Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/h1fjtQ5QZu-gcQ6TZOOOiXKrGBw.roa
File: h1fjtQ5QZu-gcQ6TZOOOiXKrGBw.roa (raw, json)
Hash identifier: RolDd12y50d5xvZYvwioO9lQKDDKRKRoNkomcp7iSUQ=
Subject key identifier: 87:57:E3:B5:0E:50:66:EF:A0:71:0E:93:64:E3:8E:89:72:AB:18:1C
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0190442C66AE7F69D481047562BD2C34369E
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/h1fjtQ5QZu-gcQ6TZOOOiXKrGBw.roa
Signing time: Sun 23 Jun 2024 08:17:58 +0000
ROA not before: Sun 23 Jun 2024 08:17:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 178.239.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jul 2024 05:28:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:44:2c:66:ae:7f:69:d4:81:04:75:62:bd:2c:34:36:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jun 23 08:17:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8757e3b50e5066efa0710e9364e38e8972ab181c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:65:b0:53:c0:a4:4f:5a:8e:46:60:23:f6:54:
96:ee:f4:6b:f5:fe:f6:08:19:a6:38:19:f1:43:9d:
8e:d7:30:51:6c:b0:ab:07:b9:16:e7:88:9a:c7:1c:
76:a5:0d:2d:ae:7f:d7:0c:ce:07:65:66:5d:bb:0a:
84:a6:28:a2:af:b0:94:31:43:29:0c:37:2f:db:0e:
1d:09:df:11:ab:e7:61:fe:8c:f4:3c:d1:9e:da:99:
19:2d:c1:30:b9:f8:62:38:38:d8:40:4e:4e:28:a7:
3f:ed:16:2a:74:f5:87:e7:a8:a4:7b:92:af:ed:41:
cc:a5:81:5b:d4:46:8b:51:1e:ea:9f:d6:dc:68:6c:
62:17:04:bc:0b:94:4b:a6:f8:68:5d:71:f6:a3:ee:
f3:8c:7b:7a:e3:87:e3:f7:2a:4c:e2:24:d2:3d:8f:
b3:b1:94:be:06:de:a9:9a:c8:3c:02:46:b4:d4:2e:
8b:a4:da:a4:e8:32:93:42:70:b7:b2:15:6d:11:88:
b0:8e:c6:c0:ec:a7:1f:76:71:2f:d3:68:fd:2a:8f:
0c:f6:5d:4d:40:46:a7:a3:2d:e6:15:5c:81:26:2d:
2a:73:45:69:b8:e9:a3:2a:42:4a:86:05:d0:4c:cc:
5a:df:4f:c7:a7:1c:ca:90:85:2b:0b:ed:33:fa:3c:
e6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:57:E3:B5:0E:50:66:EF:A0:71:0E:93:64:E3:8E:89:72:AB:18:1C
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/h1fjtQ5QZu-gcQ6TZOOOiXKrGBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.205.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:d9:a2:58:38:72:a8:0a:92:71:01:6a:01:b4:1f:07:a4:86:
d3:2f:6e:5d:aa:0f:0c:62:a4:2c:08:89:67:7b:8a:c7:b9:c6:
89:7e:0e:54:ac:34:0a:53:76:86:9a:70:d7:d6:c4:26:cb:a1:
0f:50:18:4a:4b:66:e1:27:16:10:af:13:7c:17:a6:c5:e0:0e:
b7:e8:6a:83:b7:ae:68:ab:49:ea:3d:01:d9:d8:46:65:8c:00:
a5:b6:23:df:53:05:e1:09:3e:c1:e8:f2:52:88:24:dc:e8:c2:
0e:e6:de:52:e6:16:06:07:36:a2:e4:27:27:a1:e3:ce:c4:15:
5e:b0:eb:5a:92:88:43:51:77:46:1f:b8:73:68:07:88:13:21:
aa:61:38:e9:72:b4:8b:09:36:a7:42:34:11:fc:e6:c0:d7:a4:
4d:b5:03:0c:3d:29:dd:42:3b:d1:9d:cf:44:4a:22:a1:58:0a:
91:60:04:7f:1c:4f:7b:31:6e:82:c9:5d:b3:b0:17:dc:cd:dc:
ed:69:33:b9:df:8d:cb:25:8d:e3:6a:d8:09:41:22:3f:6c:4c:
69:81:9a:1e:f8:a8:ec:d1:cd:a9:44:9d:bc:ff:9a:05:bc:9c:
2c:b5:b7:0d:ed:4d:50:e2:50:58:14:77:96:df:d3:61:e7:88:
d8:a6:f6:a0
-----BEGIN CERTIFICATE-----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Generated at Wed Jul 10 06:41:13 2024 by rpki-client on console-fra.rpki-client.org