Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6c3d9f-8a4f-4a6c-8579-e92ece4d3cb3/1/ioabVl4T25LZGRxJqF8sBhAkkB8.roa
File: ioabVl4T25LZGRxJqF8sBhAkkB8.roa (raw, json)
Hash identifier: R96o7SfgoTRGFRBck3xHiX4RuF4zeEQzDsef6oWsk/k=
Subject key identifier: 8A:86:9B:56:5E:13:DB:92:D9:19:1C:49:A8:5F:2C:06:10:24:90:1F
Certificate issuer: /CN=21a00080cd2cb1bb073903b32b25ad660a366486
Certificate serial: 018C9093DBEA1E69363AB735CC933E77FEE8
Authority key identifier: 21:A0:00:80:CD:2C:B1:BB:07:39:03:B3:2B:25:AD:66:0A:36:64:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IaAAgM0ssbsHOQOzKyWtZgo2ZIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6c3d9f-8a4f-4a6c-8579-e92ece4d3cb3/1/ioabVl4T25LZGRxJqF8sBhAkkB8.roa
Signing time: Fri 22 Dec 2023 08:10:58 +0000
ROA not before: Fri 22 Dec 2023 08:10:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 213.109.76.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 23 Dec 2023 11:50:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:90:93:db:ea:1e:69:36:3a:b7:35:cc:93:3e:77:fe:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21a00080cd2cb1bb073903b32b25ad660a366486
Validity
Not Before: Dec 22 08:10:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a869b565e13db92d9191c49a85f2c061024901f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e9:ca:44:6d:16:fe:87:de:05:23:c2:68:30:
ef:0e:52:b7:ae:b2:b3:8a:7f:10:36:4b:2c:78:91:
bd:75:a4:80:03:f5:f7:54:14:eb:2e:be:bc:b0:99:
c3:fa:ce:3e:f6:6b:5b:e8:35:81:b1:f0:07:07:dc:
65:d9:ac:8d:44:ce:c5:0f:c3:2c:67:d8:18:c7:4e:
af:f3:8f:1c:70:7e:4c:8d:f6:82:8b:e9:ba:e5:02:
eb:a5:ae:e8:f3:3d:a1:a6:ec:fa:66:28:e0:e8:4b:
a7:ed:e1:4a:db:28:00:64:3a:87:f3:4d:2c:3a:37:
20:6a:45:5e:a5:3f:26:40:ca:05:41:eb:ba:fc:e7:
33:ee:5c:a6:70:ba:5f:82:4f:4a:62:a8:4f:ab:39:
a2:94:6a:8d:a5:0f:c9:51:0a:77:4f:7b:70:d5:65:
5c:f8:48:0a:fa:21:22:8e:43:82:3c:e6:83:cf:0a:
da:66:67:6b:3d:c5:3f:c8:6a:c7:8a:1f:06:01:78:
96:e3:be:be:19:69:6c:0c:91:33:bf:1d:7c:2d:18:
63:19:d4:e0:13:8d:6a:2d:fe:1d:ec:2a:76:ff:dd:
74:3a:e3:14:df:24:59:53:80:94:55:e4:70:8c:75:
dc:30:f8:e7:f2:5a:fa:11:5d:ce:64:f1:ef:18:bb:
4f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:86:9B:56:5E:13:DB:92:D9:19:1C:49:A8:5F:2C:06:10:24:90:1F
X509v3 Authority Key Identifier:
keyid:21:A0:00:80:CD:2C:B1:BB:07:39:03:B3:2B:25:AD:66:0A:36:64:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IaAAgM0ssbsHOQOzKyWtZgo2ZIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6c3d9f-8a4f-4a6c-8579-e92ece4d3cb3/1/ioabVl4T25LZGRxJqF8sBhAkkB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6c3d9f-8a4f-4a6c-8579-e92ece4d3cb3/1/IaAAgM0ssbsHOQOzKyWtZgo2ZIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.76.0/23
Signature Algorithm: sha256WithRSAEncryption
36:f1:4a:e2:67:b2:16:1f:64:36:95:fa:be:70:1d:fb:60:3a:
d2:ae:ec:0f:7a:35:e9:09:92:f5:2f:16:6f:0d:1f:c4:c1:7a:
0a:4a:25:85:9a:a0:45:f5:05:0a:a4:c3:b1:4f:fa:6a:64:53:
83:1d:8f:74:96:7e:32:6b:b9:49:2d:49:ac:51:30:1e:bf:8b:
ec:82:4c:9a:11:fa:ae:e2:b4:59:a4:79:89:e7:d6:92:ca:ab:
ab:b8:84:27:68:09:9b:61:9e:a6:38:b4:f5:83:71:59:7e:44:
5b:48:cc:7b:df:af:f7:a7:33:65:e0:b6:03:46:1c:4b:87:8d:
c7:d0:a0:87:0c:a8:55:c9:38:5c:af:8a:ad:65:5e:40:9d:d2:
1f:b8:6d:09:32:34:2b:7b:49:88:1f:70:0d:6a:e4:80:a4:6c:
96:fc:8f:1c:9d:4e:d8:6f:b7:ea:c0:6a:06:f6:b0:d6:fc:24:
4f:95:dd:15:8c:c1:ed:ee:c2:aa:57:cd:16:c8:89:df:52:c0:
0e:cb:64:8a:6b:59:cd:7a:b7:50:69:6e:0e:2d:36:70:02:cc:
e3:9d:48:11:9f:3e:1a:1e:c7:9c:6d:d3:ed:7b:ce:0a:52:13:
22:d1:8e:bf:49:71:1c:87:5f:6c:4f:2f:90:8b:2e:30:97:97:
d1:11:fa:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:30 2024 by rpki-client on console-ams.rpki-client.org