Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ZnNdouN0SF199Me-_Bgy57nmQGQ.roa
File: ZnNdouN0SF199Me-_Bgy57nmQGQ.roa (raw, json)
Hash identifier: 9PphvGAGk/dWBwvTn+NMgbMgWQulV0ihXZiqzEyCrsY=
Subject key identifier: 66:73:5D:A2:E3:74:48:5D:7D:F4:C7:BE:FC:18:32:E7:B9:E6:40:64
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0188FB32978E7A84FB96DD0978170CD5F018
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ZnNdouN0SF199Me-_Bgy57nmQGQ.roa
Signing time: Tue 27 Jun 2023 04:52:56 +0000
ROA not before: Tue 27 Jun 2023 04:52:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211256
IP address blocks: 188.213.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Jul 2023 04:50:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fb:32:97:8e:7a:84:fb:96:dd:09:78:17:0c:d5:f0:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jun 27 04:52:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66735da2e374485d7df4c7befc1832e7b9e64064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a6:31:02:50:d2:12:eb:e2:12:f7:47:e9:ad:
50:20:bb:4c:12:46:e3:42:11:b4:9e:ab:66:49:28:
09:0f:5b:f0:74:34:85:9b:2b:91:71:10:e2:20:c4:
27:6a:5d:21:97:1d:b8:69:29:f1:b4:c9:a5:70:4a:
3d:b5:1d:f9:c3:da:33:27:07:5e:d7:44:89:66:f1:
9d:93:b3:1a:d7:95:d3:64:b9:12:e4:f0:83:35:5e:
1a:31:b0:f0:70:36:05:64:a5:42:9d:e6:c9:49:e8:
44:fa:fc:a8:79:07:c6:fd:33:1a:47:5a:c6:09:49:
d1:15:9a:1d:d1:e7:7a:9e:ad:91:fb:13:b7:09:db:
8c:9e:7b:78:c8:82:32:3d:6f:f6:ca:a9:f7:cb:67:
e1:27:d9:47:01:d6:04:4e:f0:63:68:39:08:65:d1:
3b:6a:56:cc:23:60:e9:28:fc:6d:3b:bf:c8:3a:12:
0f:ea:e7:3f:be:77:85:d5:1e:10:17:41:0e:0f:38:
d4:33:31:70:0b:a4:40:6f:28:e0:6d:9f:95:60:24:
44:6e:23:27:94:61:65:de:f6:9e:82:af:a2:9c:01:
12:0d:2a:23:be:ae:a3:32:6c:8a:f9:51:27:63:fc:
be:20:1f:09:a5:ed:bd:fa:7d:53:98:7b:35:22:47:
db:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:73:5D:A2:E3:74:48:5D:7D:F4:C7:BE:FC:18:32:E7:B9:E6:40:64
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ZnNdouN0SF199Me-_Bgy57nmQGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.213.203.0/24
Signature Algorithm: sha256WithRSAEncryption
80:83:cf:f4:03:23:39:ac:8e:66:be:1a:17:f6:91:da:7e:2e:
a4:b6:1f:25:80:8f:22:cf:d5:65:c6:7a:43:47:e1:af:02:42:
92:e2:30:0f:6a:8f:7c:45:2b:2f:a4:72:13:3f:58:f6:4b:04:
cc:5a:b4:60:64:97:b8:8f:8a:28:a1:12:ed:36:a3:36:6b:be:
c1:45:f9:c6:95:43:b8:fa:ee:68:24:41:a6:27:b7:f7:6d:68:
0c:05:0e:56:87:74:21:18:48:60:79:b9:4c:17:97:99:3d:bb:
cf:08:8f:72:49:69:f7:51:21:9e:8a:e8:4e:41:e9:6f:bf:c6:
c3:a7:b7:02:83:a1:ea:9f:53:6c:44:65:d5:4a:04:74:b8:b2:
42:24:f8:5b:1a:75:92:60:58:e0:b2:f2:90:d4:03:ec:28:7a:
4d:6d:bd:b1:2a:a6:ad:6b:a5:67:f0:90:a3:9f:ad:8a:0a:78:
59:48:40:c1:43:ba:fc:ca:da:07:7c:13:4c:71:59:fa:b6:52:
15:ba:a3:4a:4d:2e:77:3b:c3:70:84:a8:7c:5a:0c:2b:71:12:
5d:ad:6c:27:53:f5:3e:fa:6f:db:36:65:f0:c3:3b:7e:5e:5d:
87:0c:57:af:0f:d3:d0:c9:eb:a9:4b:cb:79:ba:90:1b:cb:54:
95:cc:ac:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:46 2024 by rpki-client on console-fra.rpki-client.org