Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/PvLv_nbF3JjQcRzzku1_gvScTaM.roa
File: PvLv_nbF3JjQcRzzku1_gvScTaM.roa (raw, json)
Hash identifier: 5cUi5GGISUfS0KhW02l+zS2C8FG4eCZoYZEMMGt85GM=
Subject key identifier: 3E:F2:EF:FE:76:C5:DC:98:D0:71:1C:F3:92:ED:7F:82:F4:9C:4D:A3
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 01857103141EE3DB8341E423A02AB96FD7C1
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/PvLv_nbF3JjQcRzzku1_gvScTaM.roa
Signing time: Mon 02 Jan 2023 05:45:05 +0000
ROA not before: Mon 02 Jan 2023 05:45:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201814
IP address blocks: 185.241.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Feb 2023 07:56:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:03:14:1e:e3:db:83:41:e4:23:a0:2a:b9:6f:d7:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 2 05:45:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ef2effe76c5dc98d0711cf392ed7f82f49c4da3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:21:f3:d1:6d:4d:69:9e:44:d0:f3:4e:ce:fe:
24:23:c9:ac:5e:cb:cd:eb:04:2b:69:f2:9b:81:b8:
d3:b3:7c:f5:6a:41:00:9b:59:94:e2:89:43:81:e0:
27:31:ff:80:9b:65:33:62:5a:e7:41:2b:be:d8:a5:
1c:78:87:7c:71:ec:de:86:79:44:1a:f1:d7:c5:3a:
57:24:9d:0b:c6:c1:22:cc:b5:82:fa:c5:9f:d2:0a:
f8:30:c3:67:7a:9a:6e:eb:18:d3:4e:6c:55:63:18:
f7:ae:d2:32:6b:9e:50:51:6a:cb:0e:6c:68:7d:93:
14:3c:20:4c:cb:85:48:c7:21:fe:93:ef:19:ef:7b:
3b:af:12:43:fc:c0:be:d7:98:3d:9e:8b:17:31:4a:
ba:07:70:b0:6a:11:6b:ba:28:ef:aa:9e:48:65:75:
32:df:60:c0:a5:c8:17:03:32:dc:7c:44:67:34:9b:
be:64:65:15:4f:ea:c3:37:0d:54:fb:90:9c:4f:71:
f8:c0:20:75:81:c8:a1:38:99:72:47:1c:57:b8:89:
0e:53:8a:39:a0:07:2e:ad:52:36:bf:4d:fb:df:1a:
3c:ec:1d:41:28:07:68:f0:bf:7b:cf:15:2c:56:4d:
79:24:71:56:cb:39:e5:a5:16:80:ed:3d:de:2f:c2:
f6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:F2:EF:FE:76:C5:DC:98:D0:71:1C:F3:92:ED:7F:82:F4:9C:4D:A3
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/PvLv_nbF3JjQcRzzku1_gvScTaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.208.0/24
Signature Algorithm: sha256WithRSAEncryption
22:3f:96:57:04:4e:9d:db:f1:9f:d0:0b:02:41:6b:55:a7:dd:
7d:63:dd:51:98:69:dd:c2:b4:8f:b6:26:4c:28:b2:38:fc:d5:
d5:9a:34:94:01:a1:33:ac:c0:60:6b:bf:a3:9a:98:01:f0:93:
11:c1:31:98:42:91:c0:77:56:6a:70:9b:ec:72:01:ec:a5:3e:
09:77:da:4f:e1:eb:a5:58:1a:ef:96:42:46:38:f6:37:95:ca:
c6:0a:12:b5:ba:9f:21:d3:22:6d:62:1c:83:47:f2:ed:2c:b0:
26:82:c3:c9:94:75:c8:66:f1:9d:63:b5:ea:6c:d9:9b:23:99:
6f:31:18:8c:5a:c6:9e:65:f1:dc:f1:1a:c3:33:c8:51:63:57:
37:fa:c4:80:32:11:fe:1e:d4:9c:2a:e5:e9:e5:c7:ed:ae:77:
1c:b1:43:0c:c7:56:64:03:d1:1f:ee:52:8c:52:41:41:31:c5:
89:aa:be:54:84:69:b3:fa:98:8d:fe:69:5d:95:26:45:59:40:
a6:59:ee:2c:2f:5d:16:a5:4e:b0:e1:67:5d:ff:3f:aa:f6:f7:
16:eb:5e:0a:c1:7b:c6:32:91:19:1b:76:41:c9:ce:13:b6:b4:
80:5d:ee:30:db:11:19:81:da:18:48:9d:e0:4a:89:f4:27:55:
ac:05:13:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:45 2024 by rpki-client on console-fra.rpki-client.org