Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/1-A6zHAdXJvAmQI7yQvFxL8sWoU4.roa
File: 1-A6zHAdXJvAmQI7yQvFxL8sWoU4.roa (raw, json)
Hash identifier: ir+831PxjerRFZ1AACYDPhQVAavduxtx/OpIEeEC4SY=
Subject key identifier: F8:0E:B3:1C:07:57:26:F0:26:40:8E:F2:42:F1:71:2F:CB:16:A1:4E
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 0186F282D9C9D0A03267AA32BBFCA1B18A48
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/1-A6zHAdXJvAmQI7yQvFxL8sWoU4.roa
Signing time: Sat 18 Mar 2023 02:18:27 +0000
ROA not before: Sat 18 Mar 2023 02:18:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 178.236.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 May 2023 08:14:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f2:82:d9:c9:d0:a0:32:67:aa:32:bb:fc:a1:b1:8a:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Mar 18 02:18:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f80eb31c075726f026408ef242f1712fcb16a14e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d5:2e:cd:2c:c1:a6:7f:9f:1a:3d:5a:32:6c:
7b:78:d0:52:bc:e7:ab:3c:a4:5b:73:3f:20:85:54:
16:2d:68:dc:ec:15:db:f2:57:8e:e2:4a:6f:cb:69:
29:2d:47:28:2f:44:9f:82:62:e0:12:1d:e8:27:1c:
3e:38:13:cd:92:c4:d9:31:dd:c5:13:4a:fd:7d:55:
25:26:e4:9a:0e:38:31:b3:33:67:a4:5c:9c:dc:3c:
c4:95:f1:a4:02:43:1a:95:3f:d8:31:e8:9f:92:50:
c4:32:bc:93:69:6e:6d:1b:ca:c9:72:a0:bc:c8:ce:
65:12:13:f0:70:8e:fa:4e:12:c7:d5:3b:95:38:3f:
75:9a:3f:89:65:c7:18:79:23:07:f0:59:81:44:db:
02:9d:28:0e:88:ca:ef:5f:6f:02:d6:c9:cd:ba:c8:
59:09:30:9f:62:ab:56:86:df:f6:89:14:5b:0c:dc:
5a:16:e7:89:35:df:1d:bb:87:bb:00:dd:72:2b:a0:
67:97:d5:63:fe:f9:2f:56:b0:1d:2c:46:57:a3:0c:
8e:e6:e6:f2:78:9b:15:86:f0:1f:0c:50:f8:42:8b:
3b:55:3b:09:08:ac:ce:6a:32:5e:1e:a0:26:cf:26:
68:af:1f:09:ea:8d:f9:65:e1:57:53:35:cf:33:4a:
fd:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:0E:B3:1C:07:57:26:F0:26:40:8E:F2:42:F1:71:2F:CB:16:A1:4E
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/1-A6zHAdXJvAmQI7yQvFxL8sWoU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.226.0/24
Signature Algorithm: sha256WithRSAEncryption
82:66:c8:77:b9:cb:0b:1b:91:7e:47:7d:24:f1:b1:b9:b7:80:
ff:70:62:1b:ff:25:6e:7b:b3:d9:30:60:9c:4a:14:36:9c:e3:
d5:5a:3e:3f:29:ec:9d:f4:f5:2f:e5:06:3e:b2:67:14:1b:e7:
8b:d4:43:49:b1:e5:41:6b:fa:d3:71:c6:3b:ce:75:43:23:6f:
bd:fe:87:12:d0:c4:8f:e3:92:86:f9:3d:1d:fc:f7:10:14:a9:
63:19:6e:8b:93:4a:fc:3c:0b:54:43:e0:6f:a4:f1:6a:31:53:
a3:0b:3d:99:ff:6a:a1:85:69:b5:ff:b7:bf:25:58:14:9a:f1:
bd:ac:77:a6:cb:c8:1f:e0:5f:13:6c:f7:c2:15:c2:18:20:4f:
c6:16:53:7a:5f:33:4d:3c:f0:42:07:83:41:92:66:3a:86:55:
db:f7:f0:35:e4:49:d7:f3:5f:e8:5a:00:6b:75:e2:97:9c:74:
63:c7:90:1f:45:45:82:35:88:29:6d:a9:a8:8c:44:81:23:0d:
f5:a2:61:4f:97:de:ee:75:d9:16:db:59:eb:81:06:c2:15:94:
f5:7d:6b:04:d2:57:d1:de:4b:0d:ec:ee:3e:b6:91:d9:bf:a2:
4a:26:17:74:d6:e6:f0:3f:6b:c9:e8:29:c3:43:2e:42:a6:f3:
5a:67:54:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:19 2024 by rpki-client on console-fra.rpki-client.org