Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/wCUGc_HW4Kv93yTGtlduOVGacfk.roa
File: wCUGc_HW4Kv93yTGtlduOVGacfk.roa (raw, json)
Hash identifier: 3i0k6ydC5h9wzjy/agQVZo3f91CxwxtliVBfpaDnZ7I=
Subject key identifier: C0:25:06:73:F1:D6:E0:AB:FD:DF:24:C6:B6:57:6E:39:51:9A:71:F9
Certificate issuer: /CN=e319d0cd65593d969e8d45382a194aaa73c0ff8c
Certificate serial: 018920EC83610D9D0FF9298CFF92D9A0B1D7
Authority key identifier: E3:19:D0:CD:65:59:3D:96:9E:8D:45:38:2A:19:4A:AA:73:C0:FF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xnQzWVZPZaejUU4KhlKqnPA_4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/wCUGc_HW4Kv93yTGtlduOVGacfk.roa
Signing time: Tue 04 Jul 2023 12:41:58 +0000
ROA not before: Tue 04 Jul 2023 12:41:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 178.159.65.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:20:ec:83:61:0d:9d:0f:f9:29:8c:ff:92:d9:a0:b1:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e319d0cd65593d969e8d45382a194aaa73c0ff8c
Validity
Not Before: Jul 4 12:41:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0250673f1d6e0abfddf24c6b6576e39519a71f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c0:8a:f2:d7:83:09:28:8a:76:80:bb:28:57:
06:03:06:72:a0:6b:a9:f2:03:7b:e8:de:1a:f3:6c:
d7:4c:0a:6a:64:bb:50:22:7e:31:a0:ba:9f:5c:bc:
70:bd:8c:47:b1:04:a6:18:4b:5f:79:3c:66:7e:24:
40:18:d4:50:35:ac:88:7b:4c:4e:e3:7c:9e:94:d1:
39:ce:13:8c:8a:28:3f:0a:b0:be:8c:00:63:a2:60:
20:47:bf:40:5d:29:4c:c3:e8:c0:d6:a8:be:8f:5c:
e4:6d:45:9d:a1:49:10:24:18:99:e3:93:30:da:65:
0e:3f:26:db:07:84:1b:cc:6d:7a:03:c8:12:2f:53:
b4:2c:65:aa:11:ff:33:04:d2:7e:0c:a7:af:07:36:
62:df:2f:49:60:34:36:50:f1:f0:52:7a:ee:bb:37:
a1:b2:d2:1e:fc:3e:57:e1:9a:1e:7c:ac:e7:b8:d5:
07:13:63:ca:3b:d0:83:e7:1f:cc:9c:2b:39:e9:9e:
41:87:46:53:1e:70:11:c3:56:e7:d7:db:a0:94:e1:
66:62:90:85:8b:8a:ff:ae:fa:26:fe:85:b0:99:e5:
f6:53:1d:ca:f0:23:ca:35:a9:48:b1:07:bc:42:cc:
0d:37:f6:e3:d2:41:dd:35:5a:cb:86:e0:c2:e7:2d:
2c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:25:06:73:F1:D6:E0:AB:FD:DF:24:C6:B6:57:6E:39:51:9A:71:F9
X509v3 Authority Key Identifier:
keyid:E3:19:D0:CD:65:59:3D:96:9E:8D:45:38:2A:19:4A:AA:73:C0:FF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xnQzWVZPZaejUU4KhlKqnPA_4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/wCUGc_HW4Kv93yTGtlduOVGacfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/4xnQzWVZPZaejUU4KhlKqnPA_4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.159.65.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:3d:0a:dd:68:71:47:60:8a:55:db:b7:23:2b:a6:b3:98:49:
c2:7f:50:ca:3f:46:c9:d8:b7:f8:87:d5:bd:70:56:96:e0:1d:
f1:8a:44:72:77:1e:4d:34:2c:50:40:52:a4:3d:b2:ac:e4:85:
07:3d:e6:07:3a:2e:47:04:de:62:94:67:e0:5e:13:c1:73:47:
c0:8f:45:8a:81:cc:62:21:1e:65:ce:37:c7:0c:2f:86:03:23:
a1:06:f9:a4:ef:7a:c1:fe:bf:6b:ad:c7:b0:05:51:f5:01:29:
48:3e:0c:e2:79:75:11:73:9c:92:19:25:0e:cc:61:bc:21:de:
e5:3a:56:80:06:75:39:f0:87:77:67:db:4e:a5:5d:40:71:d7:
40:8c:75:38:8b:35:60:b9:d1:62:0e:45:19:bd:79:03:cf:20:
95:5d:20:31:61:eb:b5:03:b4:f1:44:bc:1a:87:93:21:cd:7e:
a8:6b:0e:52:51:6b:b8:65:a1:88:c8:a9:9f:b9:2d:6d:f0:ab:
a6:48:d0:ba:30:59:b2:f0:07:88:53:9d:19:49:fa:37:6f:27:
73:d8:e8:d0:ae:71:78:12:fb:b0:82:0a:73:c1:1c:9c:4c:79:
c0:1f:28:72:73:bf:95:19:02:4b:43:06:41:fc:d3:15:d2:82:
3d:3b:95:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:59 2024 by rpki-client on console-fra.rpki-client.org