Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Ws08veoXT2r3JNwpGqrVgLcTJ9c.roa
File: Ws08veoXT2r3JNwpGqrVgLcTJ9c.roa (raw, json)
Hash identifier: h8ZeZeR2YShxjbhhIiw44WDOiyvqkTB56QsN5VYooow=
Subject key identifier: 5A:CD:3C:BD:EA:17:4F:6A:F7:24:DC:29:1A:AA:D5:80:B7:13:27:D7
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018A698A552CBACDE1FAC5AF14EBBEC6E84E
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Ws08veoXT2r3JNwpGqrVgLcTJ9c.roa
Signing time: Wed 06 Sep 2023 08:09:47 +0000
ROA not before: Wed 06 Sep 2023 08:09:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 188.213.202.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:69:8a:55:2c:ba:cd:e1:fa:c5:af:14:eb:be:c6:e8:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Sep 6 08:09:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5acd3cbdea174f6af724dc291aaad580b71327d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5b:2d:99:81:6a:73:d6:09:e8:ac:b8:75:c9:
cb:2a:4c:0e:58:1c:b7:d3:fc:6c:1b:de:b8:d3:88:
12:63:b0:12:6c:23:da:02:a5:48:32:3a:de:a4:b9:
c7:82:31:92:20:b8:22:74:b9:71:19:4a:c6:5c:5f:
71:6d:8f:5e:24:e6:0d:1f:6f:73:ab:25:1f:0f:35:
f9:65:e9:b4:10:6a:cd:e2:8f:67:6e:16:6d:3e:f6:
0e:4d:28:dd:2c:d9:b1:d4:1d:af:9a:1a:35:87:17:
7c:8b:5c:02:8a:10:1a:e0:87:56:d1:dc:3e:73:b6:
d9:6e:14:e9:08:0c:33:6d:9e:84:eb:9b:1d:07:0b:
4d:d4:c9:6f:17:a6:00:5e:d4:78:fd:4e:15:93:92:
19:37:9a:5c:17:be:97:d3:3d:68:56:c0:3b:f1:02:
63:a7:a7:12:6b:e9:98:5f:e5:86:e4:4d:55:29:04:
f1:2a:ce:0e:09:a1:8b:33:77:86:a7:a8:2b:f1:d2:
e4:35:fa:20:8c:e5:b6:29:0c:5e:85:c6:42:50:46:
2f:1f:40:6a:50:15:2f:70:a9:db:b6:10:45:cd:9f:
c0:06:70:e5:7e:17:f0:01:be:46:c8:f2:4d:1c:c8:
70:e3:f6:85:fb:d6:28:cc:51:67:ba:8b:59:1e:64:
d6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:CD:3C:BD:EA:17:4F:6A:F7:24:DC:29:1A:AA:D5:80:B7:13:27:D7
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Ws08veoXT2r3JNwpGqrVgLcTJ9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.213.202.0/24
Signature Algorithm: sha256WithRSAEncryption
35:af:74:38:66:2c:14:32:c7:99:85:5f:12:e2:97:80:49:8f:
54:71:94:47:ac:19:1f:5d:21:b0:bb:1c:3f:cc:94:ce:26:e1:
b9:89:05:d9:9a:9b:5a:99:0c:b7:55:10:96:39:1c:93:ec:06:
85:2f:e4:e5:5f:52:40:b7:44:c1:93:a3:bf:d2:51:3e:19:d3:
68:08:bb:03:b5:d5:bc:8b:ae:4c:27:ac:25:31:bd:03:ef:17:
a5:cb:fa:a5:43:3e:f6:3c:af:9c:10:e8:7c:3a:56:03:4a:f4:
22:17:70:16:f4:83:5c:0f:27:ee:c9:ee:89:cb:c2:97:bb:f7:
59:e6:89:b2:d4:4a:aa:08:f8:90:0f:01:28:1c:2e:80:83:cd:
89:3d:eb:93:f2:4d:16:db:9d:3a:0f:9f:fa:97:39:bb:3f:67:
ac:07:16:3e:9a:cf:62:5c:1a:16:8f:ff:ef:da:f5:1a:81:c8:
4c:cd:b1:78:15:e9:d0:9d:c4:58:70:c0:6c:05:63:ff:39:f3:
d9:53:76:d5:51:e1:08:49:da:91:58:e5:24:41:16:db:f6:d2:
13:2e:e4:43:7c:94:8c:ee:ca:63:ff:32:b6:95:51:62:ea:7c:
7a:a3:4f:19:75:b1:0a:ff:dc:a5:d4:60:11:82:be:df:6f:ae:
3c:ef:6b:9a
-----BEGIN CERTIFICATE-----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Generated at Fri Sep 8 09:06:13 2023 by rpki-client on console-fra.rpki-client.org