Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/FlqK9bBKS991NLC0zr6PtR9sHNw.roa
File: FlqK9bBKS991NLC0zr6PtR9sHNw.roa (raw, json)
Hash identifier: Z7T9JtDlQQ5sc7sGZ6p1vnlpoZJpd9aZYDxDIAmjIZ8=
Subject key identifier: 16:5A:8A:F5:B0:4A:4B:DF:75:34:B0:B4:CE:BE:8F:B5:1F:6C:1C:DC
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018616BBC4F8901EE4F5AA81C7D45C2BA238
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/FlqK9bBKS991NLC0zr6PtR9sHNw.roa
Signing time: Fri 03 Feb 2023 10:04:09 +0000
ROA not before: Fri 03 Feb 2023 10:04:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208046
IP address blocks: 178.239.205.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:16:bb:c4:f8:90:1e:e4:f5:aa:81:c7:d4:5c:2b:a2:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Feb 3 10:04:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=165a8af5b04a4bdf7534b0b4cebe8fb51f6c1cdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d2:cd:cd:83:30:8f:74:96:5f:b2:14:e1:85:
f6:31:b2:31:97:44:04:f2:ce:b6:d5:b9:4c:2a:6f:
4e:ca:bc:9d:a2:44:a8:a9:a0:4e:d1:bc:57:49:4b:
ee:50:86:99:47:37:f7:31:43:2d:b4:d1:d8:3e:83:
06:c9:85:30:d5:16:3f:87:fe:e2:3f:76:1d:45:0b:
14:c7:3d:15:f3:b1:a8:f1:e7:68:57:d7:22:f6:94:
36:2b:9d:14:9c:36:da:80:cc:b7:f0:03:a5:98:90:
f7:06:6f:ae:f8:e7:e2:1d:5b:a7:0f:01:1d:14:d1:
0f:10:c6:19:ff:c0:05:98:48:9f:4c:16:8d:8d:69:
ec:d7:99:29:3f:9c:cd:f1:88:bf:46:b0:59:c6:b5:
42:fa:4a:47:3f:b3:f0:5d:6b:3f:07:c8:e8:a7:b8:
ec:f0:8d:15:ad:d3:80:cc:e1:48:07:57:a0:6a:b6:
7b:0b:c9:38:11:0f:2b:a9:1b:2f:c7:be:f6:b8:28:
90:a9:cd:d6:b5:f0:15:bd:cd:68:fa:e2:6d:8b:03:
c2:9a:88:af:aa:4c:8c:6d:62:6c:4a:31:1e:34:5c:
88:40:37:7b:39:21:29:ee:f3:a8:3f:8b:0b:b8:d1:
11:37:9e:19:3d:1b:7d:db:09:d7:33:2c:67:68:ea:
ff:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:5A:8A:F5:B0:4A:4B:DF:75:34:B0:B4:CE:BE:8F:B5:1F:6C:1C:DC
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/FlqK9bBKS991NLC0zr6PtR9sHNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.205.0/24
Signature Algorithm: sha256WithRSAEncryption
60:82:a6:67:42:66:1e:a3:bc:dc:2c:4b:e8:80:d9:78:28:f2:
91:ec:05:26:b1:85:1d:df:c7:02:8f:24:ad:80:bf:6b:a9:33:
86:1c:cd:f7:30:9b:de:91:c2:dc:78:49:69:46:19:c2:9a:46:
6d:b0:36:4f:19:38:78:d1:b7:71:da:48:58:a4:0d:3a:f6:18:
6e:42:a8:3c:80:ed:b9:f7:39:dc:0a:12:43:7d:33:36:65:4b:
bd:38:2e:32:9e:f2:af:09:b4:aa:d6:96:45:c2:f5:22:5f:ca:
1e:81:6c:d8:88:d1:b0:97:5f:cf:68:68:07:57:7b:02:ed:b2:
6b:35:b3:7f:0f:c7:6b:7a:b5:1e:6f:6e:e6:7c:47:67:ef:b7:
49:f3:6f:33:47:31:d6:ad:e3:98:67:8c:f7:d0:a5:e4:01:c2:
ba:0c:5e:33:4f:e8:43:8e:95:8f:7e:f2:02:8e:db:fb:d7:4a:
98:3f:e8:fe:98:b6:3c:b8:38:a7:ee:cf:05:51:24:d4:18:c2:
d7:c6:76:cc:14:79:f4:1e:42:f8:61:ab:70:60:ff:a8:32:ad:
e4:bf:64:23:bd:2a:45:a3:6a:ed:d9:fe:27:45:3f:22:fb:2d:
76:50:4e:94:d5:fa:33:72:29:7a:20:c7:cf:1a:ff:36:7f:8b:
76:56:65:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:03:17 2024 by rpki-client on console-ams.rpki-client.org