Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/7eb4e8-bcb1-49ef-b944-53a5af765343/1/6zrLl36jcuwrNxdOjzhcikk97Wc.roa
File: 6zrLl36jcuwrNxdOjzhcikk97Wc.roa (raw, json)
Hash identifier: CDpX5nwwuMcugiaLinYStXeGefa7Fe1dexG8ytBm2NQ=
Subject key identifier: EB:3A:CB:97:7E:A3:72:EC:2B:37:17:4E:8F:38:5C:8A:49:3D:ED:67
Certificate issuer: /CN=cbd41cc121e0cb60a3a98dbf72ba4dbd63eebe9f
Certificate serial: 0185719583E5172E993B8545C9329DA4D535
Authority key identifier: CB:D4:1C:C1:21:E0:CB:60:A3:A9:8D:BF:72:BA:4D:BD:63:EE:BE:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9QcwSHgy2CjqY2_crpNvWPuvp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/7eb4e8-bcb1-49ef-b944-53a5af765343/1/6zrLl36jcuwrNxdOjzhcikk97Wc.roa
Signing time: Mon 02 Jan 2023 08:25:02 +0000
ROA not before: Mon 02 Jan 2023 08:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211559
IP address blocks: 213.178.136.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:83:e5:17:2e:99:3b:85:45:c9:32:9d:a4:d5:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd41cc121e0cb60a3a98dbf72ba4dbd63eebe9f
Validity
Not Before: Jan 2 08:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb3acb977ea372ec2b37174e8f385c8a493ded67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:2c:d6:85:b6:65:43:38:e4:02:45:57:1d:a8:
84:90:55:04:4a:20:2b:22:07:fe:c2:3e:c8:da:d9:
8e:8e:8c:20:8b:bd:12:2a:74:82:38:b1:61:14:4b:
f4:15:f9:84:e4:0b:b4:7a:37:d2:8e:60:c8:9a:dd:
1e:38:93:c0:58:59:ee:59:a2:01:be:b9:62:5c:19:
1f:e0:f2:ac:3a:da:e8:11:75:b4:23:44:70:c7:f0:
8c:d7:b4:c5:fd:4b:57:13:84:aa:cc:fb:ce:48:02:
7d:22:13:c7:27:ff:ad:0b:2a:16:9d:cc:b6:76:92:
28:72:f0:59:fa:c2:71:20:d6:8f:ba:4c:36:44:35:
35:25:8d:1b:7a:7c:6f:2c:9e:d4:db:2e:b5:9a:f4:
f0:dd:05:9e:e2:f2:0c:18:9c:c0:ac:08:c7:76:55:
a9:3f:f6:93:75:95:60:c7:ec:ba:00:80:07:0b:ba:
0b:bc:f5:c6:4a:d5:37:ad:18:82:ea:49:ef:5d:b8:
75:ed:e1:50:06:34:9a:1d:57:01:4c:f7:48:d9:95:
9f:11:9e:56:fc:8d:28:3f:3d:55:d0:bd:1b:1f:af:
b0:77:30:ce:73:c3:63:bf:04:97:8a:ed:94:af:6b:
6b:f2:10:a5:29:26:44:93:9c:48:39:88:a7:45:1f:
fa:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:3A:CB:97:7E:A3:72:EC:2B:37:17:4E:8F:38:5C:8A:49:3D:ED:67
X509v3 Authority Key Identifier:
keyid:CB:D4:1C:C1:21:E0:CB:60:A3:A9:8D:BF:72:BA:4D:BD:63:EE:BE:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9QcwSHgy2CjqY2_crpNvWPuvp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/7eb4e8-bcb1-49ef-b944-53a5af765343/1/6zrLl36jcuwrNxdOjzhcikk97Wc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/7eb4e8-bcb1-49ef-b944-53a5af765343/1/y9QcwSHgy2CjqY2_crpNvWPuvp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.178.136.0/22
Signature Algorithm: sha256WithRSAEncryption
81:90:51:30:f6:0a:e1:bd:64:e8:10:b4:90:3d:f8:c0:aa:4b:
7c:2e:b0:de:eb:2b:66:ca:66:6f:16:1c:ba:35:b4:16:30:94:
a5:f7:45:fc:82:0c:b4:3d:cd:04:71:54:af:fd:8d:79:8d:b0:
dd:09:00:95:c1:7e:15:bc:04:1c:57:16:84:92:93:87:13:94:
30:39:43:79:18:52:2f:fd:d8:6e:90:e5:3e:86:e2:92:a8:0d:
d3:a3:6f:21:6a:dd:60:2d:c9:a6:8b:76:14:a7:f7:1c:3e:7c:
d7:8c:63:75:3f:fb:65:90:37:d7:ce:75:6a:e9:cb:39:28:58:
a4:73:81:4d:67:6b:e2:5e:81:1b:25:ee:b7:ea:e9:98:21:56:
ab:fd:3b:71:f0:3e:29:b4:dd:44:a0:ca:04:5a:0c:41:f7:87:
46:68:9d:f3:5a:14:b5:27:80:06:4e:6f:d0:7e:46:fd:0e:87:
01:5b:e5:95:13:9c:c1:2e:8a:f1:61:8b:15:31:a4:38:90:5b:
6e:af:f2:89:ec:8d:ef:d9:b8:2b:53:b8:c4:a6:18:1a:1a:51:
f5:bf:3a:a8:42:83:ad:71:9d:d0:d4:02:d5:a6:93:6f:1e:d2:
26:3f:ed:1d:f6:02:b0:0c:36:dd:de:5d:17:ec:b6:19:ba:09:
25:75:db:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:28 2024 by rpki-client on console-fra.rpki-client.org