Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/boKCMSAeS8dO0PSVNAOxD_HrHT8.roa
File: boKCMSAeS8dO0PSVNAOxD_HrHT8.roa (raw, json)
Hash identifier: yf2A/zkq4AS0zVW9g2nugNbFesjImArstvtesCnAOuo=
Subject key identifier: 6E:82:82:31:20:1E:4B:C7:4E:D0:F4:95:34:03:B1:0F:F1:EB:1D:3F
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 0185700278125A063FF928A132F6DA2A08BF
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/boKCMSAeS8dO0PSVNAOxD_HrHT8.roa
Signing time: Mon 02 Jan 2023 01:04:48 +0000
ROA not before: Mon 02 Jan 2023 01:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9121
IP address blocks: 212.133.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Mar 2023 07:24:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:78:12:5a:06:3f:f9:28:a1:32:f6:da:2a:08:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 2 01:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e828231201e4bc74ed0f4953403b10ff1eb1d3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d6:d0:54:92:a6:68:ec:3d:0c:84:9d:23:29:
2b:a2:76:b6:7b:f7:e8:48:a9:37:d2:09:52:50:71:
58:cf:31:5a:5c:83:d3:67:ca:96:b7:7b:8f:85:07:
1f:e7:c5:74:6c:85:7e:5a:a8:75:cb:42:23:26:61:
c7:2a:27:02:77:45:a7:81:db:de:61:56:1f:ce:9b:
8e:a5:f1:cb:dc:64:53:e6:00:fd:5a:b3:03:59:06:
2b:cd:84:65:b3:0f:28:cd:8a:1b:e5:5f:2d:ac:a7:
51:d0:14:fc:df:3b:f2:17:85:c6:a4:77:dc:04:18:
6d:9d:24:e4:b4:41:22:ac:1a:d7:f4:6a:35:0b:1d:
f3:0a:94:69:06:74:7c:5a:c5:4a:1a:ea:9c:fd:35:
70:83:37:b5:ee:88:42:35:8c:c7:1a:0a:98:2e:80:
6e:79:36:08:5f:c8:fb:09:86:59:cc:78:8a:94:4c:
a4:a9:a0:6d:16:50:b0:59:59:6d:d0:68:99:44:51:
55:bb:96:d2:c4:fd:fb:28:ba:d8:32:d5:e1:2a:59:
cf:24:e1:cf:4a:9e:de:1b:8d:34:c9:47:ae:7f:26:
84:d8:46:c4:d8:d8:35:59:73:13:a8:c3:9e:f0:44:
50:fa:29:92:08:d6:ae:be:59:71:c2:70:a9:c4:20:
7a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:82:82:31:20:1E:4B:C7:4E:D0:F4:95:34:03:B1:0F:F1:EB:1D:3F
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/boKCMSAeS8dO0PSVNAOxD_HrHT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.133.164.0/24
Signature Algorithm: sha256WithRSAEncryption
71:d2:26:09:c2:d6:da:aa:58:4e:6c:42:20:b9:32:46:9f:4f:
bf:0c:41:8b:c5:51:7a:3b:9c:de:a6:e8:c3:8c:de:0b:26:a1:
27:5b:5c:65:da:ae:a4:bd:c8:55:c3:16:7d:b0:ed:39:b5:5f:
37:94:5a:3d:cd:35:33:7f:8b:fd:ba:93:93:67:8a:10:82:8e:
1f:85:d4:68:25:ce:f0:95:47:c0:7f:bb:9a:04:82:df:f6:52:
18:b1:d2:27:d5:6f:55:e3:77:18:be:18:94:8c:75:d7:9f:39:
c2:80:cf:81:16:47:40:ed:3c:5f:be:50:68:62:65:0e:06:3f:
5d:94:c8:da:1c:94:51:fd:b1:83:15:02:64:33:df:9c:4f:af:
c6:60:5e:1e:b6:8a:c1:e4:fc:b1:0e:a3:94:1d:6b:79:15:45:
b2:df:a9:ca:bf:c0:68:61:b7:6d:14:59:35:42:27:64:bc:15:
ff:1e:57:7f:8e:d6:e8:ed:28:ab:c1:7d:f0:14:94:91:68:9d:
77:e8:1e:79:87:ed:ac:49:39:9b:00:6d:20:58:e7:88:2f:59:
37:4f:f4:f6:54:17:43:5f:cc:6f:76:88:f1:00:ff:ab:2b:ec:
23:24:66:d9:4f:f9:ed:32:e0:58:d2:e0:fa:f2:e0:19:08:f0:
25:54:bf:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:37 2024 by rpki-client on console-ams.rpki-client.org