Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/PUSSY_q1yimjqNk7WKC6ENy4SjY.roa
File: PUSSY_q1yimjqNk7WKC6ENy4SjY.roa (raw, json)
Hash identifier: UfOm1Qz05E1TnAm7RYs7cQCWComCaetxpCNG754ldyU=
Subject key identifier: 3D:44:92:63:FA:B5:CA:29:A3:A8:D9:3B:58:A0:BA:10:DC:B8:4A:36
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0185727A40A2A97ED2540651C90627EE4D23
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/PUSSY_q1yimjqNk7WKC6ENy4SjY.roa
Signing time: Mon 02 Jan 2023 12:34:52 +0000
ROA not before: Mon 02 Jan 2023 12:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209372
IP address blocks: 178.236.36.0/23 maxlen: 23
178.236.38.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:7a:40:a2:a9:7e:d2:54:06:51:c9:06:27:ee:4d:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 2 12:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d449263fab5ca29a3a8d93b58a0ba10dcb84a36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:bf:1e:e1:0e:50:c8:91:89:1d:27:27:96:b0:
d6:75:60:ed:2d:6c:5e:b6:7a:d4:3a:ba:41:09:2b:
ab:62:fe:52:38:b9:33:6b:ec:ab:3f:61:e9:93:5d:
1d:02:4f:a2:a0:45:58:ff:62:02:a3:78:82:5e:9a:
84:d0:0b:bd:78:60:fa:28:09:f1:e2:dc:75:ec:50:
c9:7b:bf:d6:76:fc:91:f8:8a:ea:3e:95:c7:7f:50:
1e:98:55:c3:8b:21:69:6e:9a:d7:7b:e4:23:c9:90:
75:9c:34:72:06:e6:6d:ed:3d:b9:19:7f:09:3f:51:
fe:4a:31:ee:28:9a:21:d1:fb:97:00:23:50:74:da:
48:80:bd:55:39:35:93:98:b1:8b:5f:27:9f:c6:8a:
37:97:e0:30:16:07:ec:42:55:45:76:1d:78:9a:82:
ba:e7:fe:61:2e:aa:9a:31:12:cd:88:a6:70:f8:91:
b8:ca:7a:b6:9e:61:14:c4:38:7d:f1:ee:71:ed:3f:
3a:73:f1:e2:7b:16:20:fa:13:82:ce:53:f3:65:8a:
63:2d:31:9d:86:d9:23:7a:e9:5b:c5:d1:9b:b9:95:
0c:7a:5e:ee:7a:45:6c:ef:65:a4:62:56:ed:3e:2c:
72:bf:a5:08:50:50:b1:77:5d:5e:72:0e:b5:f3:cd:
3c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:44:92:63:FA:B5:CA:29:A3:A8:D9:3B:58:A0:BA:10:DC:B8:4A:36
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/PUSSY_q1yimjqNk7WKC6ENy4SjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.36.0/22
Signature Algorithm: sha256WithRSAEncryption
81:c2:17:ed:7e:1e:08:58:31:03:81:23:5b:35:f1:db:37:4b:
3f:ba:15:ba:07:e8:57:46:35:e4:0b:ab:36:13:d3:d5:5a:82:
99:c1:d1:6a:cf:5f:14:ce:d0:60:4d:f9:26:44:f1:c5:21:7c:
db:89:1b:00:fd:39:f0:3d:23:62:bd:75:d5:85:7d:7c:ad:a2:
75:0e:71:30:9a:ab:c9:02:d9:3e:55:87:9b:3b:80:8a:1a:78:
c8:1b:3f:93:42:21:8c:4a:98:ef:25:d3:2c:63:fa:f5:93:b1:
3c:e6:1b:80:2e:c1:7f:24:0b:1d:fe:d5:1a:18:1a:54:8c:e8:
bf:8b:dd:43:35:14:e6:19:16:0d:34:44:64:4d:44:5e:13:3c:
da:cc:2b:6c:04:6f:92:47:af:2f:ab:7a:d3:b5:e3:14:e5:3e:
35:18:c0:f9:25:14:92:14:a2:bc:51:ef:c6:71:ef:77:4f:d9:
9f:cb:ee:4b:02:8c:1c:09:5b:83:cb:43:67:b8:3d:ee:09:d4:
62:a5:a4:66:40:8b:e0:cc:45:8d:88:b8:02:bc:62:d5:bc:c5:
dd:fe:56:76:b8:22:c7:b8:ff:fb:b4:81:74:a8:b0:98:f2:04:
1b:12:b7:42:c6:50:12:61:fb:8f:c0:ee:02:1e:64:ef:e3:15:
47:a2:c0:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org