Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/EPL1dRVD4Gv5K0iTqgEmtoXS2Wk.roa
File: EPL1dRVD4Gv5K0iTqgEmtoXS2Wk.roa (raw, json)
Hash identifier: eRlU4o+FyTbhT0yQsYfr8jJHEz9rjnF+Fw2e4fhwiHE=
Subject key identifier: 10:F2:F5:75:15:43:E0:6B:F9:2B:48:93:AA:01:26:B6:85:D2:D9:69
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018571030E19E9C457811BFCB80415477B16
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/EPL1dRVD4Gv5K0iTqgEmtoXS2Wk.roa
Signing time: Mon 02 Jan 2023 05:45:03 +0000
ROA not before: Mon 02 Jan 2023 05:45:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56488
IP address blocks: 194.76.135.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:03:0e:19:e9:c4:57:81:1b:fc:b8:04:15:47:7b:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 2 05:45:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10f2f5751543e06bf92b4893aa0126b685d2d969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3b:fb:92:30:c9:13:60:4a:c2:39:de:be:28:
47:22:78:59:0b:d1:8d:e8:6f:ff:d6:28:ed:bd:b3:
cb:ae:1e:69:fd:be:e2:c4:11:9d:c9:f5:8b:bd:e9:
54:3a:f3:90:7f:e9:79:85:56:19:31:8f:15:8f:81:
65:93:10:e5:fe:30:21:e8:52:1d:fb:2c:e4:a8:a3:
35:33:49:6c:83:12:3e:cd:60:09:2e:84:fe:75:80:
c5:cf:fd:a1:43:e2:c1:27:59:bb:be:18:f1:54:fb:
bf:4c:87:ee:1b:6b:be:21:6d:32:f0:00:2a:88:18:
a1:1f:86:69:7f:f8:5b:b9:73:6c:c3:05:0d:cc:ad:
e8:b4:da:12:37:9d:c0:a7:83:e7:3c:75:e0:02:c8:
0c:0f:d7:e3:ce:c0:9b:62:df:84:36:d3:95:4f:48:
50:2f:3c:ab:76:4c:bc:18:5c:ff:06:73:8e:f5:a9:
15:d5:23:ba:70:41:9f:e4:82:33:39:81:63:e5:7d:
3f:28:84:3c:85:2a:40:41:fa:b3:8c:26:28:af:b5:
e7:9b:d2:5c:83:26:5d:57:42:30:b4:d8:2c:46:09:
a2:22:b9:dc:4b:1f:e4:a4:42:9d:9d:63:af:bc:b2:
c7:99:66:0e:d4:c0:9b:eb:b7:b5:a9:14:62:47:54:
72:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:F2:F5:75:15:43:E0:6B:F9:2B:48:93:AA:01:26:B6:85:D2:D9:69
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/EPL1dRVD4Gv5K0iTqgEmtoXS2Wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.135.0/24
Signature Algorithm: sha256WithRSAEncryption
89:cb:8c:cc:2c:8c:68:f0:e7:79:e5:f9:8a:bd:1f:7a:72:b9:
ec:12:55:79:a7:4e:c8:34:7b:1c:51:99:25:48:eb:bc:a2:cb:
c1:30:1a:cb:33:e9:97:aa:dd:b5:4b:3c:2c:eb:8b:ab:65:0a:
50:af:04:fd:b3:26:01:f6:30:0c:4d:08:e2:dc:ef:bd:14:0b:
77:c6:de:09:f5:fe:9f:08:ae:6f:21:e1:1a:f9:a7:80:ff:28:
3d:66:60:ef:83:3e:4f:38:c2:67:eb:71:26:7e:0b:0e:65:d1:
64:30:c3:5c:ac:ce:c5:bf:e4:b9:e2:5e:89:5f:96:f5:f3:36:
44:9f:6d:81:87:fb:15:c5:dd:89:c9:a9:1e:6f:7d:f7:4f:7c:
33:05:f4:17:5b:ce:9b:31:d4:b5:f6:e0:e7:92:11:42:79:9d:
d9:fc:c7:04:43:f3:1f:6e:7b:d1:19:a8:32:b3:21:68:48:fe:
6d:b5:e7:92:08:0e:de:a9:de:32:b4:49:f5:df:5c:38:93:34:
45:4a:46:5e:6b:a1:fa:33:a6:19:3b:65:b6:e8:04:1d:c9:2e:
12:48:9f:2e:d9:37:33:f7:ed:30:59:4d:da:6f:da:b5:e8:36:
18:de:29:3a:2a:07:ab:12:4a:3a:8d:75:aa:1c:8c:47:7d:11:
af:f8:bf:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:54 2023 by rpki-client on console-ams.rpki-client.org