Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/n9uFS-9eFVOqKuVavjEqwrqMaaE.roa
File: n9uFS-9eFVOqKuVavjEqwrqMaaE.roa (raw, json)
Hash identifier: KEzMUvESycpVFFITbPM7MnM04KQ9IN+Ij3bn9bAi6jc=
Subject key identifier: 9F:DB:85:4B:EF:5E:15:53:AA:2A:E5:5A:BE:31:2A:C2:BA:8C:69:A1
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 018CC8DF74AB9CDE07FA710B2E1B386489AA
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/n9uFS-9eFVOqKuVavjEqwrqMaaE.roa
Signing time: Tue 02 Jan 2024 06:32:16 +0000
ROA not before: Tue 02 Jan 2024 06:32:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 178.236.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Apr 2024 07:28:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:74:ab:9c:de:07:fa:71:0b:2e:1b:38:64:89:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Jan 2 06:32:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9fdb854bef5e1553aa2ae55abe312ac2ba8c69a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:9a:52:0b:68:21:18:29:6e:11:ad:2d:59:9d:
18:e3:fa:77:65:d1:92:74:02:77:34:0b:61:dd:27:
a0:b2:a8:2d:44:1c:cf:81:76:1e:97:45:f8:6e:b8:
cc:74:49:6f:da:e8:9f:29:23:73:3d:0d:2b:44:d9:
18:87:7c:f4:35:a4:f1:3e:fa:24:e0:48:df:92:2d:
f2:e2:b0:f4:c0:74:e9:91:cb:23:95:01:93:cc:c3:
34:c6:02:7a:71:4c:5d:b4:83:8b:1e:ac:e4:ba:43:
a8:4f:48:0e:e9:48:18:5e:09:9b:a8:05:01:6f:22:
10:d3:56:0f:1f:29:04:a4:57:cd:ac:33:ee:c9:df:
c1:f6:a3:99:00:a9:65:95:79:f5:5e:db:78:62:60:
17:b1:e3:40:e1:63:e1:92:a1:f4:0f:c6:3d:4b:70:
b1:8d:dd:f3:d2:36:0d:93:b3:61:c9:35:53:e4:97:
8b:1b:5b:85:0e:79:06:1d:51:c8:28:6f:12:a2:cb:
d1:5f:d9:4f:18:48:d4:4d:3f:c9:98:6d:3a:71:84:
29:f5:2e:61:e5:31:3a:47:b8:77:fc:f3:4f:47:a7:
5d:d7:ce:bf:d1:64:d0:1d:c2:d9:cf:cd:21:b3:59:
0b:97:8b:8d:ad:9f:61:2c:4b:80:5e:c5:05:ff:4c:
20:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:DB:85:4B:EF:5E:15:53:AA:2A:E5:5A:BE:31:2A:C2:BA:8C:69:A1
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/n9uFS-9eFVOqKuVavjEqwrqMaaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.226.0/24
Signature Algorithm: sha256WithRSAEncryption
20:2d:d5:42:15:c8:38:c3:80:99:48:76:7f:37:ea:26:5c:5d:
93:5b:e5:88:3b:a2:4f:db:ee:1d:f3:09:24:ec:73:40:a8:a6:
79:b9:e0:56:bb:aa:37:28:50:e1:5c:61:49:b5:9d:ea:42:bd:
8d:c7:6d:e2:13:ef:da:53:03:48:54:3e:a5:97:bd:a7:ca:e2:
d2:b9:55:e4:09:6c:2c:60:4c:e9:8a:b6:d9:35:0b:9b:bb:2d:
64:d1:8a:de:46:aa:6b:d8:22:23:d5:ba:12:48:f6:bc:9d:97:
88:7d:5a:b0:a5:68:15:15:2f:59:68:d0:84:cb:14:28:71:36:
7a:ae:2a:24:74:ab:32:ff:72:56:03:9f:9b:e7:6c:60:1a:b2:
b6:bd:29:2e:da:40:23:13:41:ac:7b:42:e7:d6:48:e3:35:6a:
58:e4:04:49:19:5d:66:5f:9a:30:0b:c5:15:68:a8:88:e9:b9:
c5:e4:58:85:01:9f:28:fd:9e:2f:3e:6c:e1:a1:74:b1:03:aa:
e4:dd:bc:f2:e1:74:6f:0b:5a:3b:9d:07:d0:44:87:47:7b:cf:
52:e6:a7:88:41:19:fe:74:d2:f2:ef:e3:ae:79:cf:a6:06:b7:
8a:68:43:71:5b:7e:49:01:34:59:02:cf:ba:8c:ce:5c:67:59:
b5:c7:9b:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 16 09:59:46 2024 by rpki-client on console-fra.rpki-client.org