Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/E5D5B9DC3l1xMfvtgNHr-sGwVds.roa
File: E5D5B9DC3l1xMfvtgNHr-sGwVds.roa (raw, json)
Hash identifier: EpO9gokJ7qawL5bF9oQWY7HiPsXyC+YtTSj1BTE6d8Q=
Subject key identifier: 13:90:F9:07:D0:C2:DE:5D:71:31:FB:ED:80:D1:EB:FA:C1:B0:55:DB
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0189086449E866A181F3C78E5DD2F94D7CA3
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/E5D5B9DC3l1xMfvtgNHr-sGwVds.roa
Signing time: Thu 29 Jun 2023 18:22:17 +0000
ROA not before: Thu 29 Jun 2023 18:22:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211440
IP address blocks: 223.27.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:08:64:49:e8:66:a1:81:f3:c7:8e:5d:d2:f9:4d:7c:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jun 29 18:22:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1390f907d0c2de5d7131fbed80d1ebfac1b055db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ae:a6:a9:31:6f:25:41:2a:44:01:f8:62:60:
39:42:b3:c8:d6:b7:3b:8e:21:6d:d0:c9:a8:0d:02:
94:37:fa:db:bb:b6:4c:c9:5c:e9:e6:89:e6:52:41:
80:9e:b1:cf:24:13:65:b9:e7:dc:28:8b:6e:c6:ff:
b0:42:ca:41:fa:86:47:a2:97:53:0f:90:b5:3a:f2:
fa:e0:0b:ee:40:dd:69:51:83:a8:d4:a8:47:db:0e:
15:78:77:e3:6b:02:fb:b5:55:15:09:aa:86:8f:a7:
93:dd:09:1e:a5:f6:46:fe:bc:4d:4d:5f:77:ea:ef:
81:f5:36:ef:8c:86:46:83:9e:78:ad:b6:b9:4e:45:
f8:5b:a0:63:75:50:fe:87:22:58:fe:1b:87:cb:04:
7d:40:45:1c:28:99:ca:19:52:74:1f:3f:dd:41:f5:
c2:8b:ef:fe:59:c5:4c:40:7e:c2:86:a7:1b:b5:e9:
fa:62:20:90:6d:62:ab:9a:62:93:66:12:4d:7f:78:
cf:3e:fb:a1:67:44:21:5d:7c:e6:1e:b0:71:db:c0:
20:90:2a:f3:6b:af:53:44:7c:fc:05:66:9b:f0:28:
f5:7d:46:e6:d3:78:5d:d7:cc:3d:05:e5:ea:35:8e:
fd:bb:5a:47:86:67:6d:35:66:a1:0d:6a:26:b3:a0:
74:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:90:F9:07:D0:C2:DE:5D:71:31:FB:ED:80:D1:EB:FA:C1:B0:55:DB
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/E5D5B9DC3l1xMfvtgNHr-sGwVds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.27.113.0/24
Signature Algorithm: sha256WithRSAEncryption
64:2d:d9:7b:1d:35:c9:25:21:34:9b:08:de:44:f5:10:8c:38:
f0:e3:9f:28:43:e8:98:6d:ca:f1:b0:43:e0:83:ca:b0:dc:eb:
30:c5:68:59:4f:40:49:64:cb:58:1f:67:80:ac:4a:d3:f1:0e:
3b:2d:ea:bc:5e:e5:b0:7b:f0:2d:79:4d:d3:08:a4:5f:40:a1:
e7:4a:70:90:fc:ad:25:2a:05:0f:a2:c1:be:18:cc:4f:90:b7:
7f:be:20:82:57:d8:16:b8:4f:eb:8c:ad:b3:34:49:8b:bd:30:
79:21:7b:9c:1b:06:3b:77:9d:eb:4f:c9:46:f4:a5:3d:7c:f3:
f2:e4:13:39:21:33:a8:b9:34:54:9d:45:b4:3f:b6:f3:f0:1b:
21:37:0b:f2:b7:42:1e:0e:10:02:07:91:7c:a7:ba:8b:e1:c6:
ad:cf:18:8c:2d:ba:79:75:cd:dc:84:1b:7e:cc:14:81:ff:22:
49:8f:55:65:ac:16:fe:fe:6a:06:57:cb:2f:f6:c5:d3:18:f8:
c4:8c:bf:bd:e2:0f:88:5a:5c:49:3a:83:2c:fe:26:39:8e:a9:
d1:01:02:9e:07:fa:ac:10:22:3c:9f:3a:f3:8a:fc:05:2e:04:
c3:86:76:f5:79:ef:42:89:41:3c:ba:e0:c8:b3:0e:df:40:c5:
70:a5:3b:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:45 2024 by rpki-client on console-fra.rpki-client.org