Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/nDoSBGd635JZlkHeykybVSBGg9E.roa
File: nDoSBGd635JZlkHeykybVSBGg9E.roa (raw, json)
Hash identifier: UZCfYfsp269FKivugkum2pACN90VyrPpJKDBQ+zWA14=
Subject key identifier: 9C:3A:12:04:67:7A:DF:92:59:96:41:DE:CA:4C:9B:55:20:46:83:D1
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 0188BE39DDD788D93F73CADE38588DE88071
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/nDoSBGd635JZlkHeykybVSBGg9E.roa
Signing time: Thu 15 Jun 2023 08:44:03 +0000
ROA not before: Thu 15 Jun 2023 08:44:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197071
IP address blocks: 185.236.8.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:be:39:dd:d7:88:d9:3f:73:ca:de:38:58:8d:e8:80:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jun 15 08:44:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c3a1204677adf92599641deca4c9b55204683d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:66:6c:e4:99:d5:cc:47:c1:3c:52:29:9b:10:
a6:29:85:3f:c9:2c:63:be:85:67:34:20:df:50:b5:
ab:fc:d8:08:21:87:a4:5b:36:89:53:0c:89:d1:22:
e5:df:ca:6f:56:86:f0:d6:06:f6:ff:7e:56:8e:38:
3e:0b:5e:5b:92:f7:ba:5d:e7:ac:d1:c7:d6:91:b8:
71:af:8a:85:6e:35:f3:1e:b2:ae:e8:25:55:e6:3e:
00:25:ec:33:b5:0c:bc:57:e6:d9:9d:a7:40:32:e5:
4a:a6:ab:fb:f6:8a:26:61:96:81:3f:f5:51:69:c5:
5f:07:3f:f5:8b:7d:b5:7b:a2:8b:e2:2c:23:0a:75:
6f:7c:4a:0a:f8:43:e6:09:aa:a1:b5:0a:8d:15:6f:
e1:58:64:64:09:99:c8:99:9b:db:e1:6f:ef:32:ba:
55:62:c1:89:7e:31:c0:cc:68:ce:a5:6e:cf:2c:c5:
9c:a9:b9:73:7a:a9:ff:ab:a8:d2:a9:a1:cb:0c:8f:
d8:27:04:4e:95:e1:53:42:a6:e1:87:71:83:22:a9:
9a:2e:34:71:bb:e3:92:ed:3f:96:9e:17:2b:ce:f5:
14:39:af:52:9d:2c:24:ce:99:0d:e5:1a:71:11:b3:
2e:95:d9:db:57:78:39:d7:be:f6:45:44:62:b6:df:
67:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:3A:12:04:67:7A:DF:92:59:96:41:DE:CA:4C:9B:55:20:46:83:D1
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/nDoSBGd635JZlkHeykybVSBGg9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.8.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:dd:10:90:66:ff:2d:9d:79:ba:95:0d:8b:57:cc:4c:05:3a:
47:6b:3e:ce:03:b0:f2:92:a0:39:a6:4e:b3:97:9a:e5:8e:a0:
5f:d4:19:7b:8d:05:98:cb:ab:58:4b:03:9f:7b:44:78:df:fe:
76:7d:b5:a7:a5:b3:fb:97:0d:7f:b3:38:0b:9c:e1:dd:81:8f:
8f:b8:b2:35:2d:3c:91:1a:a6:59:56:be:5a:0e:62:f9:48:dc:
7a:76:d2:11:58:1e:4a:a1:f9:54:08:bf:49:40:bb:24:a5:d9:
66:bf:da:48:43:3a:8a:14:19:76:a2:ad:da:48:64:92:ea:ab:
f6:11:33:db:8f:e5:9a:4f:89:f6:0f:92:4c:67:dc:0d:c0:16:
09:a2:69:d7:af:09:0f:fe:b1:f8:44:1e:6d:31:98:db:f7:80:
c9:39:2e:41:5e:0b:64:a4:ea:3a:a9:aa:93:4e:ab:00:34:91:
bd:65:b8:91:27:25:81:21:e5:53:ea:9b:d1:d1:29:06:b0:8f:
8a:34:e2:82:af:aa:39:0c:3a:cc:80:e1:b8:92:d8:52:52:35:
0e:6d:1e:40:4a:74:29:f6:e6:58:50:70:f0:86:b4:6e:c0:7d:
40:f2:cf:c3:ca:3b:f8:ae:f5:0d:98:ee:b4:37:d3:a1:ed:3d:
2f:2c:b9:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:34 2023 by rpki-client on console-fra.rpki-client.org