Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/sIUmcCLS_clGKBlMDihr_ECpSxU.roa
File: sIUmcCLS_clGKBlMDihr_ECpSxU.roa (raw, json)
Hash identifier: 2W5Br5TANApPx/D0wBce6ac8mvIMwE4GzZ1lrh8y/KE=
Subject key identifier: B0:85:26:70:22:D2:FD:C9:46:28:19:4C:0E:28:6B:FC:40:A9:4B:15
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018724276E3A4B71A17931B2E75E47EA0B5D
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/sIUmcCLS_clGKBlMDihr_ECpSxU.roa
Signing time: Mon 27 Mar 2023 17:39:36 +0000
ROA not before: Mon 27 Mar 2023 17:39:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203639
IP address blocks: 185.255.168.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:24:27:6e:3a:4b:71:a1:79:31:b2:e7:5e:47:ea:0b:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Mar 27 17:39:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b085267022d2fdc94628194c0e286bfc40a94b15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:17:8e:30:d7:f9:21:a1:44:38:8a:f5:c4:d8:
f6:bd:00:09:22:0a:bb:73:54:38:f1:b1:14:fe:37:
d7:f9:84:b2:0e:fc:e8:88:9d:96:f1:2b:14:61:13:
ba:bc:63:f3:11:aa:34:36:61:a2:80:1b:22:9d:22:
43:1c:ff:73:63:4f:0f:ac:58:8f:ec:19:09:47:24:
f4:4c:5e:7c:bb:de:9f:85:5a:c1:3a:28:48:cc:2a:
b0:72:b2:73:fa:2c:92:3b:d3:c1:cb:e3:07:f0:ef:
94:a7:7b:15:b1:30:3b:cd:57:73:12:ed:78:67:cc:
ad:f7:17:0f:16:5e:b3:5a:be:89:59:29:8e:4a:5e:
93:b3:ea:86:a6:25:24:17:ee:f9:62:fb:4f:e7:af:
e1:3e:54:77:93:5c:3d:04:aa:c2:32:48:a9:25:ca:
a3:34:a5:72:ac:04:83:29:3e:f7:0e:33:e1:f3:48:
dd:be:72:f5:b0:94:d7:42:48:fe:ae:c7:24:7b:97:
51:73:ff:f5:db:ea:7e:c8:f9:da:f4:79:6b:2b:8b:
11:31:9d:92:ac:b2:12:f4:29:59:d9:f3:fe:bd:35:
8b:b2:67:2a:2b:01:bd:30:27:5d:37:0f:9a:2f:e2:
cf:f7:b8:c4:43:50:9d:6e:42:b0:e3:cf:61:39:a7:
3c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:85:26:70:22:D2:FD:C9:46:28:19:4C:0E:28:6B:FC:40:A9:4B:15
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/sIUmcCLS_clGKBlMDihr_ECpSxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.168.0/24
Signature Algorithm: sha256WithRSAEncryption
11:90:ce:44:ca:9d:97:5a:3b:39:83:e6:1f:49:8e:92:a2:d6:
8a:54:17:90:4a:bf:5b:fb:65:7e:1c:28:48:a0:de:d7:85:38:
95:43:6a:ed:0f:92:94:2a:a6:99:0d:1a:13:2c:94:03:b0:be:
70:44:86:a0:28:57:04:1c:d3:b2:13:be:4e:a1:5f:8b:27:c3:
1b:a5:9e:98:80:da:58:03:67:d0:83:2d:9e:7f:5e:b3:37:9e:
eb:f8:48:0a:6b:46:51:29:69:79:77:76:ba:bc:75:91:8d:ac:
e5:da:4a:e8:8c:6c:4a:5a:09:f1:5c:fe:58:f2:6c:2c:8e:3b:
6e:8c:77:6a:3f:d4:06:6b:e7:e2:75:79:bd:ca:ff:26:18:cd:
44:2c:ed:13:a9:0c:ae:b4:c0:71:9d:6f:92:f0:08:22:c0:83:
fe:34:a2:5f:21:3f:20:18:03:cf:69:d7:f6:68:1b:f7:b9:e2:
ec:2a:29:72:c8:b0:79:88:7c:14:fa:d2:26:61:ed:7b:8e:21:
27:43:8c:ef:6d:39:4d:cf:5f:4f:1a:7f:30:3b:6e:01:dc:44:
fc:27:14:17:9a:6c:ea:e9:3d:82:e9:7d:36:21:6e:75:0d:aa:
4b:d0:0b:b4:c3:da:dd:13:5f:34:b9:a6:e8:ae:8f:1d:a3:ac:
53:ef:08:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 2 18:54:24 2023 by rpki-client on console-ams.rpki-client.org