Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/F8rqGXsPXA1DMZMDcXhfLVqPSic.roa
File: F8rqGXsPXA1DMZMDcXhfLVqPSic.roa (raw, json)
Hash identifier: LstpNwGi4QtxNdfyNGWk66rgdtdWPxfKtmSI1IA/X1M=
Subject key identifier: 17:CA:EA:19:7B:0F:5C:0D:43:31:93:03:71:78:5F:2D:5A:8F:4A:27
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018FAA28F8FEB216EFFA5FE394ED10F1478C
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/F8rqGXsPXA1DMZMDcXhfLVqPSic.roa
Signing time: Fri 24 May 2024 10:32:42 +0000
ROA not before: Fri 24 May 2024 10:32:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214943
IP address blocks: 178.215.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Oct 2024 22:07:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:aa:28:f8:fe:b2:16:ef:fa:5f:e3:94:ed:10:f1:47:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 24 10:32:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=17caea197b0f5c0d4331930371785f2d5a8f4a27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:bd:18:aa:00:aa:16:1f:bb:92:81:a6:48:48:
c4:c8:4d:44:ef:2d:fd:45:89:c1:64:1c:49:e6:da:
85:16:5e:75:8b:0e:a9:34:28:cb:ca:a5:62:13:f1:
ca:77:1c:b4:51:30:2a:c1:ad:a1:6a:32:6e:0b:25:
41:85:36:f7:fd:0c:ec:ab:58:5c:8c:75:c2:c8:d0:
20:2a:68:4e:8e:f0:e0:5b:0b:81:16:30:97:60:38:
fd:aa:7f:27:4a:5f:d9:ab:32:1e:39:30:de:a1:55:
5c:f9:c5:0b:39:24:e8:0c:42:da:81:b4:71:1e:27:
a3:34:70:c4:77:e1:b5:d1:db:ce:22:bd:e2:31:f0:
63:06:27:38:5d:2b:c0:3b:b7:28:43:cc:82:3d:f2:
dd:83:91:d1:3f:e1:b8:98:1a:be:bc:7e:0d:95:f7:
cf:b9:de:b3:12:50:35:af:9e:21:f0:6c:47:17:0b:
41:1d:8b:34:32:90:ec:ea:2f:cb:82:96:33:af:0c:
ad:9f:42:9d:2a:45:7a:b5:bb:92:27:19:7c:6c:2b:
87:57:84:64:91:c6:90:76:00:0f:26:9f:81:7c:1b:
2c:b0:e9:5c:34:22:79:57:2e:f1:43:35:2d:6c:52:
43:ce:e3:8e:6c:ea:bc:d6:bf:0a:79:f1:68:b0:8d:
12:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:CA:EA:19:7B:0F:5C:0D:43:31:93:03:71:78:5F:2D:5A:8F:4A:27
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/F8rqGXsPXA1DMZMDcXhfLVqPSic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.215.236.0/24
Signature Algorithm: sha256WithRSAEncryption
59:12:71:72:9d:fb:55:b1:dc:6c:f5:d9:cc:ad:ad:f1:76:3d:
55:43:6f:3a:59:9e:0f:c0:e8:4e:06:8b:5d:e4:f4:d3:92:f2:
59:dd:f2:51:05:6c:d0:44:0c:ed:3d:75:3e:2d:9f:b8:c2:8a:
56:f4:c3:09:74:82:99:5e:ba:73:39:93:3c:71:fb:1b:8f:80:
21:7a:0c:b6:94:9f:3f:d6:f0:f4:ae:62:e9:9b:7c:51:bc:3e:
15:c8:4b:f3:02:0b:cc:6e:44:6d:02:bf:36:ba:28:c1:42:06:
81:c1:c3:6f:02:43:16:ee:55:e4:fe:81:85:5d:8b:8d:0d:dc:
d9:bd:ea:95:ee:9f:69:45:d8:91:6a:0a:44:8f:1a:cf:3b:d3:
c2:73:b3:22:98:f8:dc:46:ac:15:f8:42:b6:d2:39:20:a8:a4:
22:f7:5e:d3:d8:d1:ec:5d:37:b1:c8:2c:91:25:5b:d8:80:47:
cf:fe:a3:16:ac:79:00:d9:a5:41:78:bf:6e:cc:69:04:ac:03:
81:75:1b:4f:dd:f8:b0:3c:01:5f:65:56:33:1f:ac:cb:a3:86:
64:b9:01:f5:f3:b4:c2:f8:4a:d1:25:ac:33:2d:c2:15:09:cd:
8f:37:f9:72:8b:11:54:bb:a3:78:c5:1b:66:75:7b:60:d5:1e:
28:87:b7:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 5 00:19:12 2024 by rpki-client on console-fra.rpki-client.org