Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/KOQNtcSxk7-PcdgBtgawAUhnb4U.roa
File: KOQNtcSxk7-PcdgBtgawAUhnb4U.roa (raw, json)
Hash identifier: fFVIaAiUHIhaeZmgdJWazEWkg9JNiyoyLkLbeqy8dPw=
Subject key identifier: 28:E4:0D:B5:C4:B1:93:BF:8F:71:D8:01:B6:06:B0:01:48:67:6F:85
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 01856E01FB2A06C82CF227190EEDCC9E2497
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/KOQNtcSxk7-PcdgBtgawAUhnb4U.roa
Signing time: Sun 01 Jan 2023 15:45:01 +0000
ROA not before: Sun 01 Jan 2023 15:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397071
IP address blocks: 178.236.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:fb:2a:06:c8:2c:f2:27:19:0e:ed:cc:9e:24:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Jan 1 15:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28e40db5c4b193bf8f71d801b606b00148676f85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:af:fd:29:54:52:3c:fe:47:01:e4:fc:6f:62:
51:ca:9a:29:63:2f:36:6b:59:cf:ce:51:b8:f6:bb:
ce:ae:52:51:9f:ae:e9:d9:4b:44:bd:0d:67:37:89:
41:21:c7:fa:0f:bf:9c:f3:c8:53:b6:57:77:55:fb:
80:8c:35:5e:38:2a:77:f8:62:3c:3d:27:d3:b8:f8:
32:e7:09:29:15:09:37:8a:08:70:27:07:f8:5f:60:
aa:ea:c2:69:f9:17:d3:cf:c9:77:9c:29:c9:43:4f:
49:12:1c:7c:1d:8e:56:ed:1e:da:0d:2a:3e:eb:13:
4a:cb:5c:61:c3:bb:bf:15:f5:f3:8b:5c:05:b0:21:
90:fa:47:81:33:54:54:51:64:e5:b3:de:e8:c0:4c:
cc:53:c8:e7:36:a8:75:33:df:33:66:ea:2a:7f:6b:
63:8e:35:d8:1c:b4:aa:bc:e4:c0:cd:ed:d4:c8:79:
0a:f6:fa:3e:e8:d9:61:bf:27:05:33:fe:b0:95:f5:
68:e3:04:1a:51:f5:ef:a6:09:d0:58:c6:40:28:43:
70:e6:54:02:fc:1c:e7:e4:ec:e1:14:e1:25:5f:33:
8f:40:eb:36:c3:be:ed:28:ee:b7:92:47:18:14:a2:
ea:88:e6:12:fd:ef:fe:d6:d5:17:fc:da:9a:a0:c4:
64:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:E4:0D:B5:C4:B1:93:BF:8F:71:D8:01:B6:06:B0:01:48:67:6F:85
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/KOQNtcSxk7-PcdgBtgawAUhnb4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.234.0/24
Signature Algorithm: sha256WithRSAEncryption
01:39:54:bc:50:70:2a:30:ee:85:1a:25:ed:51:54:5c:2b:c9:
ed:b2:d3:b2:22:aa:7d:86:95:af:fb:0d:94:1e:5b:44:b9:ff:
fc:d4:36:99:c9:55:77:ec:fd:ee:fc:98:29:f9:a5:f6:f2:7c:
fe:0a:1e:0f:10:b5:1e:54:bb:1d:d3:18:45:4d:fc:8e:86:f8:
88:31:10:6e:ac:25:82:8d:47:dd:a6:10:43:11:fb:40:1c:18:
0f:0e:c8:cc:7f:ad:70:c8:41:e1:8e:36:32:8b:7c:a5:1b:20:
c0:d5:8c:56:68:7a:48:81:ea:ce:05:c5:d7:a2:97:af:85:da:
fe:d4:15:f3:a8:74:a5:b6:fd:30:57:cd:7f:16:a8:69:c7:06:
9a:41:15:56:83:80:bc:c1:b4:89:41:bd:b7:bf:97:21:8e:a6:
6e:61:91:88:ee:8d:e3:b8:70:d4:29:0d:de:19:cb:a4:a4:34:
d1:91:8c:9e:3e:af:3f:f8:31:d7:2c:7a:88:0d:b8:3a:8c:75:
6e:5d:b5:d5:73:a9:41:58:5f:de:65:23:c8:7a:5a:c9:81:f9:
f8:1e:7a:b9:97:57:51:d3:53:fe:14:f0:b8:14:e5:e7:0d:18:
00:9f:3b:b8:56:d3:3f:3d:11:08:90:82:c7:39:df:ce:a8:0c:
a2:63:58:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:13 2024 by rpki-client on console-ams.rpki-client.org