Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/HcbiwDhD1IWUXoLATAS0ZTJj0Oc.roa
File: HcbiwDhD1IWUXoLATAS0ZTJj0Oc.roa (raw, json)
Hash identifier: 8QZ7CpD54v2ESL6Q/QPWN4Ar7eh0w5QJ8qAX8L7Zwfw=
Subject key identifier: 1D:C6:E2:C0:38:43:D4:85:94:5E:82:C0:4C:04:B4:65:32:63:D0:E7
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018CC50128ADB317FA163067EACB3C3AFA51
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/HcbiwDhD1IWUXoLATAS0ZTJj0Oc.roa
Signing time: Mon 01 Jan 2024 12:30:36 +0000
ROA not before: Mon 01 Jan 2024 12:30:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208046
IP address blocks: 178.239.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 04 May 2024 13:08:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:28:ad:b3:17:fa:16:30:67:ea:cb:3c:3a:fa:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 1 12:30:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1dc6e2c03843d485945e82c04c04b4653263d0e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:68:7f:b8:e3:af:d0:d7:99:71:85:a1:8f:ba:
6e:f4:91:6a:86:b5:e5:0a:78:11:70:6f:8c:c9:cf:
97:20:21:27:e5:65:c1:c8:d6:26:23:9d:96:f3:83:
cd:a2:54:3e:ce:7a:0e:8a:55:7c:f0:3c:80:e1:d3:
4a:6e:3d:c0:df:f6:4d:f5:e1:2b:da:36:44:1f:c8:
8f:d4:fc:e7:40:53:6c:30:dc:7f:52:60:5b:ff:82:
34:d2:14:66:d5:e7:0e:d9:2e:c3:ef:27:1c:25:4d:
24:0d:22:44:0a:ce:48:c3:7d:e6:c9:01:de:74:e7:
a9:da:eb:e5:a0:2f:91:09:e5:47:32:f5:9a:58:64:
22:ab:b5:3c:a5:b7:5b:71:4d:4b:ae:45:00:8a:dd:
47:55:75:e4:b4:15:d7:44:24:07:cf:53:45:87:e2:
3f:b4:e7:e1:2c:18:cb:75:b5:09:dd:0f:e8:9d:d0:
1c:3f:cd:d5:bc:2e:cc:fd:fc:56:02:0c:20:23:07:
6b:cf:bf:d6:8c:a9:8b:29:c5:ad:20:b6:cf:cc:7f:
bf:ff:61:05:75:c2:82:81:0a:7c:26:25:32:a5:88:
e7:6d:df:f6:9c:16:62:dd:c0:19:45:e4:48:49:24:
01:07:3f:c4:f4:11:5c:84:af:17:8f:4e:3a:31:78:
a6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:C6:E2:C0:38:43:D4:85:94:5E:82:C0:4C:04:B4:65:32:63:D0:E7
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/HcbiwDhD1IWUXoLATAS0ZTJj0Oc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.205.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:10:a6:60:4f:78:7a:fd:f9:ce:e2:b4:23:37:2a:77:31:d1:
ba:8a:42:3a:50:07:a0:87:1b:c9:2a:15:7b:fe:1f:a5:c8:ef:
7a:22:c4:53:56:f9:9a:68:01:1f:5b:49:b2:52:95:57:9f:cd:
4e:e7:17:68:e3:a7:f8:47:1c:f0:91:82:ca:28:b1:2c:f1:3a:
46:3d:5e:b3:06:59:58:d9:73:71:74:a0:58:1b:16:bc:01:a6:
86:e6:2d:d4:0b:a2:3b:0c:00:52:8c:ad:b6:3e:e0:f4:bb:0f:
57:90:58:a7:f7:cb:74:58:b9:97:fd:e1:9a:aa:4b:51:49:11:
fd:1d:93:62:3f:f4:db:1b:2a:49:37:1e:fe:b4:3c:0c:47:e3:
2d:4d:10:07:36:e0:1d:8f:2b:9e:0f:c7:0a:eb:fb:d8:0f:bd:
35:b6:89:c7:97:60:ac:33:fc:81:97:69:b4:44:34:8c:70:80:
60:0f:5b:ba:a0:21:e1:47:93:32:21:06:00:c6:8a:5b:cc:80:
11:c6:4c:33:81:4d:3c:41:94:1b:9f:e0:4e:37:d6:84:0c:60:
cb:55:82:73:d0:0e:13:ae:77:05:36:74:80:e0:36:a4:09:a7:
3a:e4:ac:82:9c:ea:75:c6:00:c7:a6:df:b6:0e:a0:18:72:b1:
ac:19:6a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 15:08:08 2024 by rpki-client on console-ams.rpki-client.org