Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/bAJprHR3ldNnpzytF2lHpYaVOFA.roa
File: bAJprHR3ldNnpzytF2lHpYaVOFA.roa (raw, json)
Hash identifier: Dc5cbGo+KLH+TN2cKLa7CfZPn30bC6FaFPpSXVGl+As=
Subject key identifier: 6C:02:69:AC:74:77:95:D3:67:A7:3C:AD:17:69:47:A5:86:95:38:50
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 01856B5321AE995A3B4E1C49B55EFCC05164
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/bAJprHR3ldNnpzytF2lHpYaVOFA.roa
Signing time: Sun 01 Jan 2023 03:14:48 +0000
ROA not before: Sun 01 Jan 2023 03:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200456
IP address blocks: 213.238.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:53:21:ae:99:5a:3b:4e:1c:49:b5:5e:fc:c0:51:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 03:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c0269ac747795d367a73cad176947a586953850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b7:5d:65:60:0e:16:30:b6:90:22:28:7b:0d:
04:e9:46:1b:24:49:79:7a:86:9f:1a:70:62:18:e8:
c6:07:9a:a2:72:a4:92:0e:df:0e:ba:32:f0:8d:87:
f2:b3:10:f2:90:79:87:7e:96:ab:fb:57:dc:c5:03:
f4:52:3a:c9:33:3e:02:40:ef:52:8e:33:73:9b:a7:
bb:3b:8b:9f:d2:49:e3:83:7b:3f:3b:b8:a4:ac:e9:
6d:a0:66:04:4b:9b:aa:b6:37:61:5b:02:53:f0:eb:
23:2b:be:ab:6b:cb:33:58:38:fe:17:79:65:d8:65:
5d:fb:e0:01:7c:e1:41:ae:56:6b:49:f3:97:1e:81:
c1:85:87:e8:7c:58:7f:83:d2:53:29:de:da:c8:14:
90:bd:e5:40:85:90:06:c4:f9:18:9b:fb:46:aa:cd:
04:c4:51:32:d1:3b:96:ed:5d:ab:63:ab:da:bb:1f:
ad:5f:b0:ed:4d:37:11:b3:a5:f2:7c:95:59:77:9b:
54:b4:dc:c6:4d:77:93:1c:67:3b:be:3e:c4:b4:8f:
5d:a1:54:37:ef:f1:34:30:ec:a4:1e:a7:ee:4e:d1:
7f:a3:a9:33:ab:4d:de:56:d4:8a:05:f4:a4:5c:61:
87:83:e0:49:4f:bd:e3:11:62:08:91:06:99:0e:4f:
38:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:02:69:AC:74:77:95:D3:67:A7:3C:AD:17:69:47:A5:86:95:38:50
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/bAJprHR3ldNnpzytF2lHpYaVOFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.171.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:09:cb:8d:51:9b:6a:bb:b4:e8:67:ef:50:f6:8f:19:98:6c:
f8:27:48:1e:19:48:d9:ba:8c:ee:c7:77:3d:14:a1:cb:3f:a4:
b5:6b:12:05:34:13:77:7a:57:a8:58:f2:67:9b:43:52:12:6a:
56:58:9e:04:44:e5:ef:1d:84:4e:89:5f:4f:df:39:8c:da:09:
d4:36:bd:09:23:36:72:d1:0d:14:4e:ba:a2:10:82:62:41:46:
df:c2:0a:68:ab:bf:ca:37:3f:f9:53:0b:4b:40:b4:24:7d:01:
ae:9c:f0:c5:43:ab:bf:5e:df:f8:01:ba:87:f9:05:24:73:e3:
7c:9b:35:14:45:3e:69:f9:00:a1:4f:20:c5:ea:f7:4a:9a:05:
a6:78:1e:4a:8e:2c:db:2b:2d:30:0f:5a:b6:a4:19:20:73:41:
82:dc:9a:48:ec:32:41:32:f6:52:13:80:9f:76:ac:3a:c9:0f:
65:68:e0:a9:ee:a4:8b:2a:6c:fc:70:c4:12:1f:67:e7:b5:2a:
3a:71:30:c4:38:da:d6:00:33:49:0e:be:d9:a3:51:a2:ff:2f:
d1:b1:9d:b3:42:ef:f4:1f:6f:20:3f:cf:56:69:ed:41:8e:e6:
c1:8b:cc:03:e0:c0:e4:83:a3:11:4d:b8:b6:2f:aa:29:8b:13:
6c:23:1c:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:27 2024 by rpki-client on console-fra.rpki-client.org