Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/5a7731-ef54-4501-86f4-98e9e2510bb6/1/h7TZ2oQ93JGXAUI3eUbkn_oAO8w.roa
File: h7TZ2oQ93JGXAUI3eUbkn_oAO8w.roa (raw, json)
Hash identifier: EgcDSmMeVLbNe+MOqlhKTQiQYRAymt8Qj/2K3XAiPw8=
Subject key identifier: 87:B4:D9:DA:84:3D:DC:91:97:01:42:37:79:46:E4:9F:FA:00:3B:CC
Certificate issuer: /CN=505e2f2d5e7093ff8d4003a02b7d3e131ce70a12
Certificate serial: 01856CE5F60AE1EF36A1957D74E2A3B99AE8
Authority key identifier: 50:5E:2F:2D:5E:70:93:FF:8D:40:03:A0:2B:7D:3E:13:1C:E7:0A:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UF4vLV5wk_-NQAOgK30-ExznChI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/5a7731-ef54-4501-86f4-98e9e2510bb6/1/h7TZ2oQ93JGXAUI3eUbkn_oAO8w.roa
Signing time: Sun 01 Jan 2023 10:34:47 +0000
ROA not before: Sun 01 Jan 2023 10:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 178.255.242.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e5:f6:0a:e1:ef:36:a1:95:7d:74:e2:a3:b9:9a:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505e2f2d5e7093ff8d4003a02b7d3e131ce70a12
Validity
Not Before: Jan 1 10:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87b4d9da843ddc91970142377946e49ffa003bcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:cd:87:10:a2:f6:eb:da:f4:c4:6d:9d:4a:99:
ea:f6:aa:00:a1:a5:34:58:13:56:20:c0:d3:1d:ed:
85:a8:5e:65:86:78:3e:81:40:d4:22:1a:7a:ad:7c:
62:3f:46:f6:46:b5:77:be:a0:24:c4:96:9a:15:3e:
07:d8:2a:e5:04:04:4f:a7:ed:f1:61:d7:64:1a:49:
06:ee:ca:8b:2c:58:3c:78:bd:41:75:85:a0:53:7c:
8b:31:10:42:99:73:9b:9a:be:2a:ae:0f:7e:82:2a:
f6:1e:e0:a7:a0:40:61:ba:41:8d:34:94:27:df:bd:
50:3b:69:48:8c:c5:6e:f8:e1:df:39:ca:14:df:ad:
16:0b:d1:6c:74:45:38:31:0b:51:8c:b6:dd:f8:bb:
b1:f9:9d:5e:27:ca:54:41:81:42:07:f3:01:6b:84:
48:8d:e1:42:8c:2a:27:bd:ae:d3:bf:4f:02:8f:17:
79:c7:34:fb:1a:2a:8c:8c:06:8e:a8:22:75:79:a3:
fe:86:bf:14:22:b6:47:c5:d4:9b:66:c9:04:4d:6a:
68:6f:6b:0b:d8:12:28:00:15:a7:bb:11:ed:e9:a2:
6f:e9:ac:7c:55:e2:54:13:9d:37:19:f0:ad:f9:85:
a3:85:91:4e:52:75:4a:e4:68:df:7c:f2:e7:28:d1:
25:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B4:D9:DA:84:3D:DC:91:97:01:42:37:79:46:E4:9F:FA:00:3B:CC
X509v3 Authority Key Identifier:
keyid:50:5E:2F:2D:5E:70:93:FF:8D:40:03:A0:2B:7D:3E:13:1C:E7:0A:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UF4vLV5wk_-NQAOgK30-ExznChI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/5a7731-ef54-4501-86f4-98e9e2510bb6/1/h7TZ2oQ93JGXAUI3eUbkn_oAO8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/5a7731-ef54-4501-86f4-98e9e2510bb6/1/UF4vLV5wk_-NQAOgK30-ExznChI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.242.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:ba:d3:93:0c:fe:9a:f2:6a:b7:1d:0f:90:bf:25:d9:0c:14:
2b:6f:3a:61:bd:91:a3:55:04:82:39:7e:58:bb:8d:92:8b:02:
b9:a5:bb:34:a2:ba:d7:64:70:52:21:e8:5b:02:0e:d5:7c:ac:
5f:b7:f0:1c:f7:88:9e:57:e3:16:f6:da:0d:69:26:bd:72:60:
85:52:b2:03:1a:84:48:78:7c:f4:9a:77:63:7c:67:a0:cd:89:
10:be:33:af:3b:69:b0:2d:55:f2:b1:a0:2f:8f:d9:ce:52:c7:
19:8e:9a:4f:6a:05:b6:a6:5d:a3:92:19:c2:51:11:b4:f4:9a:
3a:ea:ef:7f:51:f5:29:1d:2e:02:f1:3f:4f:7f:50:b5:13:b1:
48:a5:4e:57:d2:ec:ae:ca:4a:dd:f9:7c:84:e6:c6:82:3e:e1:
28:9b:2e:08:49:0a:fd:07:41:88:84:d3:1a:eb:2a:64:6e:74:
f5:87:87:fd:0c:42:5e:5a:0f:e9:0a:c5:28:0c:f9:09:49:97:
a2:48:3e:7e:a5:10:f8:f1:99:71:97:d6:f2:bf:c2:93:7f:6c:
0c:da:9a:b9:f1:0d:55:9f:80:e6:51:8c:23:2f:a3:f8:a3:59:
af:b7:bf:33:16:e1:4c:a4:27:d7:c7:a5:60:cc:24:47:8e:29:
7c:09:6e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:57:15 2024 by rpki-client on console-fra.rpki-client.org