Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/163d77-4fea-4131-becb-0f22d89689a0/1/sUeNRg0rdAmpgLjW7AUDwgXkp_Q.roa
File: sUeNRg0rdAmpgLjW7AUDwgXkp_Q.roa (raw, json)
Hash identifier: NxrGUCPKC53DZlWt4Yt64r37cN/OAFxzGecWQamfMDo=
Subject key identifier: B1:47:8D:46:0D:2B:74:09:A9:80:B8:D6:EC:05:03:C2:05:E4:A7:F4
Certificate issuer: /CN=a42000c4f4ec4a03cd4d3657e01b70034ec23b97
Certificate serial: 01856F795E84264DB0DD8D60E4D3C3890775
Authority key identifier: A4:20:00:C4:F4:EC:4A:03:CD:4D:36:57:E0:1B:70:03:4E:C2:3B:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pCAAxPTsSgPNTTZX4BtwA07CO5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/163d77-4fea-4131-becb-0f22d89689a0/1/sUeNRg0rdAmpgLjW7AUDwgXkp_Q.roa
Signing time: Sun 01 Jan 2023 22:35:03 +0000
ROA not before: Sun 01 Jan 2023 22:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56460
IP address blocks: 178.218.240.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:5e:84:26:4d:b0:dd:8d:60:e4:d3:c3:89:07:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a42000c4f4ec4a03cd4d3657e01b70034ec23b97
Validity
Not Before: Jan 1 22:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1478d460d2b7409a980b8d6ec0503c205e4a7f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:12:22:4c:48:e3:a4:54:cc:03:d7:83:ec:31:
0e:f4:40:fb:f4:b1:34:4a:7d:ae:fb:6f:d3:c4:fc:
07:da:2b:9c:3f:95:35:0c:aa:6a:4e:34:83:f3:85:
b9:d3:3c:b3:47:c2:13:59:65:78:fa:3b:10:65:4b:
80:77:f3:68:1a:42:a4:b7:34:eb:86:f1:57:0b:08:
33:2e:7b:8b:a9:c7:9e:3f:a9:d2:0d:41:fc:54:c2:
00:52:dd:03:8f:34:b8:5d:3e:60:98:34:19:66:1a:
4e:21:16:6c:40:42:cb:77:44:84:49:07:ed:10:00:
bf:96:33:ed:b2:6c:40:bf:3f:10:44:87:4b:59:00:
d1:46:3d:cb:1f:43:ff:ec:68:62:e2:84:86:95:59:
5f:e0:a9:34:d1:83:a4:e5:5d:be:ff:d3:95:eb:61:
16:28:5a:da:bb:71:93:6f:3b:76:45:a0:2a:ea:c8:
89:a5:d7:a7:7d:24:30:9b:af:6b:3c:01:7c:4e:ae:
b5:e0:81:f7:d9:a4:c4:fb:43:66:77:5a:fb:47:2a:
74:36:5f:8f:f7:3f:5b:5a:b1:f7:5c:c8:2e:f7:4f:
82:40:ff:a5:81:b6:ef:65:c9:5d:50:b5:1a:de:5f:
5b:f1:3b:ed:73:27:09:43:b5:9a:2b:af:ba:30:11:
23:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:47:8D:46:0D:2B:74:09:A9:80:B8:D6:EC:05:03:C2:05:E4:A7:F4
X509v3 Authority Key Identifier:
keyid:A4:20:00:C4:F4:EC:4A:03:CD:4D:36:57:E0:1B:70:03:4E:C2:3B:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pCAAxPTsSgPNTTZX4BtwA07CO5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/163d77-4fea-4131-becb-0f22d89689a0/1/sUeNRg0rdAmpgLjW7AUDwgXkp_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/163d77-4fea-4131-becb-0f22d89689a0/1/pCAAxPTsSgPNTTZX4BtwA07CO5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.218.240.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:02:d4:c0:2b:a2:22:31:94:cf:cd:2e:d3:97:16:fd:69:56:
2d:bf:e2:36:c0:da:d0:4e:f1:59:d9:09:18:be:72:fd:cd:a5:
6c:6b:0a:85:f1:19:44:4b:aa:06:85:34:74:28:65:de:8c:09:
77:c3:03:18:e4:b1:fe:e0:ee:2c:ec:e5:ad:b0:dd:1d:3b:f6:
c7:c6:e3:40:de:c0:63:dd:ad:0f:8b:93:c7:9a:75:bb:1a:c7:
e9:34:ff:79:13:61:4e:22:3d:d4:31:13:84:ff:fd:a6:f9:fb:
da:75:7b:0f:f9:07:e1:35:bb:b4:b1:79:82:c6:c1:50:8f:ee:
4a:ff:2f:40:fd:16:23:40:95:30:9e:41:02:8b:9c:d3:d6:be:
04:4a:08:0c:ce:8d:cf:91:5b:c8:48:1a:06:f5:d6:04:22:27:
ae:d3:70:9d:75:9f:7f:90:86:16:3f:f8:d2:36:66:9c:0e:88:
58:5b:f1:cb:0b:7d:b7:03:6e:1e:85:ff:76:6a:7f:b0:d0:8c:
89:44:e5:06:48:56:82:11:5f:9b:bf:f4:aa:df:19:1c:bb:22:
a4:4a:c0:4a:23:fc:8c:e7:49:1d:ef:4a:fa:07:6d:9b:12:80:
b4:39:92:6f:03:bf:ec:c7:d4:d3:dd:51:e1:6e:e2:48:0d:66:
14:bc:54:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:05 2024 by rpki-client on console-fra.rpki-client.org