Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/I3zIEsjjDtjyNkh2Mx_UBX2Lj7E.roa
File: I3zIEsjjDtjyNkh2Mx_UBX2Lj7E.roa (raw, json)
Hash identifier: gUbO30B7Ly5uoB3hEW7wiwWAA8nv+YQn6/hLtuhQcKM=
Subject key identifier: 23:7C:C8:12:C8:E3:0E:D8:F2:36:48:76:33:1F:D4:05:7D:8B:8F:B1
Certificate issuer: /CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Certificate serial: 01856F66C34A1D85010E84BA4B3AB31A78EB
Authority key identifier: A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/I3zIEsjjDtjyNkh2Mx_UBX2Lj7E.roa
Signing time: Sun 01 Jan 2023 22:14:43 +0000
ROA not before: Sun 01 Jan 2023 22:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60123
IP address blocks: 213.240.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:c3:4a:1d:85:01:0e:84:ba:4b:3a:b3:1a:78:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Validity
Not Before: Jan 1 22:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=237cc812c8e30ed8f2364876331fd4057d8b8fb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:68:7c:32:03:f3:78:0f:d3:96:73:46:7b:48:
3a:70:c7:a5:ee:d4:84:c2:13:5b:73:c5:5e:a8:d0:
41:56:27:60:60:b7:3e:ac:57:a2:a7:51:c9:10:52:
9b:80:03:fe:34:95:5c:a4:be:ff:34:be:7d:00:bf:
6c:57:88:22:c4:ca:68:12:29:c4:ff:dc:bd:82:a1:
39:43:61:90:07:c9:07:f6:5c:fa:73:0b:ef:c7:5d:
28:ad:d7:d1:13:81:f4:94:47:32:df:f1:d0:ab:74:
3b:62:7f:a7:82:51:b7:c9:12:3d:f8:81:05:89:16:
32:8d:8c:36:6f:9c:96:72:ea:33:07:73:e1:f1:c7:
1d:92:01:7b:10:98:53:ac:7b:a4:ac:92:79:42:b9:
36:5b:f5:16:58:a6:55:45:c7:6f:6b:04:47:85:76:
ed:74:78:02:c9:ba:28:80:10:0c:7a:63:32:59:40:
31:c4:2d:ef:ba:02:31:0b:b6:3b:18:a1:bf:d0:a3:
b6:5d:4b:48:a0:90:92:1d:92:46:9d:54:ca:a1:6c:
63:3b:b3:7f:24:d5:b4:1a:81:f3:6a:09:4e:50:73:
05:05:3a:79:83:9b:93:dd:64:6f:23:61:81:25:a3:
9c:ae:e2:2a:dc:0c:8f:2b:ed:a9:d9:4c:2a:47:da:
db:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:7C:C8:12:C8:E3:0E:D8:F2:36:48:76:33:1F:D4:05:7D:8B:8F:B1
X509v3 Authority Key Identifier:
keyid:A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/I3zIEsjjDtjyNkh2Mx_UBX2Lj7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.240.148.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:84:60:a9:92:62:be:08:d4:36:8e:42:a2:14:90:8e:d6:cd:
60:ae:d8:99:c3:86:da:6f:2e:b5:c6:40:84:ee:01:94:64:c5:
63:af:4d:ee:d3:99:18:c2:7c:aa:58:79:48:e9:32:1a:dd:c6:
d3:45:a0:f5:0e:67:8c:da:36:83:56:c1:fe:a1:86:0c:ad:60:
36:0a:ab:fa:bb:8f:c7:fd:10:18:30:a1:cc:ea:4e:54:83:1b:
b9:d0:1a:69:45:1b:8d:87:81:0b:e7:6c:35:8b:83:68:3e:a2:
39:4c:d3:28:a6:68:9e:49:50:9a:59:30:84:67:80:19:ce:f5:
c2:a8:39:d2:6a:e8:39:7a:c2:f6:a9:a1:a8:e3:34:af:e6:60:
e3:37:8d:91:72:bd:c0:b8:43:db:99:c9:74:4e:2a:64:06:b0:
e9:63:09:e0:fd:08:cb:91:38:37:f5:00:c6:0d:0a:6e:77:0d:
1f:b1:ef:55:b6:bf:bb:7f:bf:79:5b:95:dd:f5:d1:ad:7c:a7:
7d:0b:84:71:12:2b:5c:02:c3:41:7b:4d:8a:a3:05:20:55:b6:
cf:56:8e:60:d6:b3:29:50:e0:52:c5:0e:3a:17:2e:e0:2c:5b:
fa:db:ba:d5:b0:00:62:d9:e6:53:cd:d6:5d:bc:60:b6:61:98:
19:16:3b:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:27 2024 by rpki-client on console-fra.rpki-client.org