Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/rzS66YoYs46ZIyZYRU3pTJD7b4Q.roa
File: rzS66YoYs46ZIyZYRU3pTJD7b4Q.roa (raw, json)
Hash identifier: lxrIlsvpzcy4LjomYwLDmQDJnJVsvfz0EMMbYM9xtqo=
Subject key identifier: AF:34:BA:E9:8A:18:B3:8E:99:23:26:58:45:4D:E9:4C:90:FB:6F:84
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0185708CE69E1438A7A6425B60E84C2DEA7B
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/rzS66YoYs46ZIyZYRU3pTJD7b4Q.roa
Signing time: Mon 02 Jan 2023 03:36:00 +0000
ROA not before: Mon 02 Jan 2023 03:36:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 135752
IP address blocks: 178.253.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 15 Jan 2023 16:11:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:e6:9e:14:38:a7:a6:42:5b:60:e8:4c:2d:ea:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 03:36:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af34bae98a18b38e99232658454de94c90fb6f84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:93:b5:54:c6:21:36:8a:68:41:44:53:19:79:
75:d5:a6:cf:5c:87:b8:89:6d:e0:11:ed:3b:a4:12:
92:95:35:66:a5:e2:f0:d4:37:73:e4:03:d9:22:53:
75:da:d8:a4:36:55:f3:b5:65:e0:d2:88:95:ba:87:
68:5e:8b:f8:52:1a:14:e5:5c:8d:52:eb:a8:a3:a5:
54:55:2d:61:9e:ef:18:5c:87:bc:99:aa:27:2e:d3:
79:59:aa:19:6d:26:71:20:4b:3c:d6:a8:33:4d:30:
6b:cb:fc:d1:1d:20:16:5c:2d:69:90:49:b4:8f:1c:
37:c9:96:eb:35:0b:5e:ff:d7:44:09:71:22:95:0e:
bd:27:f0:21:08:06:d9:76:80:85:26:73:54:99:5f:
8b:2d:e0:0a:4a:41:ce:29:20:56:27:d4:f3:3e:37:
ba:01:a8:47:fa:59:62:f8:b8:55:24:f4:2b:26:b2:
9d:c7:e7:7c:6a:00:29:05:ac:3a:79:74:47:d1:93:
f5:e2:a3:82:dc:c9:08:52:26:7a:e8:9c:48:69:98:
7e:20:59:03:9f:c3:f6:f5:da:89:b0:2c:91:8c:28:
bf:3c:7d:89:1c:07:1f:22:d6:e3:82:f0:a7:86:eb:
2d:9a:58:54:17:b0:33:d7:62:b2:eb:04:f2:ce:d5:
70:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:34:BA:E9:8A:18:B3:8E:99:23:26:58:45:4D:E9:4C:90:FB:6F:84
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/rzS66YoYs46ZIyZYRU3pTJD7b4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.32.0/24
Signature Algorithm: sha256WithRSAEncryption
17:40:67:d4:6d:a3:f4:83:37:0a:2d:ac:ee:70:b3:83:6f:50:
53:b7:5f:13:a9:06:f3:0f:9e:5f:8d:c9:be:9a:c5:e5:d3:18:
19:5d:af:7d:7a:8e:cc:f1:09:f5:8b:7d:5a:30:7d:1f:11:14:
7d:53:55:ab:1a:d0:b7:5f:86:a3:95:5d:bf:90:bd:85:62:55:
18:55:d3:35:1b:b6:f3:30:da:2f:5f:87:45:18:5a:db:d2:19:
c1:7a:7e:1c:d2:7e:3f:33:ed:65:36:60:6f:26:cd:48:91:9e:
6b:ab:60:3e:cb:27:e0:72:23:a5:3f:d7:69:98:d3:02:25:77:
60:18:73:b8:28:8f:e9:27:13:5c:b5:55:69:8b:3b:fd:90:1c:
c8:28:f6:60:63:26:88:d8:37:d8:42:d4:6c:35:f1:55:09:85:
01:a4:8d:de:f7:f7:12:ff:17:a2:f6:30:4d:2a:a5:31:2d:61:
95:e2:1b:bf:a8:e6:d3:33:b8:90:e2:de:e0:84:63:80:1f:90:
2b:d6:48:b5:cd:93:56:f4:e0:ce:09:a9:70:e9:50:2d:ba:5a:
06:bc:ec:00:d9:e3:bd:26:7b:f1:5f:42:56:d2:c4:78:71:80:
86:ac:81:23:95:22:e2:4a:c4:01:4c:f3:7c:04:42:68:44:1c:
5a:10:d2:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:20 2024 by rpki-client on console-ams.rpki-client.org