Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/NJ5cksbOKxtKuZsINtobCCDbUoE.roa
File: NJ5cksbOKxtKuZsINtobCCDbUoE.roa (raw, json)
Hash identifier: alET4f+pN0hMOuxYuOQXyEyLIATcNVdo3eueB+CFQtc=
Subject key identifier: 34:9E:5C:92:C6:CE:2B:1B:4A:B9:9B:08:36:DA:1B:08:20:DB:52:81
Certificate issuer: /CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Certificate serial: 01857246FC25801DEF79D1051D2DDC42CCC9
Authority key identifier: B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/NJ5cksbOKxtKuZsINtobCCDbUoE.roa
Signing time: Mon 02 Jan 2023 11:38:52 +0000
ROA not before: Mon 02 Jan 2023 11:38:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205297
IP address blocks: 178.236.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 May 2023 08:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:fc:25:80:1d:ef:79:d1:05:1d:2d:dc:42:cc:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Validity
Not Before: Jan 2 11:38:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=349e5c92c6ce2b1b4ab99b0836da1b0820db5281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:73:8b:54:e7:4d:6a:e7:64:c2:ad:a6:0c:5a:
30:ae:a7:7e:6c:55:e6:53:76:64:fe:2c:e9:7d:07:
17:24:e5:e4:17:36:48:08:e5:c4:5f:9f:b7:d1:c3:
58:e2:d0:43:dc:f6:9b:ce:d6:ee:66:3f:43:39:58:
5f:35:eb:da:9f:ce:27:24:76:9f:a2:1d:e8:ac:cd:
34:e7:de:95:cd:ea:b3:31:89:18:6d:66:53:2f:2b:
e0:37:12:92:3b:42:ab:c1:9c:3f:e9:2a:58:0c:cc:
b4:de:78:fe:96:d2:f3:40:f1:15:5b:94:a8:dc:0a:
e2:c4:4e:70:23:be:ac:c8:e1:10:3d:f1:b0:51:d5:
97:5c:7c:ea:ec:44:31:17:73:e5:c7:9f:ef:11:62:
bc:2b:81:1d:41:70:fe:06:96:f0:a4:f3:52:0d:22:
66:0c:43:54:8f:90:c3:0e:bc:8e:7f:20:33:fb:11:
9b:2d:85:df:f9:c9:25:a4:68:77:0e:3b:da:86:92:
9a:80:c5:26:52:6d:d4:7a:a4:11:f6:56:0b:19:99:
66:b7:20:d2:14:f8:04:0a:04:a0:b6:e6:86:15:4b:
79:1e:fa:87:de:9c:a3:d0:a7:48:c6:ab:55:04:3a:
5f:6e:a2:45:c9:bc:71:1f:29:79:04:a6:3f:2c:2e:
aa:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:9E:5C:92:C6:CE:2B:1B:4A:B9:9B:08:36:DA:1B:08:20:DB:52:81
X509v3 Authority Key Identifier:
keyid:B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/NJ5cksbOKxtKuZsINtobCCDbUoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/tyWIwA7vcVgJ61_dbWcXzCjA36w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.138.0/24
Signature Algorithm: sha256WithRSAEncryption
16:45:b9:ba:59:03:78:65:ce:aa:36:c5:b8:ba:b7:b0:e3:19:
49:c6:b9:ae:ce:4c:55:d1:4b:a6:5a:ce:3c:29:12:ce:9b:14:
90:6c:13:a0:ee:d8:15:9c:1b:1b:df:ff:43:fa:da:95:3a:da:
44:4d:69:7c:52:18:66:eb:b6:59:12:a7:74:5a:90:08:f2:a0:
93:d6:9b:c5:39:01:a9:15:0b:3c:5f:4c:5e:8d:a3:43:92:8a:
01:ab:83:bc:82:18:39:ce:be:e7:ca:38:8c:68:37:85:eb:b7:
30:e9:a7:fd:f4:2f:97:a7:2f:ad:67:a9:8a:7a:9e:71:4a:b6:
19:9b:b8:78:a4:5f:81:04:73:30:a5:f9:9f:ba:10:ed:ed:fc:
54:b2:f1:f6:fa:0b:53:b2:5b:0c:6a:15:6b:35:55:f4:f0:2f:
44:90:13:3b:af:0e:27:d1:d7:36:0d:14:de:e9:68:72:07:da:
9f:28:fe:b5:88:c9:28:2d:13:2e:a8:17:08:38:db:b1:42:62:
eb:a0:30:04:eb:79:f8:87:61:f4:0d:34:a8:63:a3:91:a2:c1:
57:52:5c:97:1d:16:55:9f:f0:9d:f7:f0:84:60:95:30:02:f7:
8f:ca:58:0d:64:86:86:fe:8e:86:9e:2d:8d:33:9e:81:75:17:
b2:e9:d4:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:14 2024 by rpki-client on console-fra.rpki-client.org