Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/urnw8_nAjvTYUFm7Apc3aAJSV6Y.roa
File: urnw8_nAjvTYUFm7Apc3aAJSV6Y.roa (raw, json)
Hash identifier: bCwuZhBxF+/5+4StZbsCQ/p8pEM6IZprzxzRgYATD2s=
Subject key identifier: BA:B9:F0:F3:F9:C0:8E:F4:D8:50:59:BB:02:97:37:68:02:52:57:A6
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018691FC97C8930A6C534E45016677D34E74
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/urnw8_nAjvTYUFm7Apc3aAJSV6Y.roa
Signing time: Mon 27 Feb 2023 08:28:15 +0000
ROA not before: Mon 27 Feb 2023 08:28:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136923
IP address blocks: 185.135.140.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:91:fc:97:c8:93:0a:6c:53:4e:45:01:66:77:d3:4e:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Feb 27 08:28:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bab9f0f3f9c08ef4d85059bb02973768025257a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:99:5e:a3:97:16:4f:d5:52:ee:a1:80:1a:1d:
1a:69:f6:fa:84:b7:ee:c5:6f:2b:1d:c6:0a:df:94:
a2:3c:af:77:55:82:2f:32:67:11:8b:6e:a9:82:32:
37:f4:8b:49:d5:87:d4:6a:ca:e0:d9:1e:d9:db:95:
77:78:7a:23:c5:37:6d:70:22:39:99:1c:4d:86:56:
5c:c0:28:6f:75:5e:51:eb:35:e8:5a:ff:2c:8d:71:
61:ba:ec:2a:82:f8:a6:a9:39:16:e6:66:3d:5e:34:
f2:02:7b:01:e9:f4:a5:3b:91:28:01:cc:55:cf:7c:
78:99:0e:11:60:02:45:9f:13:2e:e1:96:69:ed:25:
4d:d2:76:0f:45:92:e5:d5:c4:ff:e2:15:1a:d6:61:
08:ef:19:bc:d6:ce:17:bd:1e:f6:89:8e:55:24:b6:
3c:f5:a3:0d:76:dd:81:6d:25:4c:75:c1:24:38:e1:
39:73:88:0c:58:b7:d9:cf:99:2e:2e:e8:b1:89:ab:
d0:f7:d3:29:d5:1a:ba:eb:0e:63:49:f0:bc:52:53:
0e:19:63:13:0d:41:43:e8:54:8f:08:6b:ed:ed:28:
8d:f6:39:9f:be:59:6d:70:cb:01:4e:95:e3:fb:a4:
a4:30:c5:9a:1e:0b:c1:23:69:7d:20:0d:4b:06:f2:
c7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:B9:F0:F3:F9:C0:8E:F4:D8:50:59:BB:02:97:37:68:02:52:57:A6
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/urnw8_nAjvTYUFm7Apc3aAJSV6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.140.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:96:5a:8b:23:85:fc:9d:39:b6:18:a4:fa:a0:44:81:d9:74:
b7:82:85:fa:12:44:52:32:ec:29:e3:ec:a1:0f:2e:c2:9b:fc:
6d:0a:f2:d0:73:ed:ab:ec:75:98:1f:f2:30:ea:61:c1:22:fc:
cb:2f:3b:52:dc:78:39:98:3c:f2:da:a0:83:2d:10:82:66:fa:
ca:d9:23:ef:11:75:77:6c:f8:a1:6b:34:e0:1f:bd:72:c9:a0:
97:6f:60:fe:54:fe:a6:20:ff:ab:29:ee:db:ea:0b:d5:c6:87:
e6:85:16:a6:89:40:af:9d:65:15:d2:64:11:b0:37:38:ad:7b:
7d:fc:5d:71:58:c8:19:c6:e8:54:61:11:4a:df:d4:6c:dc:e4:
6e:59:84:7e:d3:49:28:d0:7f:40:6b:fe:a2:dd:15:2a:45:2d:
62:15:c7:5e:47:79:82:0d:02:5f:2b:35:56:5a:1f:31:1d:3c:
e9:3f:b8:f6:e3:c6:88:60:50:92:f6:f8:62:22:76:e7:d4:8f:
75:bd:ea:03:7a:cc:0c:95:68:71:01:d5:fd:a7:6f:08:7e:90:
ab:8d:11:b2:c3:a1:88:9a:b9:33:ef:d2:e0:99:da:9a:6a:64:
9d:bb:66:b9:3f:f8:57:29:c1:39:a2:90:5e:df:52:3a:34:bf:
b7:d0:b4:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:03 2023 by rpki-client on console-fra.rpki-client.org