc:64:be:ac:d2:
0b:b2:22:4a:f7:26:77:02:3a:75:68:d3:06:e4:7d:
58:89:d9:c0:78:3e:b2:37:d4:51:9a:3a:f2:73:fe:
f0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:CF:66:B2:1C:39:DC:04:18:6A:11:1F:C4:6E:08:04:77:53:F9:EB
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ls9mshw53AQYahEfxG4IBHdT-es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.55.0/24
Signature Algorithm: sha256WithRSAEncryption
62:18:02:cb:2a:8b:0e:7c:1d:19:16:9f:20:c0:35:88:e7:bf:
ed:24:56:d2:91:21:2b:d7:9e:d7:64:77:27:95:b9:4a:b9:87:
df:4f:c9:fe:2c:8d:3e:c0:48:8a:f3:26:9f:cd:1c:77:b9:e5:
ea:7b:ce:07:3a:7d:40:5c:dd:12:1c:60:59:51:4b:9f:98:f5:
3c:94:da:da:00:90:77:52:50:dd:c5:a5:4c:18:7c:5a:84:fd:
73:44:4a:75:9c:5e:58:cb:0a:46:e7:a0:24:5e:9f:e8:7c:3e:
9c:32:c9:1e:19:99:d2:6f:cb:a6:e7:9a:69:95:3b:ce:62:f7:
cd:60:a4:56:7b:2c:b3:2f:17:1a:c3:68:ef:5b:1d:21:6e:e2:
d1:4b:2f:ca:f8:37:dc:0d:17:f4:56:0b:43:d5:2d:e9:3a:3c:
87:f8:89:c8:b9:2f:76:c8:4b:b0:83:21:b0:7d:b3:22:49:7c:
be:8f:59:ec:22:4a:c3:4f:db:ed:e1:7b:e2:c2:68:9a:43:fb:
ab:df:d2:c0:43:58:e8:5e:b0:4a:92:74:68:ad:0c:e9:e4:8b:
25:b3:9b:26:07:85:4b:79:e7:6b:bb:83:74:4d:c7:51:86:bb:
b2:79:30:ec:77:c6:8f:04:29:ea:76:15:89:8b:f9:d8:4a:ea:
cd:ba:83:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 23 20:13:38 2023 by rpki-client on console-fra.rpki-client.org