Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/v2HC7zbybMyvyv-3e4yoiY8nd9k.roa
File: v2HC7zbybMyvyv-3e4yoiY8nd9k.roa (raw, json)
Hash identifier: gKKUkx9gggrX4NZownUIl1vLkehBETimR1mRweTLzHg=
Subject key identifier: BF:61:C2:EF:36:F2:6C:CC:AF:CA:FF:B7:7B:8C:A8:89:8F:27:77:D9
Certificate issuer: /CN=6278a768c910badcd5c4aef7c172a9f061547e8c
Certificate serial: 0188291DBB4E0FA3DC919477FB828B83D982
Authority key identifier: 62:78:A7:68:C9:10:BA:DC:D5:C4:AE:F7:C1:72:A9:F0:61:54:7E:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YninaMkQutzVxK73wXKp8GFUfow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/v2HC7zbybMyvyv-3e4yoiY8nd9k.roa
Signing time: Wed 17 May 2023 09:49:54 +0000
ROA not before: Wed 17 May 2023 09:49:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15982
IP address blocks: 213.244.230.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:29:1d:bb:4e:0f:a3:dc:91:94:77:fb:82:8b:83:d9:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6278a768c910badcd5c4aef7c172a9f061547e8c
Validity
Not Before: May 17 09:49:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf61c2ef36f26cccafcaffb77b8ca8898f2777d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:20:c6:cb:e9:41:91:2f:25:60:06:ae:aa:f8:
3f:b4:3b:0f:21:11:9b:dd:8c:8e:38:81:8a:07:01:
5f:9d:49:a6:77:ef:bf:91:d8:d6:e8:35:59:c3:83:
6f:eb:f3:b0:a1:47:f1:05:ae:7d:4c:11:53:86:41:
d6:03:18:72:70:22:11:73:c6:4e:90:43:9f:4d:51:
6e:21:e2:fe:f6:1e:43:c1:b4:a0:48:32:f7:d7:88:
a1:3d:35:4e:cf:99:f8:66:7d:76:67:f1:dc:ec:fd:
31:c2:f1:ed:da:2d:7a:6d:c0:96:83:9d:be:86:d6:
40:51:c9:48:c3:a6:4c:02:b9:01:aa:7b:3c:d3:ad:
42:b7:f2:75:5d:3d:78:0b:33:e9:91:85:3c:77:1e:
3a:f7:c0:7a:6a:66:69:eb:46:16:ad:f0:20:6b:84:
7a:66:77:6a:fe:97:87:a1:fc:ea:12:dd:71:86:b0:
c6:91:6b:c6:ae:4a:a6:e8:2b:de:ea:d5:21:e7:f5:
5b:b2:18:ee:61:d9:ce:50:ad:29:8b:d9:a9:8d:09:
6d:ab:17:92:de:8f:f1:ee:5c:55:94:95:5d:77:e8:
03:26:8d:49:b8:e0:8c:8b:d1:84:6b:cd:e0:9c:bb:
e7:58:30:a8:95:0d:79:5e:9b:36:0f:59:55:61:6a:
94:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:61:C2:EF:36:F2:6C:CC:AF:CA:FF:B7:7B:8C:A8:89:8F:27:77:D9
X509v3 Authority Key Identifier:
keyid:62:78:A7:68:C9:10:BA:DC:D5:C4:AE:F7:C1:72:A9:F0:61:54:7E:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YninaMkQutzVxK73wXKp8GFUfow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/v2HC7zbybMyvyv-3e4yoiY8nd9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/YninaMkQutzVxK73wXKp8GFUfow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.244.230.0/23
Signature Algorithm: sha256WithRSAEncryption
05:a7:55:a6:6e:4e:b3:e1:c8:3f:50:f7:db:3d:4e:e1:09:40:
2c:31:2d:49:50:d1:3a:3e:01:e6:48:1e:fb:5e:3a:5c:2b:a3:
f7:d9:6e:ee:1a:43:0b:ad:c6:ca:ac:2a:ea:56:ad:b9:3a:82:
ec:06:8f:61:bd:94:6e:32:06:da:95:25:1d:43:91:cb:81:6b:
37:16:b9:fa:0f:26:5d:98:45:97:55:73:d1:de:49:24:0a:60:
85:44:f2:4a:ff:17:5b:69:6b:7b:c8:87:fe:8b:11:52:00:0e:
ac:66:47:73:67:bf:0c:96:44:94:4d:1e:5e:bd:8f:d3:aa:8b:
8c:0b:e1:2c:4d:c8:d7:27:ea:20:d5:db:60:99:18:96:26:1e:
f3:90:d4:8a:f1:ec:67:37:bd:06:19:e9:44:73:43:8d:4c:ff:
56:17:25:84:fd:42:ff:98:9f:e6:9d:41:a8:e4:20:41:72:53:
bb:a3:89:b5:aa:77:24:c6:84:b2:a0:7d:d7:e3:60:fe:ad:a0:
bb:ba:84:d1:34:37:cf:34:f5:1e:0d:70:36:ef:13:a6:65:05:
73:d1:57:ac:1e:d2:84:50:d2:87:4c:59:a6:3d:e8:3b:34:0a:
35:91:71:a4:ce:d0:c1:18:9f:c4:bf:40:f2:cc:e6:67:c3:f7:
60:d2:4d:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:30 2024 by rpki-client on console-fra.rpki-client.org