Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/b4515e-8641-45b0-b75f-096921c91c41/1/oXtZ6D1YrJCh0Z3QBWkLjTfKFnE.roa
File: oXtZ6D1YrJCh0Z3QBWkLjTfKFnE.roa (raw, json)
Hash identifier: de1gLEZC68RYSa0j/YCXu7cb7FwvBj2LCGqP98syXVQ=
Subject key identifier: A1:7B:59:E8:3D:58:AC:90:A1:D1:9D:D0:05:69:0B:8D:37:CA:16:71
Certificate issuer: /CN=defc2686c29abef18f40b30e7e9513247a66ef13
Certificate serial: 018755DA0EF6C5CC489EAEC606A0069DE129
Authority key identifier: DE:FC:26:86:C2:9A:BE:F1:8F:40:B3:0E:7E:95:13:24:7A:66:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3vwmhsKavvGPQLMOfpUTJHpm7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/b4515e-8641-45b0-b75f-096921c91c41/1/oXtZ6D1YrJCh0Z3QBWkLjTfKFnE.roa
Signing time: Thu 06 Apr 2023 09:16:06 +0000
ROA not before: Thu 06 Apr 2023 09:16:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58293
IP address blocks: 212.6.33.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:55:da:0e:f6:c5:cc:48:9e:ae:c6:06:a0:06:9d:e1:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=defc2686c29abef18f40b30e7e9513247a66ef13
Validity
Not Before: Apr 6 09:16:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a17b59e83d58ac90a1d19dd005690b8d37ca1671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:da:e1:3e:d1:09:b1:20:c2:ba:04:fc:bb:42:
e4:84:47:6b:77:ac:02:aa:e2:22:3a:c2:6d:bb:93:
0e:58:08:fd:c9:86:b6:d5:4b:27:c0:c7:01:ff:d7:
57:42:13:e7:62:be:98:3c:8d:2e:b6:33:49:34:9f:
16:d6:f9:87:08:95:a3:a2:b7:8e:4d:a8:d3:37:f0:
3c:2f:08:8c:96:5e:31:0d:26:83:01:c0:92:80:1c:
26:f5:17:69:c6:01:95:ac:f8:ed:37:09:90:9c:42:
60:44:81:26:87:96:cc:cc:aa:e1:c1:8d:43:db:b5:
a5:29:90:75:84:49:8a:4d:88:9c:e3:88:ca:f3:c1:
41:f1:91:47:a3:13:ca:37:76:e7:bc:31:6c:07:66:
d2:04:88:a9:98:fd:36:8b:93:78:b7:79:6f:9d:73:
12:b8:ba:5a:5b:bc:fe:b2:ce:21:b6:c4:6c:c6:ea:
77:09:cc:93:7f:a9:51:42:ba:c7:cb:3f:98:b2:6e:
bf:de:b3:9f:ca:62:92:7f:01:cf:4c:03:37:d2:4c:
b5:b6:2f:1a:19:7c:77:dd:cd:90:79:46:03:02:cd:
ed:4a:78:81:66:ae:e9:f8:d9:e0:ed:f5:df:08:eb:
25:87:70:67:96:36:b5:a5:34:a1:98:f5:21:a9:5e:
2b:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:7B:59:E8:3D:58:AC:90:A1:D1:9D:D0:05:69:0B:8D:37:CA:16:71
X509v3 Authority Key Identifier:
keyid:DE:FC:26:86:C2:9A:BE:F1:8F:40:B3:0E:7E:95:13:24:7A:66:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3vwmhsKavvGPQLMOfpUTJHpm7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b4515e-8641-45b0-b75f-096921c91c41/1/oXtZ6D1YrJCh0Z3QBWkLjTfKFnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b4515e-8641-45b0-b75f-096921c91c41/1/3vwmhsKavvGPQLMOfpUTJHpm7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.6.33.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:65:0b:46:42:0b:7f:d7:6e:6d:2c:a0:bd:cd:08:39:ed:7b:
a3:e5:f4:05:84:c3:1f:44:76:28:0c:5c:67:0b:40:38:88:68:
32:d6:6b:b2:ef:12:82:34:d9:08:b0:b7:16:ec:bf:e2:f6:04:
bc:1f:74:ed:41:08:2b:c3:88:27:39:17:cb:22:31:74:31:d5:
5a:59:14:a6:0a:12:b6:d6:bc:16:ce:70:b0:e9:98:97:22:39:
03:7d:a6:66:c9:8b:99:d9:9b:d7:18:54:86:4d:ed:95:b6:ad:
64:58:6e:22:f4:fd:45:24:6f:a1:75:2a:88:df:9f:41:3f:26:
04:05:bc:74:67:90:f7:17:fa:06:36:1c:b7:10:1a:63:38:6f:
0c:58:7b:45:9b:f8:28:51:c8:1e:ef:63:77:8a:28:a2:b1:ca:
d7:8d:2a:3f:ba:d1:a0:7e:d2:d9:cf:88:33:5e:bc:7e:23:47:
a0:b1:9b:9e:55:07:a8:2b:25:47:2f:f2:a3:82:17:bb:24:00:
49:6e:0d:60:0a:9a:ca:3b:fb:0e:1f:ba:43:82:42:cf:c7:9f:
84:35:6e:1f:7f:40:31:44:e1:16:66:55:2d:94:50:6b:bb:f9:
51:80:ec:4f:01:23:df:cd:0e:c7:8c:f7:dd:2c:9b:4f:00:86:
03:78:45:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:49 2024 by rpki-client on console-ams.rpki-client.org