Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/cLrHK5Cl7_-RybnRPwR7QQn9-sU.roa
File: cLrHK5Cl7_-RybnRPwR7QQn9-sU.roa (raw, json)
Hash identifier: INzTQovCNkPDFPjkLXPtIy60BY+sXLfsQ9T7Cj5/5wI=
Subject key identifier: 70:BA:C7:2B:90:A5:EF:FF:91:C9:B9:D1:3F:04:7B:41:09:FD:FA:C5
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F14F7C5F8DB0BB9B9A9A3CF70E6300B
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/cLrHK5Cl7_-RybnRPwR7QQn9-sU.roa
Signing time: Sun 01 Jan 2023 20:45:23 +0000
ROA not before: Sun 01 Jan 2023 20:45:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34648
IP address blocks: 217.156.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:f7:c5:f8:db:0b:b9:b9:a9:a3:cf:70:e6:30:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70bac72b90a5efff91c9b9d13f047b4109fdfac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:3e:98:cb:66:3a:28:61:c2:43:fc:28:9d:0b:
85:71:6a:6e:ff:f6:22:65:5c:36:36:e4:82:8f:36:
1c:b1:ae:4c:9c:a1:c2:a6:9c:af:0c:3c:e2:b9:18:
b2:36:82:41:57:a4:0b:bb:7a:91:32:42:9e:67:fe:
ba:7b:1f:48:f3:32:7c:f5:11:47:ba:f0:f0:8f:9e:
fb:72:64:da:94:be:eb:45:65:e3:80:36:47:f9:2b:
49:67:38:0c:d4:c9:e1:e0:7e:55:17:a5:36:2e:e9:
5b:f9:31:72:22:88:47:f8:36:c8:df:95:f9:6a:a9:
a3:82:6f:7e:ba:13:8c:47:64:97:b6:c3:9e:28:97:
02:fd:4b:8c:04:45:95:f7:51:aa:4b:43:a5:c0:2c:
68:a9:8c:9c:da:9c:5c:e7:d3:7c:8e:e0:7e:c8:1a:
1c:1d:f8:d3:33:51:c4:69:ff:b2:f0:2e:7e:87:4b:
dd:b0:46:91:3d:42:b6:49:2c:c0:d1:07:c8:08:60:
72:25:ae:e6:96:67:7b:53:d0:a9:16:39:78:3d:af:
9f:d4:c8:4e:14:ae:e1:55:80:bb:c9:fd:24:64:a7:
b8:d0:c4:fb:6a:7f:56:03:84:4a:6a:db:ed:74:3c:
03:a3:2e:83:97:da:ed:61:64:f5:4b:6f:12:3f:31:
a5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:BA:C7:2B:90:A5:EF:FF:91:C9:B9:D1:3F:04:7B:41:09:FD:FA:C5
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/cLrHK5Cl7_-RybnRPwR7QQn9-sU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.156.36.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:fb:db:22:de:cb:22:f1:75:8c:80:f4:6a:2d:63:59:b0:8b:
37:22:47:ef:10:cf:b3:9f:60:9c:9d:57:18:72:c9:2c:60:11:
36:99:f4:d8:c3:d7:d9:75:f2:b3:31:e0:e9:2a:13:87:61:39:
06:fd:16:91:07:05:dd:9a:eb:6f:8e:a5:b8:66:e8:36:c1:56:
aa:bd:b5:a4:49:50:85:0d:3b:84:fb:02:11:34:2a:58:9f:4f:
ce:ed:a7:b0:79:d7:1e:b3:05:de:33:8f:84:32:85:77:e6:b3:
fa:91:0f:c2:02:f3:23:c2:73:c2:6f:2f:d5:b1:cb:69:77:54:
24:a8:d2:dd:59:4e:08:94:d0:59:57:2a:e6:25:03:3d:52:c2:
80:df:7f:af:3b:b4:5e:13:b8:cf:df:c2:02:03:ce:84:b6:a8:
6c:a8:33:e5:ab:23:77:87:6f:04:af:58:4c:31:53:40:1e:ad:
18:08:47:f9:a3:8b:ca:c7:d9:27:fd:e7:7b:e6:a5:22:a8:b7:
a7:ab:12:c0:c2:a9:68:f2:1d:c2:ba:e2:7d:75:bc:98:f5:bf:
8a:b1:49:e5:f5:fe:92:7d:fb:0a:50:cd:53:72:d0:48:41:6e:
ed:82:06:53:76:4e:90:1f:45:fc:3a:ec:8d:00:4a:3a:7f:f0:
bb:d4:f1:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org