Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/OqtFmlLePytOEAkW1A6khrGbQqw.roa
File: OqtFmlLePytOEAkW1A6khrGbQqw.roa (raw, json)
Hash identifier: rWxaWbVJjEtMeGnGV21DbYolEH8NDFAParEXuiL3LdM=
Subject key identifier: 3A:AB:45:9A:52:DE:3F:2B:4E:10:09:16:D4:0E:A4:86:B1:9B:42:AC
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 01856E01F758C0B5D6EC337CB19727BB941C
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/OqtFmlLePytOEAkW1A6khrGbQqw.roa
Signing time: Sun 01 Jan 2023 15:45:00 +0000
ROA not before: Sun 01 Jan 2023 15:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 178.236.236.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:f7:58:c0:b5:d6:ec:33:7c:b1:97:27:bb:94:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Jan 1 15:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3aab459a52de3f2b4e100916d40ea486b19b42ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ba:2b:60:80:3d:52:86:e9:1a:08:2b:b2:f9:
01:5d:f4:fb:e0:f9:12:55:50:f9:03:39:00:a8:32:
b1:17:94:79:10:58:ef:90:cb:98:71:80:68:ae:58:
7f:fb:ce:08:e5:6e:2c:ce:44:a4:b0:81:e5:d6:25:
7a:c1:2b:1a:9a:a8:e7:0c:2e:13:36:bb:ed:76:8b:
34:01:b4:f4:69:cc:1f:c5:ef:c1:15:fd:c3:a8:98:
55:fa:1a:74:0f:41:0f:76:c8:8f:46:29:5b:ff:2c:
9a:c6:27:ee:86:9f:60:8c:17:30:bf:54:80:3b:a9:
06:44:c4:2b:61:57:77:73:ca:ee:c6:e9:9f:c7:ac:
9d:c4:d4:fa:b8:4f:e1:a9:58:87:0a:d6:bc:29:b9:
5c:e8:3f:e2:6a:5a:9f:2b:37:79:b5:f8:f0:58:c0:
ba:af:9c:82:c2:b1:5c:b2:fe:61:45:ba:4d:9c:65:
7b:f9:ac:d9:88:ba:1c:19:0b:0f:99:9a:99:3a:54:
18:66:06:10:d4:22:fd:d9:de:ba:14:03:14:c1:e3:
18:0d:d4:67:2c:4c:61:48:0a:f6:61:23:62:80:56:
60:63:67:80:a1:30:64:a1:fb:ed:e9:1e:c0:a2:4e:
d5:6a:79:7d:ef:91:f6:2b:b9:32:f6:e9:3a:40:b1:
4d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:AB:45:9A:52:DE:3F:2B:4E:10:09:16:D4:0E:A4:86:B1:9B:42:AC
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/OqtFmlLePytOEAkW1A6khrGbQqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.236.0/22
Signature Algorithm: sha256WithRSAEncryption
44:09:77:aa:67:40:81:1a:75:08:5c:e0:73:33:8b:b8:55:75:
66:16:cc:4e:89:40:64:43:20:f5:75:f2:69:c4:10:38:5f:c5:
c3:41:c1:f4:1c:b7:10:63:80:09:cd:42:88:cb:e8:4b:3a:8b:
04:0c:aa:dd:6d:54:b1:53:7e:b8:5b:3d:a4:3b:d7:be:68:5e:
9f:79:dd:e5:f5:24:b9:53:f6:97:4f:e5:49:9a:f7:b7:f5:34:
43:68:88:9a:a4:7a:03:b3:04:6d:11:8a:81:fb:b3:6a:83:d5:
0a:e2:5c:fc:58:86:35:c2:80:1c:e8:1a:4c:ac:61:03:99:56:
36:7f:14:16:ec:60:87:1d:2f:6b:42:ea:60:f1:ec:e1:a3:8e:
59:6a:ee:33:23:dd:65:ec:79:af:42:5b:2d:5c:d1:06:8d:e6:
51:a1:7e:76:e1:69:93:6d:79:05:b4:db:ae:12:b9:73:e5:6a:
08:a5:d4:98:b1:93:60:88:ce:e1:6f:ed:d9:cc:28:19:08:ce:
6b:82:58:1e:f8:2a:a7:a2:9e:19:35:6e:40:41:61:f7:18:d0:
6e:c5:51:2b:d3:11:3a:31:d2:50:34:22:1b:e6:3e:d3:78:e5:
73:f6:a3:c2:22:f0:6e:fd:da:45:70:e0:a8:23:a0:f6:14:2a:
dc:ce:5d:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:21 2023 by rpki-client on console-ams.rpki-client.org