Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/EjfTpQpfHn2estKxkiSSKFJX_Jo.roa
File: EjfTpQpfHn2estKxkiSSKFJX_Jo.roa (raw, json)
Hash identifier: 05i0grN2C6OBnPQT/2BdMaig/WY3UO1Q9K8GmtiZ2mw=
Subject key identifier: 12:37:D3:A5:0A:5F:1E:7D:9E:B2:D2:B1:92:24:92:28:52:57:FC:9A
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 01876BE32CB7D73A9C3C4CBC99890E96F6DA
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/EjfTpQpfHn2estKxkiSSKFJX_Jo.roa
Signing time: Mon 10 Apr 2023 15:57:42 +0000
ROA not before: Mon 10 Apr 2023 15:57:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 188.214.27.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6b:e3:2c:b7:d7:3a:9c:3c:4c:bc:99:89:0e:96:f6:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Apr 10 15:57:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1237d3a50a5f1e7d9eb2d2b1922492285257fc9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:27:97:d9:d6:c4:44:40:8b:4d:21:b9:7d:f8:
85:0b:80:0c:22:cd:dd:ab:e3:fd:60:0a:92:5d:b0:
97:c2:6b:4f:c5:f9:47:4b:d3:72:20:75:57:dd:77:
0d:5f:8b:55:8e:87:30:e6:a3:d4:ff:f9:81:7b:ee:
72:a8:1f:fd:0c:86:39:73:25:83:c0:7b:b5:b9:6e:
20:8a:21:29:b4:7a:36:af:29:79:99:bd:ff:20:75:
a9:fa:e7:33:a0:90:ae:d7:72:88:05:c2:e2:66:90:
ea:9c:bd:22:f9:8a:18:ec:73:64:03:20:39:1a:11:
f0:40:f5:0e:7d:27:22:64:ff:14:6d:9c:7f:33:b0:
0b:78:44:96:e0:f0:c8:4a:99:10:af:50:56:88:99:
99:77:54:ee:26:d1:40:31:4d:21:6a:a0:1a:60:64:
69:2d:8a:bb:d6:b7:de:41:dc:03:9e:66:bc:69:a0:
9b:ce:68:63:88:06:8a:3b:fb:fa:c9:f3:05:eb:f9:
f4:2f:33:e6:d5:9e:53:59:62:14:45:36:e7:d2:34:
12:3d:4e:70:ed:d6:25:18:bd:ff:57:23:e8:95:1c:
ff:a5:1d:48:3a:37:ba:03:ae:c3:f9:9e:b3:c8:76:
b8:87:07:90:99:d1:fb:fa:ed:82:3e:a7:45:a3:9b:
6a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:37:D3:A5:0A:5F:1E:7D:9E:B2:D2:B1:92:24:92:28:52:57:FC:9A
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/EjfTpQpfHn2estKxkiSSKFJX_Jo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.27.0/24
Signature Algorithm: sha256WithRSAEncryption
81:64:0b:1f:9f:e6:8f:c7:08:a9:ed:11:01:30:12:9f:d6:85:
54:e1:b8:83:34:9c:a8:a5:ee:de:fb:2f:c3:00:d4:05:ee:85:
0d:18:5f:97:e5:a2:f0:d9:24:31:d7:61:07:50:4e:30:0f:3b:
bc:2c:43:da:50:b0:ff:b3:fd:dc:03:96:82:45:31:77:63:37:
bd:41:96:d4:e1:a1:01:b2:65:dc:f6:b1:5e:a2:84:fa:60:8c:
86:86:f9:ca:b7:0a:9c:fd:4d:a6:32:3f:28:94:55:30:ea:b2:
99:e6:f9:eb:40:7d:0b:25:25:35:fa:50:2d:d1:94:cf:73:4d:
00:25:38:f0:1f:40:71:a1:36:54:f2:a6:1f:2d:31:75:65:d6:
85:d7:34:97:68:fb:f7:7c:dc:4e:5a:bb:30:a3:0b:77:ab:8f:
8e:34:de:05:51:71:58:13:55:97:fc:e0:cf:5e:6e:9a:22:b3:
42:fe:15:8c:4d:a0:f6:a3:5b:c8:92:a6:d7:8a:34:ea:f0:ad:
55:02:e6:fe:31:63:6d:09:22:ad:50:50:8b:4f:3f:1e:08:0d:
62:04:83:f8:be:0f:65:52:5c:5a:d6:f2:0a:5a:80:ed:a8:29:
9f:da:12:36:a2:85:67:a2:75:6b:bf:6c:06:23:03:4f:ea:5c:
2d:60:7c:60
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdr4yy31zqcPEy8mYkOlvbaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw
NWIwZTIwHhcNMjMwNDEwMTU1NzQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjM3ZDNhNTBhNWYxZTdkOWViMmQyYjE5MjI0OTIyODUyNTdmYzlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgyeX2dbERECLTSG5ffiFC4AMIs3d
q+P9YAqSXbCXwmtPxflHS9NyIHVX3XcNX4tVjocw5qPU//mBe+5yqB/9DIY5cyWD
wHu1uW4giiEptHo2ryl5mb3/IHWp+uczoJCu13KIBcLiZpDqnL0i+YoY7HNkAyA5
GhHwQPUOfSciZP8UbZx/M7ALeESW4PDISpkQr1BWiJmZd1TuJtFAMU0haqAaYGRp
LYq71rfeQdwDnma8aaCbzmhjiAaKO/v6yfMF6/n0LzPm1Z5TWWIURTbn0jQSPU5w
7dYlGL3/VyPolRz/pR1IOje6A67D+Z6zyHa4hweQmdH7+u2CPqdFo5tqeQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBI306UKXx59nrLSsZIkkihSV/yaMB8GA1UdIwQY
MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt
MmNjZWRiOTY2YTU4LzEvRWpmVHBRcGZIbjJlc3RLeGtpU1NLRkpYX0pvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4
LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvNYbMA0G
CSqGSIb3DQEBCwUAA4IBAQCBZAsfn+aPxwip7REBMBKf1oVU4biDNJyope7e+y/D
ANQF7oUNGF+X5aLw2SQx12EHUE4wDzu8LEPaULD/s/3cA5aCRTF3Yze9QZbU4aEB
smXc9rFeooT6YIyGhvnKtwqc/U2mMj8olFUw6rKZ5vnrQH0LJSU1+lAt0ZTPc00A
JTjwH0BxoTZU8qYfLTF1ZdaF1zSXaPv3fNxOWrswowt3q4+ONN4FUXFYE1WX/ODP
Xm6aIrNC/hWMTaD2o1vIkqbXijTq8K1VAub+MWNtCSKtUFCLTz8eCA1iBIP4vg9l
Ulxa1vIKWoDtqCmf2hI2ooVnonVrv2wGIwNP6lwtYHxg
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:00 2023 by rpki-client on console-fra.rpki-client.org