Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/zUo0hPlRP11JtiykKB6D_tIpZL8.roa
File: zUo0hPlRP11JtiykKB6D_tIpZL8.roa (raw, json)
Hash identifier: mhgjMtoUyPNNZU020M4SD7iuOUsPmxYe0XfNelmafHw=
Subject key identifier: CD:4A:34:84:F9:51:3F:5D:49:B6:2C:A4:28:1E:83:FE:D2:29:64:BF
Certificate issuer: /CN=fde72d43f4c82b1146737b116197231830bf65d6
Certificate serial: 01856DDD5A5613ACD8C3266532F3150E4D02
Authority key identifier: FD:E7:2D:43:F4:C8:2B:11:46:73:7B:11:61:97:23:18:30:BF:65:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/zUo0hPlRP11JtiykKB6D_tIpZL8.roa
Signing time: Sun 01 Jan 2023 15:05:01 +0000
ROA not before: Sun 01 Jan 2023 15:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209770
IP address blocks: 213.232.72.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:5a:56:13:ac:d8:c3:26:65:32:f3:15:0e:4d:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fde72d43f4c82b1146737b116197231830bf65d6
Validity
Not Before: Jan 1 15:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd4a3484f9513f5d49b62ca4281e83fed22964bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d5:17:af:db:36:27:4e:d1:c2:d8:44:66:86:
6a:d0:07:2e:dd:34:84:a5:c2:22:d6:44:f7:56:90:
81:60:b0:bb:19:fd:d1:23:c5:6a:91:6d:af:a7:e6:
c0:54:1e:94:b2:f6:71:a1:cc:a4:18:03:da:4d:17:
71:eb:cf:cf:e7:be:4b:f3:67:90:07:cf:12:70:44:
83:0d:e1:10:39:fc:7b:4e:34:e9:76:b5:1b:10:9c:
9f:63:c2:c0:d1:ca:27:9e:fd:67:f0:98:05:db:d0:
7c:79:91:c2:19:2b:d8:49:ad:44:b9:71:0b:a1:55:
c6:ef:45:e1:28:e1:5e:79:f1:7b:4c:5a:a1:67:72:
65:c9:02:f4:99:43:07:6c:03:57:3b:dd:4e:c4:d6:
2f:92:8c:84:c2:1e:61:74:b0:6e:7e:3a:15:3c:92:
c7:ca:6c:22:61:84:a9:69:e6:3a:eb:5f:3a:2d:2c:
47:72:a8:db:6b:6a:e5:b2:f7:98:52:23:31:74:dd:
70:d3:74:f4:78:d5:cb:38:ba:0d:39:13:16:48:46:
d5:9c:d3:e8:cb:c1:76:63:a6:d7:13:26:0d:8b:d3:
5a:2a:95:50:f8:13:84:41:2f:3a:c6:e7:95:f0:73:
01:d7:e3:2a:d6:2b:47:46:1d:3c:f3:d8:46:ef:6c:
b2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:4A:34:84:F9:51:3F:5D:49:B6:2C:A4:28:1E:83:FE:D2:29:64:BF
X509v3 Authority Key Identifier:
keyid:FD:E7:2D:43:F4:C8:2B:11:46:73:7B:11:61:97:23:18:30:BF:65:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/zUo0hPlRP11JtiykKB6D_tIpZL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.72.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:a1:d9:4c:b7:ee:26:2e:6d:17:17:f0:07:c0:45:65:c4:79:
7a:38:23:1b:2b:a9:ed:80:4c:d7:0a:9c:8b:02:57:5d:dd:96:
23:52:df:cd:0e:97:10:7e:0d:fe:05:9f:dd:8b:ae:0e:67:bd:
2b:7d:f4:04:8b:88:6f:58:e7:b0:f2:31:b1:ba:29:05:4a:b2:
c9:6e:d8:c9:41:a9:0b:4b:70:a0:d4:93:29:dc:9d:66:ca:55:
3f:6a:e5:55:9d:02:c7:f6:88:c4:c3:9d:c0:ef:12:35:b6:67:
8c:d0:64:cb:10:02:87:45:dd:3d:e0:1b:10:5c:49:b1:34:60:
4f:3d:f2:6c:c8:db:c5:cc:d0:f5:3c:77:c1:07:fb:e3:83:6f:
7a:9d:e3:6e:21:9e:d2:7c:aa:f2:af:bd:95:6c:e6:8a:3b:58:
e3:d0:32:1c:8b:4a:da:34:77:75:2b:7e:ee:d0:92:12:55:1a:
7b:da:6d:2e:39:aa:9a:48:f9:8c:f6:cb:ff:37:51:f3:ac:be:
9c:52:fc:53:80:34:f8:54:d6:40:cd:bb:a4:33:90:8e:96:40:
42:f4:8a:8f:9e:87:c1:01:9d:00:d8:98:2a:de:9e:95:e5:a7:
83:4b:8b:60:28:0e:cb:78:30:ec:bd:d4:31:2c:32:51:c5:be:
f9:59:4c:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:59 2024 by rpki-client on console-ams.rpki-client.org