Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/HSe9E5tpABY8xapLV-Kl6-hi-_8.roa
File: HSe9E5tpABY8xapLV-Kl6-hi-_8.roa (raw, json)
Hash identifier: PS26gAUpxJqipJJeywkZCpysh7D5SfDHov7/2QTzjGA=
Subject key identifier: 1D:27:BD:13:9B:69:00:16:3C:C5:AA:4B:57:E2:A5:EB:E8:62:FB:FF
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 0189AEE1E7DAAF51DCD18C81ADF3EB193396
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/HSe9E5tpABY8xapLV-Kl6-hi-_8.roa
Signing time: Tue 01 Aug 2023 02:16:27 +0000
ROA not before: Tue 01 Aug 2023 02:16:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35916
IP address blocks: 178.236.228.0/24 maxlen: 24
178.236.228.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ae:e1:e7:da:af:51:dc:d1:8c:81:ad:f3:eb:19:33:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Aug 1 02:16:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d27bd139b6900163cc5aa4b57e2a5ebe862fbff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a0:b4:00:f0:2d:c6:cd:1c:1f:17:ed:00:0f:
97:c1:5e:6a:3f:34:1d:5d:f8:45:f2:7c:63:3b:ac:
3f:00:5a:d0:9d:85:d4:67:7e:b8:f0:ac:90:42:56:
ea:8f:b7:51:35:26:78:01:59:de:fe:23:bd:a0:e0:
5c:50:ed:62:b4:9e:00:55:0f:bf:5f:f5:0b:af:55:
1a:ea:92:ee:05:ff:cc:1b:4a:39:ed:b9:bf:77:b9:
f5:bb:44:12:4d:0e:4e:ed:c6:7b:86:d2:9c:77:9d:
c3:0f:e0:28:a7:5a:f3:d9:f0:8a:b2:f5:ee:08:b7:
bc:91:4c:36:e6:ef:e4:0d:a7:5b:e4:50:00:5c:91:
cb:d5:0c:eb:22:9b:2f:f8:f1:a4:a3:07:33:05:3d:
a8:95:06:c5:46:f5:b2:88:30:1b:35:cc:01:ac:39:
23:77:c1:d7:fb:34:a1:54:fc:85:d8:80:15:2c:85:
40:48:46:80:94:bd:e4:a1:4e:00:67:05:cf:e9:b7:
94:12:a8:7b:a8:b2:c8:10:68:bd:3a:52:57:fb:1e:
42:e2:4b:24:46:75:88:17:bf:07:6c:20:96:04:a4:
5a:e7:08:f7:32:bc:e2:c6:30:70:09:38:db:f5:ff:
cd:42:cf:1e:86:01:b6:a8:f7:fb:21:21:26:b6:df:
5c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:27:BD:13:9B:69:00:16:3C:C5:AA:4B:57:E2:A5:EB:E8:62:FB:FF
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/HSe9E5tpABY8xapLV-Kl6-hi-_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.228.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:19:d1:dd:1b:5b:69:bb:8a:cf:dd:cb:50:e8:33:91:2b:eb:
e8:20:21:69:cc:24:64:d7:98:26:e9:ae:1c:62:ea:6c:f6:0b:
8f:03:7d:29:af:1b:10:bf:c8:d0:83:70:88:fe:8f:1d:f0:90:
a0:24:da:2c:07:60:60:2a:93:11:78:fe:55:1d:ba:16:63:81:
9c:b9:e6:c0:4a:3c:fb:d0:bc:9c:44:ea:b6:95:33:20:cc:a0:
f9:6f:97:24:70:69:a1:63:f4:58:c9:24:da:f5:7b:17:88:31:
e3:93:0a:f3:2a:f6:b7:71:75:a1:c0:f7:fc:89:06:3d:08:67:
e1:2a:5d:a7:b7:13:92:75:d5:a6:bd:2b:d7:c6:a6:ec:0f:6f:
9c:e6:ca:9f:06:44:73:b3:49:d6:bf:f0:3b:a7:1f:85:de:65:
74:19:64:8b:f9:8a:9e:7d:d0:6d:43:b1:7c:4b:dc:9b:6a:e0:
40:e1:a5:81:02:99:aa:d7:e4:bf:00:48:d5:fe:8c:9a:d1:07:
67:07:f2:4d:30:46:f9:a1:64:3b:d2:d4:a3:c4:8f:b3:57:45:
2b:e9:f7:fe:ec:41:45:0e:77:4a:ac:bb:e6:78:d4:ec:e1:f2:
0e:54:a6:0c:a3:91:d3:f5:39:d8:58:e3:4c:68:3c:aa:19:8e:
a3:99:e5:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:17 2024 by rpki-client on console-fra.rpki-client.org