Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/rGgyVryafTIEiy7aPori4Vgn3Wo.roa
File: rGgyVryafTIEiy7aPori4Vgn3Wo.roa (raw, json)
Hash identifier: KX1LqnujQs0FxtpdVoaP+C9zxdturm/AWOhbxks/vb0=
Subject key identifier: AC:68:32:56:BC:9A:7D:32:04:8B:2E:DA:3E:8A:E2:E1:58:27:DD:6A
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 01898A1F321F251886D0CF13C397EAAD9F08
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/rGgyVryafTIEiy7aPori4Vgn3Wo.roa
Signing time: Mon 24 Jul 2023 22:57:27 +0000
ROA not before: Mon 24 Jul 2023 22:57:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 23674
IP address blocks: 178.236.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jul 2023 06:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:8a:1f:32:1f:25:18:86:d0:cf:13:c3:97:ea:ad:9f:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Jul 24 22:57:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac683256bc9a7d32048b2eda3e8ae2e15827dd6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1b:1f:4b:37:0b:ee:d6:83:6e:41:25:66:91:
25:1d:ab:3d:d1:1b:f4:f5:14:69:d6:6b:f8:58:96:
f9:4b:1f:ef:39:17:ea:88:26:27:b3:3f:c7:30:8d:
b2:3a:a2:b7:df:79:7b:31:5a:c2:ea:3b:ff:5b:11:
e5:63:d2:30:ac:6f:13:10:ab:ed:8d:1c:a1:bf:36:
cf:71:4f:2c:d6:27:87:e8:0e:43:e5:53:df:68:d2:
3d:39:3f:f2:40:ec:70:24:cf:ba:05:75:a0:8b:0b:
1d:96:05:c6:c2:03:20:44:d9:13:3e:15:8d:f3:1b:
11:3e:a6:12:45:26:f9:ed:81:e0:f2:f5:81:fa:ea:
8b:5e:f4:c8:59:6f:0d:49:7c:d6:52:8a:63:9f:3d:
0a:cb:c6:52:86:72:1d:ca:5f:e3:2f:0e:87:9e:ff:
53:fd:4c:f8:ab:ee:05:af:a4:77:23:b8:47:c7:13:
34:a7:0b:cd:6a:7d:34:b5:a2:09:27:4a:82:c8:a1:
bf:28:aa:63:96:ee:68:89:53:38:a4:7a:85:7f:62:
96:da:c5:f0:9c:ba:73:ff:b4:df:70:42:0c:0d:b7:
1a:79:1a:3c:23:74:13:d7:43:5e:e1:26:54:f2:c8:
44:cf:b7:db:26:de:6b:23:57:6f:93:ba:f1:de:78:
b4:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:68:32:56:BC:9A:7D:32:04:8B:2E:DA:3E:8A:E2:E1:58:27:DD:6A
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/rGgyVryafTIEiy7aPori4Vgn3Wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.228.0/24
Signature Algorithm: sha256WithRSAEncryption
72:14:65:15:88:f5:6c:ab:23:c2:16:ad:3f:ad:24:9c:4e:72:
26:dc:6c:2d:de:9b:b3:46:32:f5:92:73:ad:68:47:b1:61:bd:
5c:b6:13:18:62:3a:dd:76:94:0c:49:ad:fc:dc:9e:dc:7c:08:
23:ee:3b:7e:36:d4:83:6e:32:38:02:35:9b:5b:89:3e:34:d6:
e5:c5:58:cc:48:a5:af:10:a9:28:0e:16:36:bf:f6:51:e6:82:
31:82:24:87:1c:08:7f:e7:0b:d0:d1:f6:e0:2e:7b:21:0a:55:
00:48:a8:e1:3a:49:04:9b:99:db:bd:a2:05:fe:93:41:b9:ca:
b2:09:e4:7b:ea:78:44:80:86:6d:e0:43:a7:17:60:c6:c1:f9:
71:43:7d:bf:ca:a1:8b:df:6e:93:f1:08:51:ee:12:b0:7b:06:
f7:9f:c6:6d:8c:bc:75:e6:f8:a9:a4:43:1b:c5:d5:8e:fc:2a:
b4:57:d6:71:b5:56:2f:a6:c1:ef:eb:b5:f6:98:d9:ef:6f:e3:
ec:fd:66:c6:c8:ca:c7:51:16:80:ce:78:a7:ae:67:b8:1b:c9:
25:43:0f:eb:3a:e3:1c:e4:dc:7b:8b:2e:a4:96:41:b1:3f:90:
9e:93:32:05:02:0b:a1:49:ee:fc:9d:83:29:d8:89:f7:d0:28:
65:ba:71:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:19 2024 by rpki-client on console-fra.rpki-client.org