Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/seZ7j6r-VdU4L9Sud0bcDItPbXU.roa
File: seZ7j6r-VdU4L9Sud0bcDItPbXU.roa (raw, json)
Hash identifier: Dge2cv/iY8CCLCfrQ6OCmhbj6QW8wnzADYZrZhLgMH4=
Subject key identifier: B1:E6:7B:8F:AA:FE:55:D5:38:2F:D4:AE:77:46:DC:0C:8B:4F:6D:75
Certificate issuer: /CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Certificate serial: 0187B7DACD4BEA23B7177EB74B7536BA4CAC
Authority key identifier: 4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/seZ7j6r-VdU4L9Sud0bcDItPbXU.roa
Signing time: Tue 25 Apr 2023 09:59:42 +0000
ROA not before: Tue 25 Apr 2023 09:59:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 213.198.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b7:da:cd:4b:ea:23:b7:17:7e:b7:4b:75:36:ba:4c:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Validity
Not Before: Apr 25 09:59:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1e67b8faafe55d5382fd4ae7746dc0c8b4f6d75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:48:ab:51:66:cd:ec:fb:42:0e:17:5f:df:77:
81:4e:a6:ea:69:5e:d1:d9:a1:58:91:eb:25:f6:54:
b5:de:b6:19:49:7f:7f:ca:0c:d1:da:ad:10:35:6f:
e9:16:36:bb:f0:75:f0:fa:82:eb:11:d1:e8:a6:ac:
12:38:4b:a5:31:af:85:22:d3:b1:97:38:7b:ff:19:
6c:25:3f:81:c4:0e:cf:80:7e:e9:54:1e:56:4f:39:
fd:2f:57:5b:87:a0:c8:2e:0e:ab:02:3c:5d:21:11:
e2:74:39:a6:eb:3f:e1:e9:a5:87:78:66:48:2d:fc:
d1:21:0d:08:d3:38:1b:b4:6e:42:2d:90:79:4c:21:
f3:3d:8d:21:84:79:ea:38:26:f2:6e:41:e4:f8:e4:
cd:65:09:8d:b4:51:25:4d:fa:db:95:0e:4a:e1:da:
2d:6f:ab:d0:35:05:43:aa:9a:16:88:6a:d6:d7:98:
f4:65:18:4f:6e:7c:36:95:1e:99:17:bc:f7:10:04:
f8:74:d7:cf:c3:e2:a0:53:af:d8:1e:93:c7:49:f9:
ea:6b:0b:f6:d6:df:82:ca:db:9b:8a:40:bc:b6:69:
47:4b:fe:8b:68:28:97:dc:74:48:a8:e9:46:67:82:
73:ff:d2:13:0f:41:1e:22:5b:e3:ee:90:73:e9:45:
ca:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E6:7B:8F:AA:FE:55:D5:38:2F:D4:AE:77:46:DC:0C:8B:4F:6D:75
X509v3 Authority Key Identifier:
keyid:4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/seZ7j6r-VdU4L9Sud0bcDItPbXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.198.67.0/24
Signature Algorithm: sha256WithRSAEncryption
23:51:03:a1:1b:96:9d:39:69:e1:83:78:40:07:84:77:aa:2c:
f6:5d:19:c0:a2:93:37:dc:6f:bd:b1:fb:bc:17:32:35:80:a2:
c9:20:71:27:60:ce:3b:df:4a:59:a3:20:39:98:c1:61:a8:0e:
07:b6:57:b6:bc:e1:cc:f6:a8:32:ac:a6:e0:6e:63:c5:b5:cc:
90:00:5d:22:df:f7:17:bf:ea:2a:27:cb:5b:22:91:bb:be:36:
41:b3:a7:6a:a6:ca:4c:92:59:49:c5:14:d5:80:9d:c8:4d:03:
e0:57:ca:dd:ec:4a:96:23:1a:a9:f0:4b:d9:5a:76:42:00:19:
ed:00:fe:de:49:77:14:a2:0d:40:fb:11:b6:ba:f4:1c:db:85:
72:0c:76:d0:64:02:f4:57:7a:58:11:a1:bd:e9:a0:bb:a2:21:
e7:90:da:96:84:66:6a:cb:79:a8:87:70:c1:8b:57:34:ec:a7:
e0:4e:a5:74:34:ab:35:38:bb:89:05:a3:84:61:1f:59:99:d9:
b0:dc:81:59:ab:a7:80:e9:ee:d6:32:9b:c4:58:27:ed:4e:68:
45:bc:31:a0:aa:7b:8e:2a:4d:f3:dd:2b:05:12:44:26:09:80:
61:f2:3b:21:e3:95:8e:6f:f3:cb:2a:39:5b:b9:9c:eb:e2:f0:
2d:08:7f:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:40 2024 by rpki-client on console-fra.rpki-client.org