Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/36s2UMkXKpZ8jJDFTio8c0cnOSU.roa
File: 36s2UMkXKpZ8jJDFTio8c0cnOSU.roa (raw, json)
Hash identifier: z++zt0n+31mus1BmY/IFLdgUPnNuTkfW+N7M+VNkMOQ=
Subject key identifier: DF:AB:36:50:C9:17:2A:96:7C:8C:90:C5:4E:2A:3C:73:47:27:39:25
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 018CC87148F90713674102A7D3C55388E836
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/36s2UMkXKpZ8jJDFTio8c0cnOSU.roa
Signing time: Tue 02 Jan 2024 04:31:56 +0000
ROA not before: Tue 02 Jan 2024 04:31:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200017
IP address blocks: 194.69.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Apr 2024 12:41:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:48:f9:07:13:67:41:02:a7:d3:c5:53:88:e8:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Jan 2 04:31:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dfab3650c9172a967c8c90c54e2a3c7347273925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:83:c0:81:15:6f:8d:c4:ee:87:27:14:a8:6e:
a0:28:72:06:6b:19:24:15:59:b7:04:8e:c1:50:2e:
77:ca:24:01:90:d9:9a:8c:07:52:69:21:26:6e:8b:
15:15:1b:d0:5a:c8:d9:a9:da:b2:16:6c:2b:eb:36:
8b:70:ba:4b:f0:dd:82:7e:6b:51:56:87:9d:a7:49:
1d:97:28:6b:71:3c:1b:73:3d:f1:91:3f:8e:b1:9d:
06:14:4d:71:6d:0f:45:51:5a:f8:36:a7:33:36:a9:
c4:20:50:94:e0:06:84:a3:2c:18:cd:22:11:0e:44:
1a:f4:4f:a7:a7:e5:a8:6a:d5:7b:62:b8:8b:8c:b3:
67:c6:97:89:68:10:bd:61:e2:64:bf:90:81:c8:c9:
8d:ac:1e:a5:d9:a5:96:64:10:5a:31:c6:27:b1:d6:
c3:f1:9d:a6:ab:22:0f:97:28:5c:c1:40:bd:8a:bb:
00:e4:90:29:f4:e7:c0:1d:1e:1a:bd:f3:7e:a9:be:
92:61:83:07:54:89:fd:91:ac:7b:4f:e1:65:68:8a:
47:04:c5:9a:54:7b:2f:57:c0:f1:42:d3:65:40:5a:
c7:62:f9:d5:3b:15:81:90:8b:95:a9:79:01:a8:e6:
7d:bd:ae:17:bd:37:f2:67:e3:08:f7:f7:41:1a:32:
42:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:AB:36:50:C9:17:2A:96:7C:8C:90:C5:4E:2A:3C:73:47:27:39:25
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/36s2UMkXKpZ8jJDFTio8c0cnOSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.69.163.0/24
Signature Algorithm: sha256WithRSAEncryption
20:c3:9d:dc:41:07:2c:17:8b:86:4f:6a:1c:82:0b:13:ed:8f:
72:ff:94:49:6d:47:ad:27:67:e7:b0:f7:0a:36:db:66:57:6a:
ed:fd:ae:5e:1e:5c:ae:ce:89:b1:c8:4b:a8:85:46:c9:28:32:
92:2a:e5:a2:6f:1f:50:a2:31:f2:d3:44:ca:4e:76:ff:da:88:
2a:48:69:9b:7b:79:68:f9:fa:bb:9c:7e:63:17:c3:dc:64:d0:
7d:c0:2b:38:50:b8:e6:ec:6b:95:9d:91:17:d4:7a:ab:38:34:
91:c8:7b:a8:99:65:e5:bd:af:91:59:f1:b1:ef:66:58:69:0a:
f6:f8:f6:30:7c:e9:e3:e1:a5:f1:f6:89:e6:5a:42:7d:68:98:
6f:7f:f8:59:8e:b2:f5:b0:93:1f:cf:57:e0:1e:b1:a6:4c:b4:
30:43:3d:85:48:be:f3:c3:6c:a0:eb:bf:7e:40:07:26:ff:73:
83:12:df:b4:e3:53:26:3b:44:15:66:f4:ed:f6:78:41:89:c2:
fb:83:64:3d:99:e4:6d:a7:91:d0:d2:40:aa:36:48:23:f1:9a:
d6:e8:a0:fe:91:68:46:85:98:fa:6e:ba:5c:bd:5d:ce:31:1e:
5e:70:a5:c0:08:54:b4:7e:00:c4:e5:ca:e8:74:33:0d:72:5d:
b0:2e:98:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:04 2024 by rpki-client on console-ams.rpki-client.org