Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/x39EtsfRSKM9ZTNlOHQR0GvLghw.roa
File: x39EtsfRSKM9ZTNlOHQR0GvLghw.roa (raw, json)
Hash identifier: dxHaOUJ/XAavKa7tiuOB4r+jBOQymONf1SCN4smggn8=
Subject key identifier: C7:7F:44:B6:C7:D1:48:A3:3D:65:33:65:38:74:11:D0:6B:CB:82:1C
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018B42B519ABC84B23C1DDBEF02B28D784A4
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/x39EtsfRSKM9ZTNlOHQR0GvLghw.roa
Signing time: Wed 18 Oct 2023 12:14:06 +0000
ROA not before: Wed 18 Oct 2023 12:14:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36113
IP address blocks: 188.240.233.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:42:b5:19:ab:c8:4b:23:c1:dd:be:f0:2b:28:d7:84:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Oct 18 12:14:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c77f44b6c7d148a33d653365387411d06bcb821c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f0:38:5c:35:ee:32:84:f6:9a:b5:39:a1:cd:
65:f0:57:4a:c1:bf:84:ac:c3:4b:1b:f7:74:72:95:
17:3f:6e:60:c4:b4:77:82:49:80:9b:1e:8c:13:b4:
e7:fd:75:f6:91:d3:67:e7:28:0a:a1:1e:a8:41:83:
ae:13:e1:23:ef:dd:5f:c3:80:7b:e2:23:c1:1e:65:
16:51:f7:bd:3a:ca:ca:30:4f:e0:a1:e4:53:1c:a9:
6e:56:95:4a:c6:ba:d7:7b:49:d8:a6:d8:4a:89:57:
ee:55:1f:97:b9:65:37:4e:1c:1f:91:63:e7:7e:71:
cd:9e:4a:2b:68:f3:c4:31:dc:ca:ca:a1:d4:40:19:
5a:7f:68:36:30:af:f7:02:79:c4:fe:8d:49:21:22:
7a:53:65:5b:0d:a4:cb:e8:ca:01:04:d2:3e:29:3a:
e6:d0:0e:5a:46:ef:4e:6a:a6:4e:03:b8:64:03:33:
f2:35:84:9f:0b:0d:7b:f2:f9:ed:8d:5c:a8:cc:dd:
9f:12:44:9c:9a:d7:7c:d2:9d:68:40:e9:70:4e:f9:
82:d9:53:56:1a:b0:3a:d8:af:76:bb:47:20:ed:bc:
6e:85:32:85:63:f7:36:af:7a:b7:51:5e:c9:59:48:
94:4d:fb:45:47:d0:3f:12:4a:44:c6:41:a5:58:b8:
5b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:7F:44:B6:C7:D1:48:A3:3D:65:33:65:38:74:11:D0:6B:CB:82:1C
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/x39EtsfRSKM9ZTNlOHQR0GvLghw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.240.233.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:5e:9a:36:7e:35:a0:76:19:ef:8e:0b:46:f6:ba:47:b6:cf:
c5:1e:db:08:6c:f9:69:36:d2:81:2f:e0:b5:f9:ac:f4:a0:a1:
a8:87:a4:7d:78:55:18:34:f8:3b:d8:be:2d:bd:0d:8e:28:bb:
56:57:3f:66:fe:01:ed:bc:8f:5b:26:16:7b:01:6f:49:d6:bf:
3d:fd:3b:41:39:1e:86:5a:90:7c:52:a8:cc:1a:d3:f8:7d:a4:
0c:2e:83:21:6a:ca:3f:7e:20:f2:f9:21:64:52:72:56:6a:2a:
36:a8:b5:bf:08:f6:b8:e5:63:a8:d0:c5:d6:63:ba:bb:4f:e0:
42:f6:a3:ee:b8:e9:87:43:d2:eb:77:2a:75:a8:81:f0:29:6a:
c3:2d:fc:44:3d:87:35:28:11:e6:13:c4:c7:e1:56:b8:0c:13:
77:eb:30:21:ef:5d:b4:5f:63:37:b5:ed:30:15:06:d7:83:5c:
e5:01:2e:35:71:4e:e8:78:78:25:96:cb:5f:44:bd:b8:ac:60:
0b:ad:f2:95:69:67:ef:da:29:17:67:9e:6c:34:81:4f:ec:47:
86:ca:96:69:2e:98:0d:df:fd:1e:51:e3:d0:03:66:2b:34:67:
d6:ad:9b:d5:48:2a:9a:82:f8:e5:43:10:2b:9f:4f:29:00:fe:
91:8a:49:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:03:18 2024 by rpki-client on console-ams.rpki-client.org