Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/PKLPumFvW9DpMHil_BnLGdXKfuU.roa
File: PKLPumFvW9DpMHil_BnLGdXKfuU.roa (raw, json)
Hash identifier: ucDpUgvAwMt9uid0ODw3zEZY4gW3eMRa7UsCOvNcTnM=
Subject key identifier: 3C:A2:CF:BA:61:6F:5B:D0:E9:30:78:A5:FC:19:CB:19:D5:CA:7E:E5
Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Certificate serial: 0187762B4B65B6E3D6E7CD6F0EE673F489BF
Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/PKLPumFvW9DpMHil_BnLGdXKfuU.roa
Signing time: Wed 12 Apr 2023 15:52:41 +0000
ROA not before: Wed 12 Apr 2023 15:52:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197328
IP address blocks: 178.171.36.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:76:2b:4b:65:b6:e3:d6:e7:cd:6f:0e:e6:73:f4:89:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Validity
Not Before: Apr 12 15:52:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ca2cfba616f5bd0e93078a5fc19cb19d5ca7ee5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3b:6d:67:a9:7d:cc:06:75:1a:37:a2:ae:de:
94:2f:0a:79:d4:bd:ff:e6:8b:ca:a6:a6:d3:68:0f:
98:0b:cd:ca:72:b3:26:60:d5:ea:1b:76:b1:e4:3d:
e0:37:aa:29:9b:ce:40:a1:f9:9b:bf:31:3a:c1:fd:
7a:8c:eb:4e:10:59:cd:db:01:b7:3b:e5:52:2d:38:
de:6d:69:6c:9f:01:01:6f:9b:f4:f4:35:1f:52:b3:
83:13:ed:ef:ca:b4:4e:53:5a:8b:4f:4d:6e:86:fb:
a0:53:aa:cb:ef:3a:46:0b:29:bd:b6:d2:70:8a:b1:
49:d5:c9:3e:01:a4:38:5b:84:d9:0f:e9:7f:f5:4b:
07:f3:5e:e8:61:0d:20:e9:b9:d8:3d:b4:4c:bb:50:
bd:a6:57:89:da:34:28:5e:0a:95:84:de:18:bf:de:
62:90:d5:40:03:88:c2:17:18:76:56:09:62:eb:cd:
41:73:27:0c:ea:dc:ee:fb:53:42:c9:b9:44:d0:10:
7c:3d:c8:a6:d5:ca:24:5f:0d:b3:8a:ad:d8:55:24:
54:8c:eb:e3:29:a8:19:9a:39:ca:e7:0d:4b:72:39:
c2:39:7e:55:59:cb:a5:e0:80:d3:c1:3f:3e:41:01:
50:ff:61:a9:86:cf:63:9a:27:b4:b6:c9:8d:d6:c6:
66:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:A2:CF:BA:61:6F:5B:D0:E9:30:78:A5:FC:19:CB:19:D5:CA:7E:E5
X509v3 Authority Key Identifier:
keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/PKLPumFvW9DpMHil_BnLGdXKfuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.171.36.0/23
Signature Algorithm: sha256WithRSAEncryption
c1:13:ed:dd:6c:80:ae:a2:a5:2e:59:75:06:cd:0a:b5:cc:71:
dd:42:eb:aa:4d:0b:00:28:9c:a7:bd:b7:95:76:a1:3c:69:ac:
b9:c8:ac:22:ea:d6:bd:d1:d4:7b:f0:1d:3a:96:7e:f4:5c:55:
f2:17:4f:5b:3c:a6:6a:b3:e0:c4:f5:06:24:67:8a:a8:49:86:
10:83:2e:d4:df:73:c0:5c:e3:4c:23:d5:6a:a4:2c:17:66:d5:
57:ff:a4:57:d9:55:e3:35:bd:6b:51:79:82:d7:62:56:26:db:
22:3b:67:24:f8:26:81:85:26:0d:b3:88:0f:64:53:bb:95:be:
4d:a0:30:3d:cf:f5:5e:3d:30:8a:30:7d:09:ec:f6:85:ca:ff:
11:7d:f5:be:c9:a2:6d:3f:ea:df:1c:65:2d:8c:6b:d4:5b:14:
7e:76:1c:6c:96:82:2b:09:e6:84:ce:c6:92:6b:f6:1f:41:48:
8b:91:c6:88:03:dd:3e:6a:a8:7c:f9:b8:45:0a:69:cf:6b:fd:
6e:99:0c:b4:35:96:d5:6b:4e:4a:ef:cd:e1:8a:b0:cf:31:d0:
d0:2f:62:bd:bb:dd:c5:bf:f3:c8:0c:7a:82:6f:89:96:76:d5:
3a:0d:3f:04:08:ea:95:73:81:7e:2e:cc:1c:24:fa:fe:16:4c:
ac:38:ed:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:09 2024 by rpki-client on console-ams.rpki-client.org