Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/cnY9m3tJBfmMvAttX3-WPG4e6DQ.roa
File: cnY9m3tJBfmMvAttX3-WPG4e6DQ.roa (raw, json)
Hash identifier: 4BnKxBtxZ0vr+MNLEwepLbOtA8dhwe9WuuwTsuJTYEA=
Subject key identifier: 72:76:3D:9B:7B:49:05:F9:8C:BC:0B:6D:5F:7F:96:3C:6E:1E:E8:34
Certificate issuer: /CN=283deba3b1305c9a48d374ba47369bf1f827ee08
Certificate serial: 0186B6195BB9AC658834042C6B12EB45262C
Authority key identifier: 28:3D:EB:A3:B1:30:5C:9A:48:D3:74:BA:47:36:9B:F1:F8:27:EE:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/cnY9m3tJBfmMvAttX3-WPG4e6DQ.roa
Signing time: Mon 06 Mar 2023 08:46:00 +0000
ROA not before: Mon 06 Mar 2023 08:46:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 87.236.200.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b6:19:5b:b9:ac:65:88:34:04:2c:6b:12:eb:45:26:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=283deba3b1305c9a48d374ba47369bf1f827ee08
Validity
Not Before: Mar 6 08:46:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72763d9b7b4905f98cbc0b6d5f7f963c6e1ee834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:47:a9:b1:13:a6:1a:5b:ee:5b:63:57:ab:36:
6c:92:f5:ff:64:74:2b:0e:cd:6b:93:d2:c2:1d:b0:
0b:cd:f0:4e:5e:43:bf:fc:64:ba:f8:e7:76:6d:fa:
ae:49:f3:ea:9c:b8:82:de:0d:a5:f7:52:30:f1:31:
72:4f:90:0a:b9:63:62:84:30:e5:84:7b:75:d9:f7:
a5:d1:9d:20:4d:bd:53:17:06:b3:0f:e4:3f:ea:d9:
16:eb:7f:b9:a9:70:53:c1:fe:09:b3:00:ca:05:16:
aa:2f:af:21:4f:ee:29:b4:51:aa:8c:98:9d:7c:72:
89:f4:09:1f:00:43:4f:72:35:81:29:99:90:73:34:
f4:62:42:8d:c8:ec:fd:80:24:52:e1:7c:dc:c5:6f:
97:70:74:7d:87:63:e6:58:e6:2d:66:03:b4:55:ea:
1f:b7:29:c6:8a:2b:00:95:dc:81:d0:40:4e:0e:64:
72:8c:3a:9e:f4:1f:0c:59:6f:f5:ce:27:a1:e3:3c:
60:59:2f:9a:af:22:cb:f6:dc:1f:11:44:c7:09:ec:
ab:77:59:c8:ef:4c:4e:b8:77:0a:8a:ea:35:43:59:
0c:d0:33:06:27:b5:27:11:26:9c:8b:31:44:d0:68:
db:43:42:fa:cf:c7:44:2a:3a:fe:46:30:f2:5b:90:
68:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:76:3D:9B:7B:49:05:F9:8C:BC:0B:6D:5F:7F:96:3C:6E:1E:E8:34
X509v3 Authority Key Identifier:
keyid:28:3D:EB:A3:B1:30:5C:9A:48:D3:74:BA:47:36:9B:F1:F8:27:EE:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/cnY9m3tJBfmMvAttX3-WPG4e6DQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.236.200.0/21
Signature Algorithm: sha256WithRSAEncryption
36:49:31:27:2f:64:fe:11:c4:d6:12:b0:2a:e6:c1:1e:8c:ea:
b6:11:2b:9c:4b:eb:dc:23:60:e2:1a:38:53:fe:bc:59:77:66:
70:2b:4a:7c:28:27:51:43:19:d5:97:33:00:15:3d:2f:4d:1d:
86:56:0c:0b:a5:8f:63:42:da:43:6a:63:ae:a1:71:8b:72:37:
7f:53:23:af:a1:e0:e0:2c:21:44:d4:e8:e7:c5:4b:c5:fc:42:
d7:69:69:fe:d8:73:09:0d:86:4a:38:74:b5:d1:20:55:8a:51:
88:b4:5e:77:b7:4b:6f:ab:f5:9d:2f:7c:36:71:42:51:f7:58:
d8:1e:23:a4:af:65:cf:ae:be:e0:4b:5b:99:02:28:df:cf:2e:
0d:01:9f:19:79:7a:e1:68:3e:0c:42:c8:c9:d3:00:cc:2e:1d:
39:36:7e:84:b1:f6:eb:a4:16:9f:f6:8b:3c:48:97:24:c1:47:
07:a6:c4:ce:9a:17:f3:d1:ab:0e:f9:23:c1:9b:c5:9d:d3:97:
38:d7:30:2a:ab:c7:65:40:8e:77:da:a6:b7:09:cc:ce:da:e1:
d4:ab:c3:13:f7:f6:bf:d8:1c:de:e9:c6:7f:4c:70:6c:06:59:
27:da:ca:54:a5:6b:e7:4c:3e:bd:5c:58:ef:e8:bc:02:2e:61:
12:83:af:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:20 2024 by rpki-client on console-fra.rpki-client.org