Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/dC_om5Sv11OPioKap1NOG2tOyxc.roa
File: dC_om5Sv11OPioKap1NOG2tOyxc.roa (raw, json)
Hash identifier: rshmOgiHtiWE4XAV5zt71IYI6ue5nN4TWQb5aoH6B0A=
Subject key identifier: 74:2F:E8:9B:94:AF:D7:53:8F:8A:82:9A:A7:53:4E:1B:6B:4E:CB:17
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0186728E0CEC64CD4F0B28C0745BA18270F1
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/dC_om5Sv11OPioKap1NOG2tOyxc.roa
Signing time: Tue 21 Feb 2023 05:59:17 +0000
ROA not before: Tue 21 Feb 2023 05:59:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199950
IP address blocks: 188.213.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Mar 2023 06:24:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:72:8e:0c:ec:64:cd:4f:0b:28:c0:74:5b:a1:82:70:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Feb 21 05:59:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=742fe89b94afd7538f8a829aa7534e1b6b4ecb17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:54:8d:d7:7e:59:7c:bb:64:4d:90:fb:da:ea:
f1:0a:b5:1e:37:98:09:e1:ce:76:1a:45:c6:a8:81:
3d:d2:e0:55:5f:32:f2:1b:32:46:6d:51:e0:38:db:
6b:9a:68:94:a4:cb:49:9d:d9:93:98:32:53:86:1c:
8a:75:03:cd:51:4d:7e:44:b0:90:ba:5d:ed:8a:37:
cd:c2:36:06:e7:85:ec:b0:a7:6f:68:1a:f6:6d:ac:
a2:82:9a:de:80:ab:de:94:f8:68:f2:b3:85:24:b5:
14:9a:6c:ca:ba:ce:70:7e:d2:06:33:93:fc:a6:e0:
70:ef:f8:09:06:6b:ec:96:5a:28:be:bf:12:7c:98:
8a:e3:b6:1f:7c:72:85:47:d0:ff:63:48:2d:1b:02:
32:22:b6:a0:22:96:2d:b4:58:e5:79:98:99:e3:0d:
5d:35:85:5e:ac:93:4b:f9:23:b7:16:e5:c2:76:b5:
57:c6:25:0a:50:2c:0a:3c:7b:3a:ad:34:c0:d2:68:
6b:be:fe:cb:7f:3c:cb:18:54:4f:6d:36:5c:60:ae:
af:a1:1c:53:69:f2:54:07:43:c3:6e:94:3e:44:91:
bb:34:4d:3c:6c:7d:ce:fa:d9:c2:85:21:4a:d3:1b:
53:e2:10:ff:4a:ee:29:a2:63:35:5c:07:3b:34:6e:
d2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:2F:E8:9B:94:AF:D7:53:8F:8A:82:9A:A7:53:4E:1B:6B:4E:CB:17
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/dC_om5Sv11OPioKap1NOG2tOyxc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.213.203.0/24
Signature Algorithm: sha256WithRSAEncryption
05:e8:61:99:2c:6d:40:69:21:7e:a7:28:05:8e:0a:49:59:40:
04:61:a9:3c:1f:8f:eb:ac:9a:1d:ba:8e:ac:ac:d5:76:bd:f6:
ec:37:09:00:cc:42:43:0d:6e:63:00:1b:3a:85:7c:7c:64:99:
0b:2d:2a:79:00:bb:72:bc:c6:f9:c2:7b:9f:72:e8:a2:26:1f:
63:f3:eb:2a:18:37:c6:68:21:e0:12:c6:c7:ce:db:85:a9:49:
b1:e2:2c:a4:3a:1e:8c:59:76:da:5e:f7:1b:91:68:b2:3f:7f:
8a:66:b5:e8:5a:b6:3c:3e:77:4f:10:53:e6:07:35:1a:f8:d2:
9e:72:07:5e:f9:3b:f9:b7:a0:ee:59:9f:80:11:a4:5a:f9:6e:
d6:e1:eb:c5:68:1e:49:06:91:82:20:0c:86:be:cd:f5:28:dd:
72:7a:06:e3:be:a7:ec:8c:69:88:85:55:ec:f1:0d:d2:0f:7a:
53:f0:90:87:88:63:2f:d8:d1:6c:dc:8e:b7:67:e6:31:ef:5a:
e5:dc:40:5c:67:a3:7b:51:e5:22:59:53:48:67:f2:e7:33:50:
f3:3a:18:e7:e3:6a:7d:29:a5:60:fc:8e:ef:50:30:08:80:41:
9a:d9:92:96:c5:ac:95:26:2b:c3:b4:5e:97:c9:39:85:a3:3e:
fa:6c:5f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:46 2024 by rpki-client on console-fra.rpki-client.org