Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/23ivm7YgwidalKeBdyMWEnerxa0.roa
File: 23ivm7YgwidalKeBdyMWEnerxa0.roa (raw, json)
Hash identifier: zT7+HRktXdwfcfxR60AlSjE4TsOgjIAIbWn+eom8fag=
Subject key identifier: DB:78:AF:9B:B6:20:C2:27:5A:94:A7:81:77:23:16:12:77:AB:C5:AD
Certificate issuer: /CN=e319d0cd65593d969e8d45382a194aaa73c0ff8c
Certificate serial: 01856D789BC61FEA19675DC2D85B9E98471F
Authority key identifier: E3:19:D0:CD:65:59:3D:96:9E:8D:45:38:2A:19:4A:AA:73:C0:FF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xnQzWVZPZaejUU4KhlKqnPA_4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/23ivm7YgwidalKeBdyMWEnerxa0.roa
Signing time: Sun 01 Jan 2023 13:14:58 +0000
ROA not before: Sun 01 Jan 2023 13:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 178.159.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jul 2023 08:07:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:9b:c6:1f:ea:19:67:5d:c2:d8:5b:9e:98:47:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e319d0cd65593d969e8d45382a194aaa73c0ff8c
Validity
Not Before: Jan 1 13:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db78af9bb620c2275a94a7817723161277abc5ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:61:39:fe:b1:02:5c:32:a6:16:91:b9:8d:f1:
33:74:f5:08:62:a9:5c:63:8d:0e:84:72:ab:56:b8:
4b:53:ba:18:f5:94:ae:f2:c1:95:96:de:c4:b4:f1:
c6:d3:c2:77:6a:12:4f:d7:fc:54:d9:98:6a:e8:19:
12:84:2a:9c:b0:9d:1a:48:ca:dd:90:57:67:87:66:
50:5d:3c:f5:18:36:ad:6c:99:27:31:40:ea:30:03:
3d:8c:81:06:a1:33:6a:cc:83:ae:e8:aa:fa:4a:3b:
e2:c4:57:ce:80:8e:cc:37:fb:e3:2e:56:2c:2e:3e:
89:57:6a:ce:ee:0d:e7:3d:71:53:93:2e:d3:92:7d:
da:7a:f0:55:d2:88:f0:30:57:c7:f0:ba:85:08:5e:
25:16:09:9d:da:ba:87:7d:2f:aa:90:28:c6:19:18:
40:5d:9e:76:07:51:ea:e5:05:3d:a6:75:d5:5c:b5:
96:76:31:c6:7e:43:1d:76:67:0b:50:70:b6:53:bd:
36:50:b9:6a:af:46:6b:fc:98:7e:8b:d1:c9:fd:1a:
f2:af:26:02:d1:0e:2a:9f:bf:9b:34:1a:46:71:6d:
e8:4b:ab:db:c2:6b:a1:5e:59:f2:1a:b6:0b:a2:5c:
23:a6:ec:4f:fc:79:47:2c:c2:b7:f4:f9:4f:df:6d:
bd:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:78:AF:9B:B6:20:C2:27:5A:94:A7:81:77:23:16:12:77:AB:C5:AD
X509v3 Authority Key Identifier:
keyid:E3:19:D0:CD:65:59:3D:96:9E:8D:45:38:2A:19:4A:AA:73:C0:FF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xnQzWVZPZaejUU4KhlKqnPA_4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/23ivm7YgwidalKeBdyMWEnerxa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/4xnQzWVZPZaejUU4KhlKqnPA_4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.159.65.0/24
Signature Algorithm: sha256WithRSAEncryption
29:9d:7a:9b:31:ce:56:c7:c6:89:56:6a:c2:82:48:f4:98:b0:
e9:d6:8e:80:2c:4f:9c:7b:04:ca:8b:d2:ff:60:f4:07:42:7d:
b8:4a:14:3a:32:d9:f5:96:28:a7:cd:36:1d:85:e6:5c:fd:58:
f8:6e:8c:7a:00:83:8a:0f:7c:0f:95:11:63:4d:8f:5e:af:78:
8d:67:47:bb:96:f1:99:56:58:aa:7c:c6:66:0f:12:9b:c6:03:
75:d0:13:bd:f5:75:2e:ad:7a:43:e4:71:9d:36:53:01:bb:5f:
b7:17:73:9c:f1:4e:6b:14:47:7a:cf:06:c0:66:60:ac:d8:4b:
e5:b8:5e:42:a0:3e:9f:c0:bc:b5:38:5b:02:f9:1a:2e:bc:ef:
d9:d8:fd:47:ed:3f:90:28:86:08:78:e1:68:60:24:42:1b:e2:
ba:fe:df:ae:6c:5b:97:19:51:05:57:65:ed:09:06:36:42:95:
f5:ec:52:43:cd:c3:45:ee:1f:ca:38:88:f4:f6:ab:2f:de:24:
5b:9a:22:1c:27:e8:e2:9d:95:73:76:8a:cc:1a:28:af:91:b6:
f7:ae:4d:41:1f:69:4a:15:48:7e:2b:dd:21:36:20:76:63:4d:
b2:fe:34:53:e7:cb:1f:ad:33:ae:e1:31:c6:7a:b0:ed:a2:4f:
9c:67:d7:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:48 2024 by rpki-client on console-ams.rpki-client.org