Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/E6CvQVPvoEguj0j1dG86d4y7PJc.roa
File: E6CvQVPvoEguj0j1dG86d4y7PJc.roa (raw, json)
Hash identifier: SLHg+XpcROqdMY47p3cYye2X7IvSx3n3V53WtC/8vrU=
Subject key identifier: 13:A0:AF:41:53:EF:A0:48:2E:8F:48:F5:74:6F:3A:77:8C:BB:3C:97
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018CC50117FF71E022DEA49987F8D61C173E
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/E6CvQVPvoEguj0j1dG86d4y7PJc.roa
Signing time: Mon 01 Jan 2024 12:30:32 +0000
ROA not before: Mon 01 Jan 2024 12:30:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57935
IP address blocks: 178.239.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 12:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:17:ff:71:e0:22:de:a4:99:87:f8:d6:1c:17:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 1 12:30:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13a0af4153efa0482e8f48f5746f3a778cbb3c97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:54:27:24:0d:81:ef:6a:a8:a1:5c:db:09:4d:
fd:2d:5f:83:b7:b3:64:b9:ca:b0:29:f0:f2:44:12:
d8:1d:0c:e3:f9:17:d2:4c:e4:21:3b:eb:96:23:72:
94:6f:b2:73:6f:ca:42:98:c7:94:81:16:65:4b:46:
60:63:e9:51:7a:07:9b:38:cf:3b:a6:8d:33:64:97:
08:53:bd:ac:5d:2f:bd:8a:19:d5:da:fb:0a:97:9b:
d8:9c:b2:e3:1a:d3:50:7e:cc:bf:15:55:66:09:d2:
87:dd:df:3d:25:96:67:9b:5e:7b:43:78:6a:09:21:
93:1e:c0:18:f2:d9:da:78:7e:f0:1a:8b:47:2f:6c:
0b:76:47:11:9f:6d:ee:8e:4e:74:64:89:0c:e4:0e:
da:98:3b:83:a9:1f:9a:28:1a:fd:96:65:7c:13:2f:
9e:de:24:cc:de:bb:e3:49:70:c9:e8:a7:11:41:b3:
f5:a5:fb:58:90:65:7f:b8:37:59:c0:62:7f:dd:0f:
44:5a:1d:81:72:c2:f5:5b:01:77:a0:9e:b8:90:6e:
5c:6a:14:ed:97:70:3c:17:9a:6a:78:dd:79:68:2a:
b1:98:cf:00:4d:16:eb:c2:bb:99:c9:35:43:6e:fb:
4a:00:b2:79:9a:5f:f6:eb:da:d2:81:02:51:2f:8d:
8f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:A0:AF:41:53:EF:A0:48:2E:8F:48:F5:74:6F:3A:77:8C:BB:3C:97
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/E6CvQVPvoEguj0j1dG86d4y7PJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.204.0/24
Signature Algorithm: sha256WithRSAEncryption
70:71:2f:fb:77:4e:3a:ef:9d:d9:4c:32:f2:ad:73:6b:77:a7:
eb:7c:98:9b:8c:bb:f6:f4:63:2c:8e:59:15:3c:98:9c:e1:b9:
35:5a:2e:66:94:8f:79:46:04:34:16:83:8c:e6:28:7b:48:b2:
0d:a4:c3:dc:88:7a:3f:32:4e:19:fb:5f:a5:7c:61:ab:c5:e1:
ba:6e:11:6a:12:46:7d:ae:0d:49:ed:39:f0:82:48:08:10:5e:
20:d3:57:8a:98:01:dd:d5:2d:07:18:96:02:d7:92:f2:30:b4:
c8:25:09:d1:29:2a:c4:ba:44:6a:8f:6b:28:81:60:0a:80:fa:
4b:95:c4:80:28:c1:7c:46:4d:42:04:af:a0:18:92:28:7b:63:
6d:d3:96:e0:17:7f:fa:0e:6c:fc:fe:b8:f9:4c:ad:5b:95:47:
37:c5:57:1a:1f:86:25:f8:a7:d5:15:43:b3:1c:b3:5b:a5:66:
92:a6:2f:09:49:25:31:ef:64:65:26:a7:bf:10:03:55:6c:8c:
09:b6:9a:2f:4f:72:08:28:7b:ed:93:55:04:0e:75:66:07:85:
7e:ae:a1:ea:0c:5e:d8:a5:c9:32:c9:3e:d6:96:f7:93:c6:95:
4c:08:36:e9:bc:51:6c:e0:bc:9e:7a:1c:fd:54:9c:56:63:2d:
62:76:af:00
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFARf/ceAi3qSZh/jWHBc+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw
NWIwZTIwHhcNMjQwMTAxMTIzMDMyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxM2EwYWY0MTUzZWZhMDQ4MmU4ZjQ4ZjU3NDZmM2E3NzhjYmIzYzk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFQnJA2B72qooVzbCU39LV+Dt7Nk
ucqwKfDyRBLYHQzj+RfSTOQhO+uWI3KUb7Jzb8pCmMeUgRZlS0ZgY+lRegebOM87
po0zZJcIU72sXS+9ihnV2vsKl5vYnLLjGtNQfsy/FVVmCdKH3d89JZZnm157Q3hq
CSGTHsAY8tnaeH7wGotHL2wLdkcRn23ujk50ZIkM5A7amDuDqR+aKBr9lmV8Ey+e
3iTM3rvjSXDJ6KcRQbP1pftYkGV/uDdZwGJ/3Q9EWh2BcsL1WwF3oJ64kG5cahTt
l3A8F5pqeN15aCqxmM8ATRbrwruZyTVDbvtKALJ5ml/269rSgQJRL42PiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBOgr0FT76BILo9I9XRvOneMuzyXMB8GA1UdIwQY
MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt
MmNjZWRiOTY2YTU4LzEvRTZDdlFWUHZvRWd1ajBqMWRHODZkNHk3UEpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4
LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsu/MMA0G
CSqGSIb3DQEBCwUAA4IBAQBwcS/7d046753ZTDLyrXNrd6frfJibjLv29GMsjlkV
PJic4bk1Wi5mlI95RgQ0FoOM5ih7SLINpMPciHo/Mk4Z+1+lfGGrxeG6bhFqEkZ9
rg1J7TnwgkgIEF4g01eKmAHd1S0HGJYC15LyMLTIJQnRKSrEukRqj2sogWAKgPpL
lcSAKMF8Rk1CBK+gGJIoe2Nt05bgF3/6Dmz8/rj5TK1blUc3xVcaH4Yl+KfVFUOz
HLNbpWaSpi8JSSUx72RlJqe/EANVbIwJtpovT3IIKHvtk1UEDnVmB4V+rqHqDF7Y
pckyyT7WlveTxpVMCDbpvFFs4Lyeehz9VJxWYy1idq8A
-----END CERTIFICATE-----
Generated at Fri Feb 2 17:38:55 2024 by rpki-client on console-fra.rpki-client.org