Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/76UFP5RFctWqe8AbaL4dPXzW58w.roa
File: 76UFP5RFctWqe8AbaL4dPXzW58w.roa (raw, json)
Hash identifier: ff7xvV9VQrDEGy9ERKp6TDvHPIXMLRNin7RoPt+s0YM=
Subject key identifier: EF:A5:05:3F:94:45:72:D5:AA:7B:C0:1B:68:BE:1D:3D:7C:D6:E7:CC
Certificate issuer: /CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Certificate serial: 01856CB8218C96F1AEB83DBD5BF1B291F7BB
Authority key identifier: B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/76UFP5RFctWqe8AbaL4dPXzW58w.roa
Signing time: Sun 01 Jan 2023 09:44:44 +0000
ROA not before: Sun 01 Jan 2023 09:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207034
IP address blocks: 185.168.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:21:8c:96:f1:ae:b8:3d:bd:5b:f1:b2:91:f7:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Validity
Not Before: Jan 1 09:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=efa5053f944572d5aa7bc01b68be1d3d7cd6e7cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9b:a2:2a:e5:e7:03:df:91:64:92:0c:be:93:
fd:32:2c:20:a8:65:ac:fa:8c:68:ee:1b:af:00:7b:
08:09:5e:f0:7d:39:2c:7b:15:91:82:ed:fb:2f:09:
cb:b6:0c:a0:d8:90:a5:f8:23:95:8c:29:1c:92:24:
25:32:24:5e:5e:83:09:03:81:7e:b2:39:2d:0d:2b:
ab:32:49:c6:3d:51:21:78:41:b0:64:39:f7:2f:fe:
c8:fb:bd:32:50:43:e3:39:0e:24:9b:14:9c:fa:7f:
95:d3:2d:7f:48:70:ca:9b:d1:a7:d7:f8:5d:f8:d7:
b7:d6:1c:31:4a:bd:d1:09:6a:14:7b:8b:86:06:57:
72:e3:58:c2:b7:87:8b:71:d3:e9:84:b1:5c:7c:80:
2e:3c:33:1f:a9:1e:ca:a3:eb:ef:9a:0d:4b:60:fd:
3b:fd:a2:79:8a:df:84:2a:0e:7e:a3:47:2a:f7:f0:
27:af:88:b9:6b:f4:e4:18:98:21:c4:0d:b8:5e:ae:
36:f1:0e:ce:72:85:03:cc:92:ec:6e:35:e3:93:a6:
ba:b3:e7:ab:3b:f7:9f:ae:e6:69:e2:41:b2:df:bd:
c1:3a:54:8c:0c:07:60:6d:75:d1:fc:77:a8:37:b4:
c6:ca:b9:d1:bf:bc:0a:e4:d4:da:b1:e3:a1:54:f8:
43:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A5:05:3F:94:45:72:D5:AA:7B:C0:1B:68:BE:1D:3D:7C:D6:E7:CC
X509v3 Authority Key Identifier:
keyid:B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/76UFP5RFctWqe8AbaL4dPXzW58w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/s8UbDAY8_BaUP8mkfiyAWZD26q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.36.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:be:64:24:a1:e5:70:da:2d:57:1f:0b:1d:9d:b3:20:99:76:
bd:9b:9d:c7:aa:70:ce:9f:6c:fb:7d:c6:03:df:ce:ea:24:fa:
bd:97:42:74:68:97:d8:17:85:67:06:0f:77:fa:75:22:13:64:
24:9d:ae:86:95:6c:da:4f:3a:38:24:d2:d0:52:96:cc:1d:7b:
df:89:2b:25:63:25:40:11:2f:0a:09:b8:ae:4d:20:4e:d2:d7:
20:9f:ef:c5:00:53:82:d8:47:c2:5c:73:fb:cb:6e:4e:a6:d7:
d9:76:2b:2c:2b:2c:0e:0b:b1:79:50:5f:3b:d1:29:05:30:a1:
b1:22:a6:59:a2:06:9f:eb:75:76:9a:e2:bd:7f:7d:a9:67:4f:
e8:aa:95:79:5c:d2:09:1c:97:a2:98:a5:94:89:37:fa:47:43:
6d:51:e9:17:02:ba:ab:7a:2e:2c:be:92:db:3d:65:f8:67:a3:
c3:75:48:0f:0a:a0:ad:e7:b2:2b:fc:44:38:20:28:82:af:36:
15:0c:a2:08:d3:67:38:1f:08:ea:0b:c0:45:9b:20:5d:d0:7a:
f0:20:60:7c:70:d0:e8:38:d5:17:2e:f8:39:9d:84:a9:57:af:
60:fa:49:f0:e0:06:b3:e6:b6:5b:1a:12:5a:a0:e8:42:a1:5a:
f4:3e:1a:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:41 2024 by rpki-client on console-fra.rpki-client.org