Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/777eef-4d02-4d39-b1e4-1079d55aee91/1/faxCTf7p2W6BsQJ-ltf5OoGZvMo.roa
File: faxCTf7p2W6BsQJ-ltf5OoGZvMo.roa (raw, json)
Hash identifier: Fl1pg4i6Z8NagiDTq0Pc87g65dArOs+VxdEIT113PnU=
Subject key identifier: 7D:AC:42:4D:FE:E9:D9:6E:81:B1:02:7E:96:D7:F9:3A:81:99:BC:CA
Certificate issuer: /CN=d58214cfa326611e9d494135a12ce8276f0f1784
Certificate serial: 018A277569B97FF2B3F57AE4FACD4BFC3B4C
Authority key identifier: D5:82:14:CF:A3:26:61:1E:9D:49:41:35:A1:2C:E8:27:6F:0F:17:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1YIUz6MmYR6dSUE1oSzoJ28PF4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/777eef-4d02-4d39-b1e4-1079d55aee91/1/faxCTf7p2W6BsQJ-ltf5OoGZvMo.roa
Signing time: Thu 24 Aug 2023 12:12:00 +0000
ROA not before: Thu 24 Aug 2023 12:12:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216423
IP address blocks: 178.219.157.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:27:75:69:b9:7f:f2:b3:f5:7a:e4:fa:cd:4b:fc:3b:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d58214cfa326611e9d494135a12ce8276f0f1784
Validity
Not Before: Aug 24 12:12:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7dac424dfee9d96e81b1027e96d7f93a8199bcca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0b:42:fe:f5:9f:6c:35:48:0e:eb:5e:37:99:
d1:44:24:f4:fe:ae:b1:19:e9:8d:71:88:02:ef:99:
b0:af:0d:48:7e:92:2e:f8:58:3d:7b:7b:9a:eb:09:
24:10:3f:0b:75:50:08:a1:eb:e9:4d:af:83:b3:3e:
48:b3:45:2d:5f:67:60:53:5d:a3:ac:d1:25:08:cd:
39:6b:63:96:f6:23:97:35:8d:b8:05:d7:57:7a:dd:
85:67:c3:18:e4:08:ab:3e:3c:15:69:4b:58:d6:d2:
cd:d5:e9:19:4c:4b:27:74:51:d2:68:e5:a7:7e:2f:
6b:f9:b9:1e:eb:0e:aa:50:a9:ee:34:b8:e5:7c:20:
a6:96:d9:27:e0:df:67:57:b5:11:ce:93:47:df:28:
20:6c:24:17:de:72:50:57:06:a7:0c:8a:12:7e:bc:
b3:dd:74:60:af:97:a4:d3:dd:c3:4f:65:4b:f3:6c:
52:bf:dd:07:bf:63:e2:bd:63:b1:59:8c:30:eb:ce:
40:e0:59:e2:d5:d2:63:2a:9e:2c:df:44:a5:95:d6:
26:3f:13:10:41:d2:6f:5f:43:52:de:d1:52:0a:cd:
b6:96:5e:57:c8:d7:17:42:df:d3:92:f9:a6:30:71:
a3:69:da:15:32:7c:ff:19:f6:dc:60:7e:65:bf:64:
ab:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:AC:42:4D:FE:E9:D9:6E:81:B1:02:7E:96:D7:F9:3A:81:99:BC:CA
X509v3 Authority Key Identifier:
keyid:D5:82:14:CF:A3:26:61:1E:9D:49:41:35:A1:2C:E8:27:6F:0F:17:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1YIUz6MmYR6dSUE1oSzoJ28PF4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/777eef-4d02-4d39-b1e4-1079d55aee91/1/faxCTf7p2W6BsQJ-ltf5OoGZvMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/777eef-4d02-4d39-b1e4-1079d55aee91/1/1YIUz6MmYR6dSUE1oSzoJ28PF4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.219.157.0/24
Signature Algorithm: sha256WithRSAEncryption
92:5e:52:36:3b:18:4e:43:b4:b4:3e:c0:b4:92:3d:57:05:19:
aa:a8:65:2c:52:96:07:d2:89:72:fd:54:a6:a7:79:1f:13:7c:
3a:bd:0a:a3:33:c9:a6:03:4b:5e:73:ce:19:ae:79:21:c0:a0:
26:a9:00:a0:e1:62:70:c1:c4:fd:11:a8:d6:29:1b:73:60:79:
0b:64:cc:48:3c:35:d6:62:46:67:a4:fe:4e:ce:33:53:0f:8d:
f8:f3:b3:0e:58:7f:eb:06:96:be:76:67:3e:af:8d:75:f4:9b:
de:e9:5c:19:ae:51:0b:87:68:f4:c6:5e:b0:9a:63:98:3c:42:
8b:2e:1f:aa:7e:c2:19:5c:8e:f8:7e:ca:4e:d3:2f:f7:d9:7c:
cf:8e:38:9f:6b:f6:28:8e:3d:3a:e3:58:f6:ad:32:df:17:32:
c1:03:bb:f9:d8:1b:9e:b1:e2:61:63:2d:01:e1:80:dc:f7:d7:
8b:77:db:0c:4e:05:e1:de:56:6f:f7:f3:ff:25:e1:da:e0:c0:
99:0a:3a:67:9f:c1:93:9a:59:9c:a4:49:29:c5:ea:bc:d4:df:
95:9f:47:8c:c5:73:64:43:dc:5e:8c:81:65:a4:62:1e:13:69:
1f:74:dc:77:ac:bc:cb:db:6f:a5:cc:88:9e:eb:63:66:c1:88:
7d:e7:29:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:00:53 2024 by rpki-client on console.sobornost.net