Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/di6S7w2FqCYWZnjiTVJcTWmSKp0.roa
File: di6S7w2FqCYWZnjiTVJcTWmSKp0.roa (raw, json)
Hash identifier: A1m0QnKQgkAMztjGtgNLLSoZxZrgm5y1c4iBR15WxyE=
Subject key identifier: 76:2E:92:EF:0D:85:A8:26:16:66:78:E2:4D:52:5C:4D:69:92:2A:9D
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0185710312E78B54B988AEF0B6FF58F881E0
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/di6S7w2FqCYWZnjiTVJcTWmSKp0.roa
Signing time: Mon 02 Jan 2023 05:45:04 +0000
ROA not before: Mon 02 Jan 2023 05:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197759
IP address blocks: 203.159.83.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:03:12:e7:8b:54:b9:88:ae:f0:b6:ff:58:f8:81:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 2 05:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=762e92ef0d85a826166678e24d525c4d69922a9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8e:ba:49:9a:21:aa:a1:fd:23:ba:ce:8d:83:
db:45:6c:d6:04:b8:72:ba:ad:30:85:92:29:02:22:
67:c2:d2:c9:28:23:17:db:4b:cf:6a:f6:ed:45:96:
85:85:56:f5:94:bd:bb:4f:9e:18:12:16:3b:2d:c9:
5a:c4:96:be:8f:62:ca:55:7f:f2:96:53:30:80:8f:
82:4c:14:64:48:59:6f:d8:eb:1c:4a:c2:6e:cb:7e:
3e:8a:8f:50:ea:9f:ba:14:d2:80:a5:0f:0d:3a:4d:
7e:1b:c2:19:d9:8f:5c:f3:63:04:5e:10:9d:a1:0a:
e2:30:1e:7a:f6:e0:ec:6a:9b:45:a8:9a:26:32:43:
8f:71:8e:ea:dd:f2:fc:a4:e9:06:52:c8:8f:00:44:
48:6d:c4:97:60:3a:89:3c:af:a5:35:f2:38:e1:69:
6e:cb:be:88:f8:be:d9:a6:e1:15:a6:ec:7b:8e:6a:
6d:a1:fd:74:9a:ac:25:f9:d1:7a:de:7b:06:4e:9d:
1a:c7:d4:f9:84:3f:3a:18:83:cf:a6:e5:a4:9c:18:
d5:2e:60:0f:40:e5:99:6c:5e:a5:4e:69:d7:ed:12:
ac:5f:45:97:3a:19:f7:8d:0d:b1:73:ae:d1:38:1d:
f5:0d:03:f6:64:7c:3b:39:ba:26:4a:c3:0f:00:79:
7d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:2E:92:EF:0D:85:A8:26:16:66:78:E2:4D:52:5C:4D:69:92:2A:9D
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/di6S7w2FqCYWZnjiTVJcTWmSKp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.159.83.0/24
Signature Algorithm: sha256WithRSAEncryption
68:54:d6:46:40:0e:81:f7:4c:20:1e:66:9a:a0:b8:a0:dc:b8:
39:ba:86:75:7f:e8:e1:13:2a:84:d9:e6:8e:d8:b3:cb:79:f3:
e8:bf:b5:c7:f1:b1:d0:31:b8:98:90:b4:a1:39:8c:fe:cf:05:
c6:49:13:fe:cd:13:84:47:ca:e9:51:8c:7d:9b:00:c0:fc:9f:
b5:37:37:a2:42:09:a3:de:10:5e:f1:f5:6c:7b:6b:9d:a1:7f:
cb:05:d0:1b:c0:08:c6:b7:d3:a9:65:e6:47:aa:81:d8:26:b2:
ba:99:09:78:c7:67:35:fe:b6:c3:3b:9a:85:5e:c5:75:5c:fd:
bb:7f:21:60:cd:40:94:20:f4:d4:f5:c7:8e:0c:1d:88:dd:b2:
34:01:30:67:b0:8e:7f:40:66:78:69:a3:9b:d8:69:9b:4e:d7:
b3:2d:68:65:81:3c:66:e1:d5:e4:3e:a3:75:d1:4e:90:5e:20:
7a:37:c8:11:06:b8:34:eb:a5:9d:71:6f:a8:48:54:06:39:3e:
06:50:c6:6b:0f:d5:5f:88:29:29:6a:e7:bd:41:b4:eb:a0:2f:
ef:a9:5b:27:ee:7a:1b:1b:90:53:b9:3a:59:ef:c8:50:65:07:
55:73:cb:da:ee:e0:e6:b5:eb:c3:c2:8b:2c:95:04:91:3f:bb:
9e:7c:ce:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:28 2024 by rpki-client on console-fra.rpki-client.org