Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/QPOxiP0oKIAhw-u4kMB-sD5INU8.roa
File: QPOxiP0oKIAhw-u4kMB-sD5INU8.roa (raw, json)
Hash identifier: 2+83eIwuIhNxd976ntNW3xhIs3a7WlIhcar06UG9T44=
Subject key identifier: 40:F3:B1:88:FD:28:28:80:21:C3:EB:B8:90:C0:7E:B0:3E:48:35:4F
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 018C66F427E109737A8411E7A06010AEC974
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/QPOxiP0oKIAhw-u4kMB-sD5INU8.roa
Signing time: Thu 14 Dec 2023 06:12:06 +0000
ROA not before: Thu 14 Dec 2023 06:12:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 328608
IP address blocks: 178.236.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:66:f4:27:e1:09:73:7a:84:11:e7:a0:60:10:ae:c9:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Dec 14 06:12:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=40f3b188fd28288021c3ebb890c07eb03e48354f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:8b:d7:03:88:ff:0e:e9:02:ec:2d:17:b9:14:
39:01:41:c9:42:e9:b6:90:c6:00:38:8f:af:98:da:
24:8e:eb:1c:99:a9:7d:5d:54:23:8a:b3:10:5c:13:
fd:f8:92:f3:84:c8:6d:06:a0:0f:3c:36:f3:9a:72:
64:82:43:1c:00:1c:65:94:83:8c:e5:c8:ac:2d:21:
e4:00:2a:85:19:80:95:76:a8:c0:0c:56:af:2f:e7:
97:39:36:2c:f9:9c:08:52:b1:c6:38:f7:87:83:9d:
d0:6d:81:75:b4:6d:ad:e4:05:fe:46:b5:91:4b:d1:
99:86:c9:28:0b:b3:04:44:41:37:2c:d5:df:6b:ea:
65:36:4d:e0:0f:42:0b:71:fc:c7:97:78:20:eb:6c:
90:54:d3:ee:52:69:f3:3a:27:53:12:25:17:7f:01:
98:67:49:21:da:e9:e6:c5:3a:fa:96:13:df:93:49:
26:62:d6:2b:f0:5a:fb:ad:02:4a:9a:6d:38:63:b7:
34:bc:12:f4:a8:4b:13:7c:c6:d8:9a:ef:95:7a:68:
80:70:01:1e:b6:07:54:ce:03:96:c4:56:24:c1:b1:
f2:cc:da:c1:6f:7e:df:68:eb:17:93:91:88:37:aa:
67:05:6b:31:77:31:e9:f9:5c:95:36:5e:2e:ea:fb:
cd:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:F3:B1:88:FD:28:28:80:21:C3:EB:B8:90:C0:7E:B0:3E:48:35:4F
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/QPOxiP0oKIAhw-u4kMB-sD5INU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.224.0/24
Signature Algorithm: sha256WithRSAEncryption
52:13:4b:43:36:e2:85:61:3d:2b:4b:d3:2c:24:1f:dc:51:bc:
23:9a:8f:54:09:4f:7f:23:93:9e:94:53:02:fa:83:26:bf:08:
38:12:4c:22:ed:e3:2b:bd:0b:f3:ea:cd:49:3b:80:36:39:fe:
ce:b9:54:0d:1e:92:53:01:6f:3d:61:9c:99:cc:40:f9:d8:0e:
36:2d:02:37:d0:37:d6:71:49:52:95:3a:f8:ca:89:ec:bc:be:
1c:14:3f:5b:6a:51:03:3b:54:8d:00:c1:6f:ce:7e:bb:53:b9:
79:c4:62:32:b5:8b:ee:db:85:c6:40:58:52:24:cd:63:54:e7:
94:4e:2e:81:e6:4b:f9:a5:f4:11:3b:18:0b:31:34:0f:46:cd:
52:1b:b4:b6:ea:43:26:64:1f:12:f8:df:9e:6e:a0:4b:10:0e:
99:da:dc:89:2b:92:43:fc:c2:28:ad:67:74:f4:88:81:0c:de:
20:48:73:d9:bf:77:e6:4e:cd:7a:92:14:cb:93:98:13:16:65:
98:74:29:e0:f2:54:ff:94:5c:14:f9:47:57:12:af:dd:d0:4a:
4c:0a:6b:ff:a3:9b:b1:6a:cf:72:07:e1:3b:dc:65:dc:7d:51:
ab:d7:5d:e4:73:7c:02:0b:df:ec:97:ab:16:fe:f6:16:29:7c:
66:e7:ee:b3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxm9CfhCXN6hBHnoGAQrsl0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3OTRhZmRiNWU2YTE4ODU3ODA5MjBhNTRmZmE4MjQwOGVh
ODViYTEwHhcNMjMxMjE0MDYxMjA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MGYzYjE4OGZkMjgyODgwMjFjM2ViYjg5MGMwN2ViMDNlNDgzNTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnovXA4j/DukC7C0XuRQ5AUHJQum2
kMYAOI+vmNokjuscmal9XVQjirMQXBP9+JLzhMhtBqAPPDbzmnJkgkMcABxllIOM
5cisLSHkACqFGYCVdqjADFavL+eXOTYs+ZwIUrHGOPeHg53QbYF1tG2t5AX+RrWR
S9GZhskoC7MEREE3LNXfa+plNk3gD0ILcfzHl3gg62yQVNPuUmnzOidTEiUXfwGY
Z0kh2unmxTr6lhPfk0kmYtYr8Fr7rQJKmm04Y7c0vBL0qEsTfMbYmu+VemiAcAEe
tgdUzgOWxFYkwbHyzNrBb37faOsXk5GIN6pnBWsxdzHp+VyVNl4u6vvNswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEDzsYj9KCiAIcPruJDAfrA+SDVPMB8GA1UdIwQY
MBaAFFeUr9teahiFeAkgpU/6gkCOqFuhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVjVTdjIxNXFHSVY0Q1NDbFRfcUNRSTZvVzZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS9kZGNlNGQtOTkxMi00ODdkLWI1NWQt
NDdkODJhNDFhOGYzLzEvUVBPeGlQMG9LSUFody11NGtNQi1zRDVJTlU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS9kZGNlNGQtOTkxMi00ODdkLWI1NWQtNDdkODJhNDFhOGYz
LzEvVjVTdjIxNXFHSVY0Q1NDbFRfcUNRSTZvVzZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsuzgMA0G
CSqGSIb3DQEBCwUAA4IBAQBSE0tDNuKFYT0rS9MsJB/cUbwjmo9UCU9/I5OelFMC
+oMmvwg4Ekwi7eMrvQvz6s1JO4A2Of7OuVQNHpJTAW89YZyZzED52A42LQI30DfW
cUlSlTr4yonsvL4cFD9balEDO1SNAMFvzn67U7l5xGIytYvu24XGQFhSJM1jVOeU
Ti6B5kv5pfQROxgLMTQPRs1SG7S26kMmZB8S+N+ebqBLEA6Z2tyJK5JD/MIorWd0
9IiBDN4gSHPZv3fmTs16khTLk5gTFmWYdCng8lT/lFwU+UdXEq/d0EpMCmv/o5ux
as9yB+E73GXcfVGr113kc3wCC9/sl6sW/vYWKXxm5+6z
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:19 2024 by rpki-client on console-fra.rpki-client.org