Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/7Z8-KCUHj9LajP3R0NsKyGcy6Yc.roa
File: 7Z8-KCUHj9LajP3R0NsKyGcy6Yc.roa (raw, json)
Hash identifier: bV0DET8VJc2VxljDrI4V6LXEzDjBzTS0ygk8F2QyJYQ=
Subject key identifier: ED:9F:3E:28:25:07:8F:D2:DA:8C:FD:D1:D0:DB:0A:C8:67:32:E9:87
Certificate issuer: /CN=b473167913af73e4f6374170c4f945f8b0dd7d64
Certificate serial: 01856E26919D714B24502FCF7D290579AAB5
Authority key identifier: B4:73:16:79:13:AF:73:E4:F6:37:41:70:C4:F9:45:F8:B0:DD:7D:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tHMWeROvc-T2N0FwxPlF-LDdfWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/7Z8-KCUHj9LajP3R0NsKyGcy6Yc.roa
Signing time: Sun 01 Jan 2023 16:24:59 +0000
ROA not before: Sun 01 Jan 2023 16:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50553
IP address blocks: 178.219.176.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:91:9d:71:4b:24:50:2f:cf:7d:29:05:79:aa:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b473167913af73e4f6374170c4f945f8b0dd7d64
Validity
Not Before: Jan 1 16:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed9f3e2825078fd2da8cfdd1d0db0ac86732e987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:7a:f8:f5:2e:43:d1:12:ca:ce:8f:30:64:d7:
cd:b6:31:e5:2b:6c:66:a0:09:8b:1b:94:62:fc:fd:
a9:fa:18:43:cd:ac:ae:a7:26:cb:99:a5:d3:64:b2:
c4:69:ce:0e:2d:e2:88:40:6a:b1:42:80:d4:36:84:
dc:35:b3:ba:b2:d1:1a:d6:33:4e:ef:e5:c4:03:2a:
20:8b:b6:48:ad:93:3d:e0:f9:39:ad:ab:4e:a0:ce:
26:06:c4:92:db:52:d8:a1:27:5d:44:5e:84:89:f3:
8e:ab:6f:a0:08:ac:3f:d7:a9:b9:8d:4c:27:e1:bd:
84:01:83:d7:60:21:5b:91:d9:db:8b:63:78:31:a1:
73:c1:f3:a7:ae:c8:2d:ec:33:6a:33:0a:ca:d6:fb:
78:eb:fb:ac:bb:f3:1d:01:a3:4b:a7:86:f4:72:62:
2a:0c:24:54:7e:b5:e0:7b:d8:c5:ad:71:86:76:89:
b8:c3:1b:08:d9:ff:b2:a8:a0:0a:0c:22:47:9c:5b:
10:33:df:5b:7d:3c:48:57:c0:e9:8d:1b:04:30:18:
dc:a6:c7:e5:02:9d:b2:1d:ba:da:44:a6:bb:b8:e2:
ac:2e:e7:ab:31:54:d8:15:54:7f:9e:8b:a3:57:8d:
82:bf:fb:04:50:5e:11:f5:8d:8b:cc:8c:c1:71:f7:
58:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:9F:3E:28:25:07:8F:D2:DA:8C:FD:D1:D0:DB:0A:C8:67:32:E9:87
X509v3 Authority Key Identifier:
keyid:B4:73:16:79:13:AF:73:E4:F6:37:41:70:C4:F9:45:F8:B0:DD:7D:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tHMWeROvc-T2N0FwxPlF-LDdfWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/7Z8-KCUHj9LajP3R0NsKyGcy6Yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.219.176.0/21
Signature Algorithm: sha256WithRSAEncryption
13:fe:04:9a:57:d4:dd:14:20:a1:2d:27:d1:77:d5:d6:ba:0d:
f1:6d:b2:3b:4f:6f:8a:60:1d:6a:fb:22:f8:9b:c0:79:4d:ed:
72:ab:98:39:0c:52:79:49:8e:7a:3f:3c:a2:8f:a8:68:69:c3:
65:1e:a2:07:14:0b:47:78:e5:bf:07:da:d1:0f:a9:36:9d:36:
2f:4e:92:bb:6d:54:79:ab:76:ea:6e:7f:bd:a4:d4:0b:12:cd:
e7:4b:5d:6b:dd:8d:c4:96:a2:83:dc:96:a5:aa:87:20:3a:0b:
10:0c:d9:84:68:c8:46:f7:d3:b4:b5:a8:f2:60:7f:bc:bb:eb:
aa:1e:ca:6f:f9:b6:bb:ab:e3:65:06:51:ae:3c:c9:b7:4d:da:
fd:0a:25:fd:27:b5:db:ea:01:eb:bb:b2:d6:05:3e:e4:0e:b8:
35:bc:a3:5f:37:e4:51:3c:53:5f:f2:4e:56:17:cb:cb:ca:35:
4a:c8:a5:1c:6b:f4:e7:d3:f6:bb:a4:00:25:aa:35:9c:1f:52:
6f:68:a7:fc:19:c0:4b:e0:bf:7f:a3:53:bb:76:6a:1d:72:6e:
09:92:df:0a:f2:8e:72:78:7a:46:4a:f9:f1:ac:f8:0b:e3:94:
20:cf:1a:86:3d:f9:40:7d:3e:3b:fe:5d:16:e0:68:87:b4:ca:
16:c3:a6:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:34 2024 by rpki-client on console-fra.rpki-client.org