Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/rVJ3BoXvBSVdGdYf8iPfGGzjUok.roa
File: rVJ3BoXvBSVdGdYf8iPfGGzjUok.roa (raw, json)
Hash identifier: EZwr5qw5O5wkzRudFE8l/h/1LHKgmHjQkdJ+J6lzLAU=
Subject key identifier: AD:52:77:06:85:EF:05:25:5D:19:D6:1F:F2:23:DF:18:6C:E3:52:89
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0187901B9D7B87888F5905892B227CA5FD6E
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/rVJ3BoXvBSVdGdYf8iPfGGzjUok.roa
Signing time: Mon 17 Apr 2023 16:45:41 +0000
ROA not before: Mon 17 Apr 2023 16:45:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201364
IP address blocks: 89.40.76.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:90:1b:9d:7b:87:88:8f:59:05:89:2b:22:7c:a5:fd:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Apr 17 16:45:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad52770685ef05255d19d61ff223df186ce35289
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:9f:d0:79:89:5f:fc:ae:a4:4a:a4:ed:95:5c:
ce:9f:32:69:4a:0a:24:43:08:9e:59:36:78:f2:dc:
a6:4b:c0:b0:e1:94:89:af:c6:1a:a3:ae:9f:b6:26:
da:12:b3:96:0d:80:24:95:e4:3f:72:0b:24:8e:50:
fa:29:9e:58:bb:a1:44:2a:a8:0f:e5:7c:08:0e:56:
f7:ad:9f:e2:31:81:83:46:f4:3f:36:67:7d:90:49:
9e:6d:ab:af:86:76:f4:dd:f2:a7:aa:62:f7:6d:10:
08:3e:84:fc:f2:78:54:53:d1:a8:9c:5f:65:e6:f7:
23:8b:54:75:33:e7:e5:d5:d8:f7:95:ba:9d:1b:41:
dd:6c:e8:95:c8:9f:2e:c2:6f:14:80:95:ab:48:ad:
d9:a8:dd:58:71:e0:74:17:e6:24:5e:29:79:4c:c1:
e0:b7:73:f2:5d:e7:79:02:14:7a:9c:57:35:00:97:
bf:cf:68:17:cd:ee:2c:10:13:4d:55:a3:fc:a9:1f:
57:c6:30:31:21:25:df:b3:57:86:2a:bb:79:16:cd:
d3:ba:42:05:6d:d8:50:4a:42:8c:18:99:46:ea:e7:
de:94:4a:39:38:5c:28:3c:e3:42:92:59:3e:10:23:
84:ec:da:f7:72:84:25:5f:79:06:1b:54:e9:59:57:
81:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:52:77:06:85:EF:05:25:5D:19:D6:1F:F2:23:DF:18:6C:E3:52:89
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/rVJ3BoXvBSVdGdYf8iPfGGzjUok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.76.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:8d:16:0e:44:13:76:cc:4e:0c:35:78:5a:45:a5:fa:eb:7f:
cf:da:bb:95:c6:14:10:94:34:93:9b:f7:fd:59:52:b0:a3:66:
62:a5:2c:db:77:33:f3:36:df:69:79:ec:d8:86:12:f2:1e:be:
4a:56:57:73:b9:54:30:4c:d8:15:01:2f:26:b1:cd:96:45:b6:
a6:5f:b2:69:d2:23:30:71:87:4b:44:b0:8a:9b:d8:e2:24:74:
ff:61:c7:6b:b5:6c:60:3b:29:cd:d0:2e:f4:b9:cd:86:c4:69:
61:ff:57:d2:e1:45:52:64:3a:ab:1f:21:b5:61:f9:5c:ea:fe:
26:c7:4e:e1:aa:52:ac:59:ff:c5:b3:8b:06:b7:a1:c1:2b:d4:
41:77:99:c9:42:e0:74:97:72:0b:54:a1:9d:07:e7:65:a2:4c:
d7:3e:df:f5:ac:bc:b5:41:87:33:7d:7f:84:23:5d:ea:dc:f4:
73:7c:02:86:2b:db:33:a8:77:5f:e8:65:97:c1:55:22:5d:b1:
35:9c:11:8b:a8:73:06:ec:85:c2:52:7c:80:8e:1f:e7:da:73:
c4:21:9a:1b:56:6e:05:88:dd:e0:33:fe:b3:84:b4:6f:3c:50:
44:14:2e:60:5f:3e:01:a5:7b:04:2e:35:d5:5a:47:71:9d:89:
70:65:de:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 20 06:28:18 2023 by rpki-client on console-fra.rpki-client.org