Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/b4515e-8641-45b0-b75f-096921c91c41/1/4m9ZdCyw2KW20idMdptus6pa0OM.roa
File: 4m9ZdCyw2KW20idMdptus6pa0OM.roa (raw, json)
Hash identifier: 9U+/IE8JUbNZWXBKWw3+o4nX+gRZY/Jwf81M5Ef086k=
Subject key identifier: E2:6F:59:74:2C:B0:D8:A5:B6:D2:27:4C:76:9B:6E:B3:AA:5A:D0:E3
Certificate issuer: /CN=defc2686c29abef18f40b30e7e9513247a66ef13
Certificate serial: 01857082C16ED0CC04CE5481832D013E659E
Authority key identifier: DE:FC:26:86:C2:9A:BE:F1:8F:40:B3:0E:7E:95:13:24:7A:66:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3vwmhsKavvGPQLMOfpUTJHpm7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/b4515e-8641-45b0-b75f-096921c91c41/1/4m9ZdCyw2KW20idMdptus6pa0OM.roa
Signing time: Mon 02 Jan 2023 03:24:55 +0000
ROA not before: Mon 02 Jan 2023 03:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207782
IP address blocks: 212.6.33.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:c1:6e:d0:cc:04:ce:54:81:83:2d:01:3e:65:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=defc2686c29abef18f40b30e7e9513247a66ef13
Validity
Not Before: Jan 2 03:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e26f59742cb0d8a5b6d2274c769b6eb3aa5ad0e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ca:7c:c3:58:0b:ce:27:cc:97:04:10:b9:4e:
3b:b5:d0:9d:97:41:6f:24:f9:63:28:47:69:f1:19:
96:d9:ab:f6:f7:da:4a:6b:8a:86:51:64:68:10:a4:
01:b1:f5:87:99:86:87:2d:2d:0b:c9:45:ad:dc:94:
50:ef:3f:03:7d:d8:d5:49:c4:cd:0a:8d:17:08:7b:
24:dd:dd:0c:03:35:25:9b:26:b1:aa:02:37:07:d5:
e1:b5:b3:9b:a2:de:e2:be:e0:28:97:6c:c4:c3:4b:
2c:2d:1c:8a:ac:05:21:8e:e2:26:d0:29:11:27:9e:
2a:6d:11:59:f7:f7:3d:e2:39:1b:5e:6b:18:56:18:
e3:07:f5:ee:b2:c0:e5:fe:2a:b9:8d:67:dd:72:eb:
17:dd:3e:84:52:fe:d8:b7:33:a9:2f:22:da:81:82:
4c:5c:67:18:e7:2e:28:82:a3:c8:2e:39:a4:94:09:
77:1b:39:61:50:69:9d:24:b0:ab:b9:ba:d4:40:f0:
89:21:30:37:97:b9:94:54:a1:ea:4e:a6:df:06:23:
8d:7a:78:02:b5:c4:5d:3f:e3:5d:cc:7b:9f:a8:bd:
35:84:14:c5:38:6a:5e:57:85:49:55:20:43:6f:45:
da:41:6e:2b:d0:2d:73:68:6c:74:2b:14:38:04:b8:
a4:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:6F:59:74:2C:B0:D8:A5:B6:D2:27:4C:76:9B:6E:B3:AA:5A:D0:E3
X509v3 Authority Key Identifier:
keyid:DE:FC:26:86:C2:9A:BE:F1:8F:40:B3:0E:7E:95:13:24:7A:66:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3vwmhsKavvGPQLMOfpUTJHpm7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b4515e-8641-45b0-b75f-096921c91c41/1/4m9ZdCyw2KW20idMdptus6pa0OM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b4515e-8641-45b0-b75f-096921c91c41/1/3vwmhsKavvGPQLMOfpUTJHpm7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.6.33.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:9c:54:07:48:bf:54:2a:c2:d5:33:e2:26:41:50:fe:64:56:
f4:97:aa:92:ca:d2:46:86:1a:0e:70:7f:e3:86:13:b5:c1:bc:
ed:14:af:15:a4:f9:10:cf:f1:2f:f1:02:0b:34:a3:40:9d:2e:
0a:0e:8c:dc:75:03:e3:93:1d:68:c1:2b:dc:4d:70:22:59:22:
e1:7d:8f:c2:25:ad:05:2d:27:71:e2:95:1d:dc:fc:6e:44:55:
9a:47:a6:9d:41:f6:74:56:ea:d8:de:a1:b9:fc:37:e9:d5:49:
25:56:b5:f6:b3:f4:5d:89:5e:0c:c4:4a:7c:d7:83:d8:3c:c1:
c2:55:56:71:55:58:c6:5d:c5:9f:b2:1b:d2:d1:59:79:d1:45:
6f:86:f3:16:87:43:45:09:5d:6e:25:03:ca:88:e9:d2:12:9a:
03:be:0e:b6:5b:ba:53:b2:c9:fa:a4:c7:cd:d3:13:f4:18:3b:
2d:ff:17:0d:d4:7d:89:94:bc:ae:6f:70:38:7a:c8:cf:fa:34:
4f:4a:64:a4:f9:f6:91:b4:9b:3b:21:f3:2d:b5:3f:24:67:44:
69:66:fe:7e:18:01:db:04:8b:9e:bd:b2:7e:c1:27:b6:62:56:
6c:f2:04:b3:dc:9c:59:92:24:75:2a:bc:a5:c4:4b:34:f2:d2:
a8:56:0e:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:07 2024 by rpki-client on console-fra.rpki-client.org