Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/K7ioRwpHzG68fuYjWve0hR79oxE.roa
File: K7ioRwpHzG68fuYjWve0hR79oxE.roa (raw, json)
Hash identifier: 7X4EhWxSkINItdYnKpzgofWp7++wk4Rhe6VzClQXN0A=
Subject key identifier: 2B:B8:A8:47:0A:47:CC:6E:BC:7E:E6:23:5A:F7:B4:85:1E:FD:A3:11
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 0186CC167F73EAC6DE1AFC3CFD08B2C089FC
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/K7ioRwpHzG68fuYjWve0hR79oxE.roa
Signing time: Fri 10 Mar 2023 15:14:31 +0000
ROA not before: Fri 10 Mar 2023 15:14:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62563
IP address blocks: 178.236.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Oct 2023 03:02:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cc:16:7f:73:ea:c6:de:1a:fc:3c:fd:08:b2:c0:89:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Mar 10 15:14:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2bb8a8470a47cc6ebc7ee6235af7b4851efda311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3c:57:43:c0:f6:93:4c:1e:77:90:68:92:e0:
59:be:0b:43:d7:67:fd:15:69:2f:07:cd:00:cb:87:
3f:e2:4f:e1:05:de:93:bb:19:94:5e:9f:a1:ed:60:
ab:98:57:6f:9b:ac:3a:2f:8f:c5:70:4f:2c:bf:69:
b8:fb:e2:94:92:6b:58:0f:12:ee:29:67:c3:4a:9f:
c8:18:84:1c:1c:0e:2f:8e:9e:b7:e0:ad:b7:f8:6e:
32:d5:d7:5f:36:67:67:61:86:06:b3:f6:ad:f9:94:
89:8a:5d:15:aa:91:74:c2:19:65:1b:5c:fa:bc:d8:
8e:14:e8:a3:52:98:76:8d:07:06:5b:db:98:1d:54:
3a:5d:52:7d:19:8a:be:a2:ee:53:00:2d:a9:3f:ff:
70:7d:e4:51:16:6d:09:24:2c:82:b9:e2:9f:a7:2b:
b1:7b:16:69:0f:25:51:08:a4:63:de:7f:33:d4:19:
48:c6:c2:c9:a7:67:9f:11:38:6b:1d:ef:75:96:43:
e4:d5:c0:49:61:a3:bf:8d:f4:29:c6:be:5a:a3:40:
28:1b:b2:26:d2:d8:c2:6e:c7:b8:3c:ac:c4:2a:86:
f2:0b:52:98:df:00:6c:78:74:74:34:a2:5d:35:b2:
c3:03:ab:44:d5:f5:6c:d4:ec:25:7a:8d:8e:3d:f5:
2e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:B8:A8:47:0A:47:CC:6E:BC:7E:E6:23:5A:F7:B4:85:1E:FD:A3:11
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/K7ioRwpHzG68fuYjWve0hR79oxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.225.0/24
Signature Algorithm: sha256WithRSAEncryption
43:d3:4f:95:41:79:05:b8:2b:55:a3:07:5f:28:17:66:bb:c9:
3d:2e:25:46:e0:5d:f3:4d:58:b0:92:70:f4:03:84:42:52:86:
98:87:a8:4d:a8:34:c4:be:c6:ba:05:50:65:17:52:0e:46:21:
af:75:6c:f9:c3:f8:70:90:7a:ed:b3:4f:e1:86:04:da:60:ce:
37:a9:93:47:01:97:c6:b9:48:5b:aa:34:bd:10:0f:cc:61:41:
3f:f9:66:b9:a7:86:39:a2:7a:62:8c:c4:77:da:c8:52:b9:41:
d9:29:c9:bb:6e:77:fd:aa:65:e5:52:b1:57:61:2f:06:07:4c:
f8:7b:b8:32:89:5a:54:e2:10:92:67:dc:e8:33:6f:26:70:a3:
a0:75:ff:f1:e0:7f:0e:17:5d:11:0d:ca:7c:ed:67:c3:c8:3d:
2b:ea:75:60:fb:f2:71:8d:86:2b:aa:9e:54:ad:04:b1:7a:97:
40:78:f3:09:c6:3e:59:c6:12:b8:b7:9b:13:51:a9:98:87:d0:
23:3a:61:66:97:08:b0:d4:c1:71:26:81:74:43:95:ba:e3:2d:
5b:6b:96:02:50:1e:a6:36:3e:42:5d:17:7d:99:fa:b2:b0:32:
ed:dd:1d:9d:3f:99:3e:0a:2e:40:82:c0:c9:04:9c:70:e9:94:
2c:8a:ea:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:13 2024 by rpki-client on console-ams.rpki-client.org