Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/hxW5lw6hkHODTbEmOHNOlU4m9yc.roa
File: hxW5lw6hkHODTbEmOHNOlU4m9yc.roa (raw, json)
Hash identifier: mHfTV4RsFZ3d472x2qXlHf6PBnsJngDnK6jTL7yMPkk=
Subject key identifier: 87:15:B9:97:0E:A1:90:73:83:4D:B1:26:38:73:4E:95:4E:26:F7:27
Certificate issuer: /CN=69507f066f2bb0389dd88436074e1426114f2d92
Certificate serial: 018C814B03E50870362A49F1FAEB8D33414C
Authority key identifier: 69:50:7F:06:6F:2B:B0:38:9D:D8:84:36:07:4E:14:26:11:4F:2D:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVB_Bm8rsDid2IQ2B04UJhFPLZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/hxW5lw6hkHODTbEmOHNOlU4m9yc.roa
Signing time: Tue 19 Dec 2023 08:57:06 +0000
ROA not before: Tue 19 Dec 2023 08:57:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216139
IP address blocks: 178.208.64.0/24 maxlen: 24
178.208.65.0/24 maxlen: 24
178.208.66.0/24 maxlen: 24
178.208.67.0/24 maxlen: 24
178.208.72.0/24 maxlen: 24
178.208.73.0/24 maxlen: 24
178.208.78.0/24 maxlen: 24
178.208.76.0/24 maxlen: 24
178.208.77.0/24 maxlen: 24
178.208.74.0/24 maxlen: 24
178.208.75.0/24 maxlen: 24
178.208.85.0/24 maxlen: 24
178.208.83.0/24 maxlen: 24
178.208.84.0/24 maxlen: 24
178.208.81.0/24 maxlen: 24
178.208.82.0/24 maxlen: 24
178.208.79.0/24 maxlen: 24
178.208.80.0/24 maxlen: 24
178.208.86.0/24 maxlen: 24
178.208.90.0/24 maxlen: 24
178.208.91.0/24 maxlen: 24
178.208.88.0/24 maxlen: 24
178.208.89.0/24 maxlen: 24
178.208.93.0/24 maxlen: 24
185.105.108.0/24 maxlen: 24
109.234.32.0/24 maxlen: 24
95.142.32.0/24 maxlen: 24
2.56.90.0/24 maxlen: 24
2.56.89.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:81:4b:03:e5:08:70:36:2a:49:f1:fa:eb:8d:33:41:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69507f066f2bb0389dd88436074e1426114f2d92
Validity
Not Before: Dec 19 08:57:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8715b9970ea19073834db12638734e954e26f727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ad:9f:28:2f:a9:55:0a:70:24:e5:41:80:e6:
bc:57:d4:bb:a5:ec:cc:b4:8e:b6:9d:65:ca:60:f7:
59:a6:d5:9d:f2:40:18:54:92:3c:61:2a:88:fc:dd:
64:6c:88:c6:7a:c7:48:1b:10:f7:a9:1a:29:3b:1a:
64:2f:61:50:30:67:91:c2:9e:96:70:70:98:01:c0:
69:bc:0c:21:39:07:07:56:cd:98:e7:70:57:31:b1:
fb:15:56:12:b7:32:33:5e:ab:22:5b:82:50:c1:a0:
98:9c:fe:a7:d4:3f:42:d4:98:58:75:78:87:27:fa:
16:0d:6b:87:96:0f:b7:2b:93:06:05:d7:7e:de:8c:
c6:89:ba:27:de:bd:65:51:11:7f:e1:75:d9:9b:f5:
e0:8c:41:05:a1:f0:36:96:49:0a:ef:bf:59:92:6c:
e5:d5:51:db:73:26:87:5a:0d:42:e2:df:c7:c0:6c:
7f:8c:5a:c2:3e:21:c5:1b:33:ce:56:32:3b:4d:c3:
a9:a2:8c:f5:c7:97:77:4a:31:1d:4a:03:26:47:da:
53:4f:ae:86:b3:1c:b9:6c:61:be:b7:4f:7a:54:5e:
dd:7c:61:54:5f:74:61:6f:73:f3:f5:6c:a3:2e:02:
f8:4a:34:44:05:fd:1b:3a:b7:b8:07:19:2d:2e:6a:
36:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:15:B9:97:0E:A1:90:73:83:4D:B1:26:38:73:4E:95:4E:26:F7:27
X509v3 Authority Key Identifier:
keyid:69:50:7F:06:6F:2B:B0:38:9D:D8:84:36:07:4E:14:26:11:4F:2D:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVB_Bm8rsDid2IQ2B04UJhFPLZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/hxW5lw6hkHODTbEmOHNOlU4m9yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/aVB_Bm8rsDid2IQ2B04UJhFPLZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.89.0-2.56.90.255
95.142.32.0/24
109.234.32.0/24
178.208.64.0/22
178.208.72.0-178.208.86.255
178.208.88.0/22
178.208.93.0/24
185.105.108.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:23:6a:51:01:8b:be:e9:c6:02:3b:c0:a6:3a:64:a7:bb:c8:
a4:e5:fa:ab:47:7c:30:78:e0:cb:5d:5d:1e:3a:93:f3:03:6b:
09:cb:3d:83:ee:2f:ad:84:e9:73:6f:a3:fc:21:c5:18:74:f7:
95:13:11:8a:17:81:96:b5:9a:fd:e0:49:c2:c2:81:68:71:78:
80:e6:51:f5:ae:ac:a3:1c:10:98:49:46:48:b4:8d:02:5d:e3:
14:4d:e4:72:af:3a:d7:17:fa:3a:af:d3:c2:15:7e:11:49:fc:
6d:f0:40:aa:7c:86:e4:51:44:0c:48:7e:81:36:8a:86:f6:0a:
25:20:8a:50:f0:5b:33:8c:79:1c:86:48:1f:a1:22:33:b2:be:
57:27:42:6a:3d:79:fb:aa:a0:2d:38:41:fd:90:ea:b0:9e:11:
a8:ad:28:a1:56:4c:87:79:6e:86:27:07:01:a0:9b:7f:82:90:
9c:04:53:59:15:59:07:1f:b6:ac:ec:87:25:8b:47:86:2f:a0:
1d:b0:a7:d1:73:73:31:79:9c:ea:48:01:23:95:2a:41:94:3c:
66:82:25:41:10:ba:af:63:0b:d7:8d:18:61:68:cc:da:bc:28:
58:78:02:60:ae:e7:47:5e:b8:8f:f6:e5:28:5c:6d:b1:58:2e:
d1:70:39:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:20:05 2024 by rpki-client on console-ams.rpki-client.org