Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/3IE6EglpFDWq0LQ1eaot4E5tZSg.roa
File: 3IE6EglpFDWq0LQ1eaot4E5tZSg.roa (raw, json)
Hash identifier: 9SOUEIVqNTtcnaDTmp7aCKdnRqLs0yKXWMP5fz4DV6g=
Subject key identifier: DC:81:3A:12:09:69:14:35:AA:D0:B4:35:79:AA:2D:E0:4E:6D:65:28
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018CF73C306937C5ABF456163F27C9CE944F
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/3IE6EglpFDWq0LQ1eaot4E5tZSg.roa
Signing time: Thu 11 Jan 2024 06:36:05 +0000
ROA not before: Thu 11 Jan 2024 06:36:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211252
IP address blocks: 62.197.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Feb 2024 19:39:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f7:3c:30:69:37:c5:ab:f4:56:16:3f:27:c9:ce:94:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 11 06:36:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc813a1209691435aad0b43579aa2de04e6d6528
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:44:97:23:bd:84:ba:56:a7:3c:d5:d9:33:97:
3a:ee:b9:d1:14:3b:eb:0f:88:3c:ad:89:b1:5d:c8:
58:98:86:d6:14:a7:86:f7:5a:63:6b:4d:75:81:14:
8d:74:54:22:91:ce:4e:8f:3f:45:d0:c4:03:c9:33:
bf:3d:21:57:a0:04:d8:5b:78:ca:d0:7a:eb:11:e4:
ff:99:5e:f0:8e:73:50:e7:9e:fd:54:7c:0b:d4:c4:
5f:c4:43:06:56:e3:8f:32:50:38:0c:6a:9c:00:2d:
6f:f4:b2:77:3a:47:08:50:07:76:8d:c9:2b:a2:9e:
dc:6a:59:47:ad:16:03:69:84:8c:6f:50:a0:e0:91:
34:4e:04:8c:b2:7b:4b:63:7c:42:57:d4:00:4b:20:
e7:a1:31:9d:05:d1:ca:42:34:9e:af:a7:9b:93:f6:
fa:2c:1c:28:fb:be:15:f0:35:a9:dd:5b:59:0e:e3:
e0:27:d7:d9:26:c1:6d:20:0c:af:91:03:ae:bf:3a:
65:15:8f:f9:19:6a:28:a0:bf:78:1f:a5:47:68:03:
a6:b9:8a:33:88:ca:c8:08:d9:1e:69:c3:22:8b:32:
20:18:c9:32:98:61:ce:ad:63:68:3e:5e:ea:b2:70:
32:c3:cd:17:bb:91:9d:cc:83:a5:07:72:32:9c:cd:
8b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:81:3A:12:09:69:14:35:AA:D0:B4:35:79:AA:2D:E0:4E:6D:65:28
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/3IE6EglpFDWq0LQ1eaot4E5tZSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.197.136.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:ab:6e:95:b6:bd:88:77:56:cd:0a:6a:20:c4:99:75:74:d2:
18:d5:12:f0:cb:95:8e:e9:db:97:98:df:2c:ce:04:27:a3:db:
b5:d6:46:e9:ba:be:ec:31:3b:16:27:ee:ef:77:02:10:02:0a:
57:0b:39:e7:f4:40:4f:e8:1e:0d:5b:d5:b7:47:88:b1:9b:a9:
c7:e6:e4:c4:dd:89:c3:1e:6f:6e:18:74:8b:37:26:a2:60:ba:
ee:26:e1:79:88:8b:7c:48:a8:cd:bf:ae:43:5b:e9:fd:90:ca:
bf:72:2c:7f:e9:af:55:29:51:0c:37:0f:17:18:00:10:ac:24:
4f:79:2e:65:cc:51:9e:fb:32:45:33:55:d5:96:a1:3b:eb:49:
bf:f1:56:4b:7f:a7:92:8a:3c:5c:60:f4:7e:2f:0b:a1:22:8e:
5f:88:43:2c:9d:8f:6e:42:b8:77:dc:a2:4a:db:7b:55:b9:66:
cf:30:33:bf:f6:41:59:96:44:92:13:d2:3e:0f:3d:ae:12:a4:
37:ae:83:de:bb:b8:5b:f8:70:85:6f:d6:99:db:20:ac:3b:40:
54:66:02:a8:69:e2:bd:c0:38:dd:89:96:be:c5:01:e1:aa:55:
e0:2d:2d:58:60:02:47:98:13:61:a4:25:1b:eb:54:2d:ee:ce:
12:82:b8:c4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYz3PDBpN8Wr9FYWPyfJzpRPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw
NWIwZTIwHhcNMjQwMTExMDYzNjA1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYzgxM2ExMjA5NjkxNDM1YWFkMGI0MzU3OWFhMmRlMDRlNmQ2NTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlUSXI72EulanPNXZM5c67rnRFDvr
D4g8rYmxXchYmIbWFKeG91pja011gRSNdFQikc5Ojz9F0MQDyTO/PSFXoATYW3jK
0HrrEeT/mV7wjnNQ5579VHwL1MRfxEMGVuOPMlA4DGqcAC1v9LJ3OkcIUAd2jckr
op7callHrRYDaYSMb1Cg4JE0TgSMsntLY3xCV9QASyDnoTGdBdHKQjSer6ebk/b6
LBwo+74V8DWp3VtZDuPgJ9fZJsFtIAyvkQOuvzplFY/5GWoooL94H6VHaAOmuYoz
iMrICNkeacMiizIgGMkymGHOrWNoPl7qsnAyw80Xu5GdzIOlB3IynM2L8QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNyBOhIJaRQ1qtC0NXmqLeBObWUoMB8GA1UdIwQY
MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt
MmNjZWRiOTY2YTU4LzEvM0lFNkVnbHBGRFdxMExRMWVhb3Q0RTV0WlNnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4
LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPsWIMA0G
CSqGSIb3DQEBCwUAA4IBAQBuq26Vtr2Id1bNCmogxJl1dNIY1RLwy5WO6duXmN8s
zgQno9u11kbpur7sMTsWJ+7vdwIQAgpXCznn9EBP6B4NW9W3R4ixm6nH5uTE3YnD
Hm9uGHSLNyaiYLruJuF5iIt8SKjNv65DW+n9kMq/cix/6a9VKVEMNw8XGAAQrCRP
eS5lzFGe+zJFM1XVlqE760m/8VZLf6eSijxcYPR+LwuhIo5fiEMsnY9uQrh33KJK
23tVuWbPMDO/9kFZlkSSE9I+Dz2uEqQ3roPeu7hb+HCFb9aZ2yCsO0BUZgKoaeK9
wDjdiZa+xQHhqlXgLS1YYAJHmBNhpCUb61Qt7s4SgrjE
-----END CERTIFICATE-----
Generated at Mon Feb 12 23:46:06 2024 by rpki-client on console-fra.rpki-client.org