Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/5DzGDujpdawMSkUmOWnD27ZWIpI.roa
File: 5DzGDujpdawMSkUmOWnD27ZWIpI.roa (raw, json)
Hash identifier: Gu7YFHxWuNX6YJgadCGKZka4d9mMscrrC/xqXOF8NgU=
Subject key identifier: E4:3C:C6:0E:E8:E9:75:AC:0C:4A:45:26:39:69:C3:DB:B6:56:22:92
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018B8B96C6E20A3061F42C15A47D8F288836
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/5DzGDujpdawMSkUmOWnD27ZWIpI.roa
Signing time: Wed 01 Nov 2023 15:53:16 +0000
ROA not before: Wed 01 Nov 2023 15:53:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211252
IP address blocks: 62.197.136.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8b:96:c6:e2:0a:30:61:f4:2c:15:a4:7d:8f:28:88:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Nov 1 15:53:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e43cc60ee8e975ac0c4a45263969c3dbb6562292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d2:68:b2:1c:9b:87:d4:b3:f6:75:20:86:48:
a5:bf:12:ec:09:09:25:2b:d4:34:f7:96:69:79:7c:
56:03:c3:34:46:54:29:cb:52:8e:d2:7e:93:ff:15:
ef:18:a9:9e:91:a8:75:3e:a2:5e:ef:8d:3c:ab:5e:
23:c4:49:03:10:b1:a4:30:f0:84:69:17:5e:c8:6e:
e0:8c:69:03:7c:5e:72:cf:eb:b2:15:b8:d6:bc:ef:
5e:e5:b4:c5:63:04:7e:ce:49:ce:67:e9:9d:69:32:
c9:f7:26:0b:bb:40:33:98:b3:6b:92:1f:da:d7:1e:
e8:44:da:ef:ab:69:49:a4:43:54:d2:3c:2f:75:92:
f6:3c:7b:64:a0:bb:4a:29:57:7d:e1:3a:a2:f4:63:
7b:b6:4c:85:aa:b6:3a:56:5b:e9:50:d2:0c:b2:fe:
4e:8d:d0:69:2b:82:2e:9d:66:7f:cc:1d:0d:fc:30:
ed:8d:08:4e:a7:7b:b6:78:54:5d:e5:0a:10:eb:4d:
73:f4:86:8a:7f:b1:38:2d:77:c0:3e:49:eb:ea:55:
c5:d5:cf:7d:9c:2a:a0:fe:a5:bc:0b:54:fa:bf:0d:
df:c6:d2:52:41:72:28:77:51:5e:17:cf:74:76:eb:
02:ed:6d:c4:93:cc:4a:85:74:89:e9:cf:d6:97:d3:
a0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:3C:C6:0E:E8:E9:75:AC:0C:4A:45:26:39:69:C3:DB:B6:56:22:92
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/5DzGDujpdawMSkUmOWnD27ZWIpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.197.136.0/24
Signature Algorithm: sha256WithRSAEncryption
82:b1:86:db:d2:dd:34:10:77:ef:b7:a8:a1:b3:f7:7b:f9:42:
94:18:d2:26:b1:8e:7c:59:b7:7b:b9:12:c0:10:2f:36:8e:f2:
15:d1:2f:bc:25:ef:ff:2a:44:d8:5a:e5:4c:b4:52:07:35:ba:
42:da:f0:67:25:d9:31:aa:e9:a8:bb:a6:ba:1e:b8:2f:92:c9:
db:44:0c:5d:7d:a9:7f:b7:c9:36:18:a2:de:90:40:2d:1a:8c:
a6:6f:f1:0c:88:fa:54:e7:3b:69:23:6e:1a:39:5b:eb:77:87:
f9:02:14:9b:6e:fd:5f:fa:19:12:20:5a:4b:fe:cc:69:58:db:
5b:37:ba:ac:f8:7f:55:8b:15:58:1b:86:21:92:cd:7f:75:71:
51:7d:f4:f5:7a:97:d1:a2:71:c8:63:2b:a5:e2:3b:71:07:8a:
8e:26:11:05:47:0e:80:f2:7d:20:7a:e4:92:74:0d:35:4d:f7:
48:9d:ed:e6:f6:61:b6:49:a4:3f:8d:41:88:b7:f8:e3:1b:5d:
18:00:b5:bb:6a:46:9b:3b:48:d6:e2:4d:38:9a:b5:d1:43:c3:
1c:3c:71:86:75:ee:4a:c4:9a:91:11:be:01:c9:63:db:64:ac:
5b:dc:21:72:2c:c3:c6:39:42:52:8e:14:b7:e9:8a:75:3e:52:
6a:f8:e1:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 3 07:34:12 2023 by rpki-client on console-fra.rpki-client.org