Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/jSjJ3UDPTa8iXwb2PPhXfhCMBp4.roa
File: jSjJ3UDPTa8iXwb2PPhXfhCMBp4.roa (raw, json)
Hash identifier: LiG25JPZwPIkb2yzMF3pqNXWrxohDdkjZfglfK4ooYs=
Subject key identifier: 8D:28:C9:DD:40:CF:4D:AF:22:5F:06:F6:3C:F8:57:7E:10:8C:06:9E
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 01878364ED8BBA461AF98E32CD720549524A
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/jSjJ3UDPTa8iXwb2PPhXfhCMBp4.roa
Signing time: Sat 15 Apr 2023 05:30:42 +0000
ROA not before: Sat 15 Apr 2023 05:30:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 193.19.106.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:83:64:ed:8b:ba:46:1a:f9:8e:32:cd:72:05:49:52:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Apr 15 05:30:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d28c9dd40cf4daf225f06f63cf8577e108c069e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3e:c1:40:db:21:e1:b8:51:06:9a:0a:f4:3a:
80:a2:57:32:bf:af:21:17:85:94:60:d4:64:2f:5a:
9a:69:78:85:f2:b4:f2:d7:ef:bd:ae:6f:3e:b0:8d:
da:a7:2c:76:ca:0a:33:5d:56:1c:c2:e8:ce:fd:4e:
93:7e:f2:0c:a8:0e:f7:69:ec:fa:b9:52:47:10:d7:
8c:96:af:32:62:fd:00:ea:c3:b4:54:8d:95:75:55:
d4:66:ed:8c:a3:78:a6:1f:0d:51:e6:15:38:fb:b6:
b8:73:d4:ab:d9:9d:92:bb:0d:bd:76:94:e4:24:95:
ad:ba:a4:7e:bc:67:97:61:5c:1e:92:a3:03:fd:45:
37:82:58:b6:c3:89:de:69:ee:9b:e9:72:37:fd:e4:
7e:b8:17:f3:67:a3:70:8d:a2:3d:ea:98:47:86:93:
b8:74:58:3c:eb:82:dc:d8:83:a0:bd:80:d7:83:16:
f0:dc:1d:27:7b:e9:91:2f:ce:6b:d7:c5:bd:f1:76:
7e:0c:35:f0:3e:d2:45:0e:ad:a3:0f:87:3b:10:4b:
f2:23:ba:38:94:81:0e:a2:68:40:e6:b1:4f:57:f8:
27:f9:e7:f8:ff:60:4f:9f:0b:39:48:81:15:ad:c0:
a1:e1:38:c1:95:b5:4c:99:4a:54:76:c1:9c:c0:cf:
5e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:28:C9:DD:40:CF:4D:AF:22:5F:06:F6:3C:F8:57:7E:10:8C:06:9E
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/jSjJ3UDPTa8iXwb2PPhXfhCMBp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.106.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:6c:d1:26:aa:5a:54:3d:07:8c:02:e8:94:4f:de:56:34:8d:
9f:3a:c1:29:98:3a:bd:a1:75:d4:35:69:be:4e:dc:aa:e0:b1:
8b:9c:86:33:ea:d0:a0:a7:05:38:80:b4:07:dc:06:37:0c:65:
4e:9a:48:0d:e1:e2:de:13:f4:be:45:be:1a:11:97:15:39:f7:
70:b2:6f:b6:fa:fc:82:ad:6a:b8:f0:b8:11:8f:01:78:f4:ad:
ca:89:35:b6:90:c3:c5:32:db:69:fa:13:08:88:7d:a8:04:f3:
26:9e:52:6b:98:27:be:e9:f6:e9:34:4e:bc:e9:75:70:91:36:
a9:5d:7b:35:fc:bd:3e:40:01:bd:e1:22:de:43:e4:0f:68:3a:
a1:0a:53:23:d2:06:62:fc:2e:7d:72:44:3f:7f:14:cb:b8:54:
9d:08:ea:45:26:99:09:ba:d5:be:f5:6e:41:6a:43:2f:13:b5:
02:a1:3b:4e:b5:a5:ee:ce:09:ad:ab:03:a9:44:53:63:72:32:
76:3f:ec:18:3b:ee:cf:57:a7:de:f9:bd:f6:06:1b:0a:d3:9d:
8f:3d:35:cc:8f:f2:27:db:9c:9c:ad:e8:82:a9:83:d7:fa:66:
bc:8e:90:89:09:1b:68:55:80:a2:18:74:78:42:96:53:d5:02:
93:6a:da:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:02 2023 by rpki-client on console-fra.rpki-client.org