Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ch8Npoy8Cwvug7EGGhLhy99MNgA.roa
File: ch8Npoy8Cwvug7EGGhLhy99MNgA.roa (raw, json)
Hash identifier: jDZh1tev+1BwyD1ryGYjJcd9EctKEm+T1QCBMNGW16o=
Subject key identifier: 72:1F:0D:A6:8C:BC:0B:0B:EE:83:B1:06:1A:12:E1:CB:DF:4C:36:00
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018617593EAC3437E3D02E0678D8B99B19AF
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ch8Npoy8Cwvug7EGGhLhy99MNgA.roa
Signing time: Fri 03 Feb 2023 12:56:10 +0000
ROA not before: Fri 03 Feb 2023 12:56:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212219
IP address blocks: 78.142.243.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:17:59:3e:ac:34:37:e3:d0:2e:06:78:d8:b9:9b:19:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Feb 3 12:56:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=721f0da68cbc0b0bee83b1061a12e1cbdf4c3600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:03:a6:60:ba:16:1c:50:3a:f4:e6:30:b9:0e:
e4:cf:67:8d:a7:51:9e:80:51:e5:56:e5:81:9d:76:
09:c1:90:22:07:d6:c0:e4:f1:f7:be:10:54:70:25:
24:ba:14:67:e6:7c:92:9f:36:48:63:53:3f:8e:e0:
6e:8a:80:9d:d9:f1:cd:8f:d8:11:f4:af:14:7f:3d:
17:09:df:a9:2f:a8:2b:c2:6e:99:6f:71:07:63:cd:
55:36:45:29:3a:29:91:4f:e7:97:43:3e:71:27:d5:
6a:16:67:22:04:bc:c0:aa:7f:c2:4b:88:c5:ec:a8:
80:7d:eb:b8:ba:e3:e4:41:25:b2:ac:32:9a:54:4f:
60:b1:57:a2:c6:62:20:76:17:a0:64:50:fd:35:97:
54:07:b5:a2:13:27:a8:41:ef:f0:97:c3:01:97:f0:
16:86:84:46:15:5b:eb:98:d3:22:00:39:0d:67:b2:
5a:76:30:a4:7f:0f:ce:b2:de:66:3e:20:6e:36:45:
16:90:0f:28:9a:a5:69:00:c4:ce:b5:4e:b9:fb:5a:
3f:8d:85:bc:df:6c:d6:5b:e3:57:b5:4c:b5:8c:61:
f1:e3:35:e0:74:14:84:8a:9b:8f:94:0d:f6:da:a8:
22:0e:93:cd:5d:73:a7:7d:b5:d0:97:bd:db:13:31:
6e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:1F:0D:A6:8C:BC:0B:0B:EE:83:B1:06:1A:12:E1:CB:DF:4C:36:00
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ch8Npoy8Cwvug7EGGhLhy99MNgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.142.243.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:b3:20:55:43:07:5b:71:9b:59:a0:e6:9f:02:9c:5a:63:b0:
db:99:36:48:c0:11:a9:96:58:ef:23:eb:a6:65:75:66:a0:ee:
71:16:ef:ff:ed:6a:c0:11:83:4a:6d:34:22:21:69:01:de:41:
5d:86:c5:3c:5e:a9:18:f2:40:5a:13:23:f1:29:c8:67:ed:45:
79:a3:41:8d:1d:3f:9e:f8:99:8f:7b:de:db:3a:a2:bb:1f:e9:
8d:c3:f3:6c:7a:51:37:38:69:e5:df:10:90:38:f1:99:5c:21:
02:77:2c:f6:1a:66:ac:39:11:58:74:46:7d:bb:2f:b1:7a:5d:
eb:fd:41:36:3e:4a:9b:7b:15:c0:25:a6:70:92:a9:b1:b6:57:
75:3c:1d:8a:5f:ab:ec:4a:e1:93:f8:ec:96:b9:b4:c6:57:44:
71:29:b9:05:a6:35:44:e9:d0:20:2b:5d:c0:13:21:89:17:6f:
b5:27:09:0e:44:74:ec:c8:52:a6:ac:35:75:3a:8e:a0:d2:00:
12:95:6a:57:58:fe:fa:2b:d1:24:a9:79:b9:2a:65:07:65:15:
af:71:01:d3:ac:e9:e4:84:a5:2c:02:1f:1b:e0:d2:c9:4a:a7:
7a:88:ac:f3:1d:9b:2e:1c:f3:5a:75:10:c6:96:ca:70:46:97:
f7:95:16:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:02 2023 by rpki-client on console-fra.rpki-client.org