Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/JUoGVYipb-y9_1y2rNTF4HtaAfw.roa
File: JUoGVYipb-y9_1y2rNTF4HtaAfw.roa (raw, json)
Hash identifier: uhO5TSjVRTNwLjOF37h7T+e0ffCT5OhF3m1UmUfPIV4=
Subject key identifier: 25:4A:06:55:88:A9:6F:EC:BD:FF:5C:B6:AC:D4:C5:E0:7B:5A:01:FC
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018571032171ADC14C2981E5E0F7CF195904
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/JUoGVYipb-y9_1y2rNTF4HtaAfw.roa
Signing time: Mon 02 Jan 2023 05:45:08 +0000
ROA not before: Mon 02 Jan 2023 05:45:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212728
IP address blocks: 178.239.197.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:03:21:71:ad:c1:4c:29:81:e5:e0:f7:cf:19:59:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 2 05:45:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=254a065588a96fecbdff5cb6acd4c5e07b5a01fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:22:03:b2:78:85:82:d1:b1:61:e4:b3:a3:79:
23:90:13:1a:d9:7e:09:d5:48:9f:9c:38:84:ef:a3:
71:81:33:22:ae:ff:13:71:0a:a8:20:9f:7d:c3:e5:
40:d5:5c:83:c9:b8:43:e3:fa:14:80:4d:86:dd:5d:
32:35:21:5e:8d:22:d6:9b:92:65:3c:38:85:45:8d:
9b:8e:01:73:d0:e4:27:96:28:73:c4:87:eb:da:e0:
1e:dd:f5:02:8a:c3:94:77:dc:4f:1e:82:a8:76:ec:
5f:10:bf:74:0d:87:37:cf:32:30:e0:b4:48:46:68:
1a:30:ee:d0:21:74:8d:00:1a:88:07:1c:6a:69:51:
7d:f0:23:7b:a6:e4:45:4b:03:01:bb:36:10:d9:c8:
43:08:0a:94:39:8b:e6:d0:01:96:e9:cf:13:ef:70:
6c:4a:a2:a6:ea:bc:81:3e:d8:fd:8c:07:35:02:0c:
8a:d5:95:4d:87:90:60:78:3d:37:f7:2b:ba:41:cd:
9c:a1:bf:2e:bb:3a:e6:f8:f4:32:da:9c:8a:87:f6:
26:37:ef:11:f5:ab:55:b8:94:f4:02:d1:87:21:e3:
64:b9:5c:21:ac:86:dd:76:25:b1:7b:2f:aa:57:a6:
e2:af:27:75:9b:e0:65:45:65:bc:7e:88:69:b1:b0:
06:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:4A:06:55:88:A9:6F:EC:BD:FF:5C:B6:AC:D4:C5:E0:7B:5A:01:FC
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/JUoGVYipb-y9_1y2rNTF4HtaAfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.197.0/24
Signature Algorithm: sha256WithRSAEncryption
16:06:53:16:d8:23:c9:22:18:23:c0:6e:38:74:02:69:6a:a5:
2b:10:0e:d5:7d:a0:1a:36:b3:68:cc:57:d6:da:98:37:e8:a1:
3a:30:ec:ac:6a:2d:ef:2b:29:12:a6:5a:82:ed:35:e6:dc:ec:
56:e2:be:67:27:9c:2b:19:77:83:1f:be:9d:c4:e0:7b:5e:6f:
ba:f6:a0:b3:6e:84:02:37:8f:20:01:db:a4:7b:d4:49:3b:47:
61:10:11:65:28:48:33:1b:1b:e0:dc:b8:6b:52:6c:8e:92:50:
78:9a:0b:2d:5e:d9:bc:50:4c:29:6d:a4:9c:5d:31:9f:9f:3f:
09:81:b5:e6:9c:7b:15:9b:b5:56:ff:3b:18:a6:e4:ce:ba:78:
61:c9:8e:dc:a2:97:43:2a:16:bd:60:f0:c1:d1:33:18:b9:22:
d0:06:1b:ed:2e:67:a2:08:86:e7:b9:ce:c2:e1:63:ca:ba:bd:
6c:6d:ca:45:4b:ab:85:17:a4:4b:87:17:60:49:9e:2f:f3:b7:
44:7b:80:e7:23:0d:90:5e:b0:51:78:7b:51:f0:d8:f8:17:a6:
6f:67:b7:06:e6:d1:1e:c4:f2:f5:fc:7a:8f:75:e2:5b:f1:c9:
6e:73:f6:8e:9a:9e:65:99:c1:ae:71:b3:04:4c:9c:f6:b0:fa:
59:0e:2d:9c
-----BEGIN CERTIFICATE-----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Generated at Sun Nov 19 14:15:41 2023 by rpki-client on console-fra.rpki-client.org