Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/3yTn49mCcEkZBUP6oRob4cxYEwc.roa
File: 3yTn49mCcEkZBUP6oRob4cxYEwc.roa (raw, json)
Hash identifier: hRRc2K3NbO6M89dvyC4JJ/OCsrTf7BTfdmdYJoahphE=
Subject key identifier: DF:24:E7:E3:D9:82:70:49:19:05:43:FA:A1:1A:1B:E1:CC:58:13:07
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0186C232C9B67B0F53AC53A2D27EBD7AF5FA
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/3yTn49mCcEkZBUP6oRob4cxYEwc.roa
Signing time: Wed 08 Mar 2023 17:09:13 +0000
ROA not before: Wed 08 Mar 2023 17:09:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212941
IP address blocks: 178.239.240.0/20 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 May 2023 10:40:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c2:32:c9:b6:7b:0f:53:ac:53:a2:d2:7e:bd:7a:f5:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Mar 8 17:09:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df24e7e3d9827049190543faa11a1be1cc581307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:21:c4:ef:98:ef:2d:9b:4e:fe:dd:b9:15:26:
82:0b:39:d3:eb:a2:17:a0:a0:aa:d5:bf:0f:6e:ee:
0a:6f:a6:d2:4b:a4:18:bf:2f:a6:ab:8b:45:0d:8d:
6e:eb:57:0f:57:cb:12:cd:7c:04:91:df:93:2b:11:
84:b1:60:91:2f:2e:ab:80:65:7e:62:8f:9d:50:76:
75:31:64:88:95:d9:7d:38:b7:d2:cf:d6:69:30:2a:
7b:db:7d:ef:52:e9:e3:5e:07:7b:dc:24:4a:65:2e:
1f:c1:06:d4:1c:7a:f2:33:0c:16:e6:39:e2:9a:45:
7a:a6:7e:a1:82:55:f1:1a:b9:34:35:75:bb:b2:eb:
90:db:93:4f:f2:40:33:82:0f:36:3a:83:15:90:80:
98:95:7a:af:69:49:c0:68:90:e1:7a:91:7d:bc:38:
cb:5a:83:a1:c2:99:dd:b7:ef:15:9a:ed:b7:28:6c:
75:77:ee:bd:9e:23:e8:c9:2a:8f:2d:dc:86:e7:88:
cc:06:79:05:a6:9d:76:0a:da:70:d7:3e:fd:43:71:
68:be:63:44:e2:4e:3a:ab:8f:cc:eb:d9:f1:e9:ae:
39:b3:a4:15:72:05:60:6b:7e:31:24:22:9e:94:9c:
e6:f0:93:26:0c:5e:ac:53:ca:88:68:fc:f9:70:3a:
3c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:24:E7:E3:D9:82:70:49:19:05:43:FA:A1:1A:1B:E1:CC:58:13:07
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/3yTn49mCcEkZBUP6oRob4cxYEwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.240.0/20
Signature Algorithm: sha256WithRSAEncryption
72:19:91:36:fa:2c:e6:8d:39:43:2e:9d:05:8a:2e:08:e3:f4:
76:30:64:cd:17:53:e2:f1:2a:bb:d3:dd:9a:1b:d1:6a:b0:a0:
e5:e3:6f:a8:75:d9:8b:e3:86:fb:ed:58:5b:75:86:11:7d:d1:
cf:7d:bd:fa:c2:67:37:93:f1:1d:8a:1f:c7:ba:5d:3a:6c:45:
cf:d6:8f:55:d7:fb:63:48:84:26:d8:c8:fb:c8:0d:3b:19:37:
b5:2d:f8:76:3c:62:cf:3e:57:73:a1:39:e0:87:6b:b5:72:07:
ee:1d:e4:11:3e:30:8e:b3:62:77:4b:86:40:a4:e8:2a:32:ba:
e0:d3:8b:29:e1:31:c7:05:39:40:3d:dc:47:06:20:10:2b:f5:
68:cb:b7:1a:78:7f:93:63:b1:41:0b:ff:4c:c2:41:53:c6:92:
bb:f3:0b:0e:08:0c:5b:38:4b:55:3e:bb:a6:cb:f2:1e:53:38:
33:2a:cc:10:c6:c9:7f:49:42:09:3f:2f:91:01:69:a5:6c:88:
40:33:da:6d:2f:a1:81:3d:a3:e3:20:38:2e:21:62:5c:41:f9:
3e:9e:ed:ca:2c:68:da:de:11:97:0e:b4:1d:15:9d:f7:58:a6:
06:da:7c:7d:7b:5f:76:65:2b:1b:7e:02:58:67:2b:4a:10:47:
da:6f:0d:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org