Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/IQzhyZ2c5FlrarwY9k-CHxzjvoo.roa
File: IQzhyZ2c5FlrarwY9k-CHxzjvoo.roa (raw, json)
Hash identifier: MtgIehGFhEtlTK8fpmeSwVsGXUvBUneKClRaUG5l5vI=
Subject key identifier: 21:0C:E1:C9:9D:9C:E4:59:6B:6A:BC:18:F6:4F:82:1F:1C:E3:BE:8A
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018D1D88AAD8D600EAFCF926AB944511E755
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/IQzhyZ2c5FlrarwY9k-CHxzjvoo.roa
Signing time: Thu 18 Jan 2024 17:05:12 +0000
ROA not before: Thu 18 Jan 2024 17:05:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 212.23.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Apr 2024 09:42:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1d:88:aa:d8:d6:00:ea:fc:f9:26:ab:94:45:11:e7:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jan 18 17:05:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=210ce1c99d9ce4596b6abc18f64f821f1ce3be8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:df:bf:7b:3a:a4:37:f9:d9:8d:48:d5:e0:86:
27:24:c2:71:72:f8:c6:e7:15:f6:ae:7b:73:0d:6d:
68:1d:b3:db:85:6a:ff:07:1b:be:9c:c2:99:6d:a8:
a1:05:c8:c3:01:c8:39:a8:ed:07:12:20:f7:13:e2:
01:fb:a3:ca:10:0f:d2:29:1c:84:30:7f:26:bf:90:
c6:b2:57:00:c9:3f:72:aa:9b:e6:22:07:1a:cc:7a:
26:ec:40:1e:96:0e:3b:2f:2c:6f:6b:1d:c4:ac:80:
e6:ea:5a:30:83:3a:b9:50:e4:c3:f6:56:c8:22:a9:
93:5a:8e:fc:10:fa:c8:c7:51:f5:4d:ff:a2:0f:ab:
57:6f:0a:7e:a9:d4:ab:fe:ba:28:86:81:38:f6:8d:
16:80:1b:fc:9a:c4:e7:89:60:4c:4d:72:cc:e6:11:
eb:f7:de:b9:b2:a4:55:d7:7f:a3:df:0a:a8:74:01:
82:44:47:0e:29:80:98:e0:56:75:5f:5a:7b:1a:0f:
85:e0:02:06:9e:97:3b:11:d5:fb:a2:1f:c8:04:14:
2a:e3:51:a9:3a:af:02:62:7d:c6:63:40:bd:6a:08:
e7:ac:c9:ff:eb:cc:7e:37:33:80:d8:f9:d7:2b:e0:
fa:ed:54:ef:3d:9d:a4:f9:44:75:b8:7a:7c:30:13:
e6:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:0C:E1:C9:9D:9C:E4:59:6B:6A:BC:18:F6:4F:82:1F:1C:E3:BE:8A
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/IQzhyZ2c5FlrarwY9k-CHxzjvoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.206.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:ab:bb:53:81:9a:85:14:a3:b7:07:5b:a6:01:5d:32:09:2f:
2d:d7:b7:32:67:6e:88:c5:d3:43:a4:60:b2:b5:13:00:9f:af:
30:9a:e6:49:69:b6:83:8e:84:01:6a:2d:09:ad:98:0a:78:03:
01:26:3d:3e:8a:c3:c9:20:26:37:8e:e5:6e:1c:9c:fd:94:2d:
53:b1:6c:4c:db:e5:1f:6b:78:1c:05:e8:1b:7e:8c:0d:c7:cb:
bf:f8:d8:65:f7:6f:8e:1a:8f:45:27:b0:0c:47:8b:3c:37:bf:
d1:db:a4:b3:26:85:78:2e:75:93:f1:e2:7c:b6:9e:0c:5e:33:
2d:96:cb:4a:58:88:e4:b2:34:d3:e8:12:e6:7c:4d:19:c8:99:
df:85:31:db:8b:c5:bc:58:94:b0:54:f3:d2:4d:20:41:51:2a:
b5:d2:44:f2:aa:1e:6c:ac:6f:37:ec:3e:53:08:c2:bd:f4:01:
ff:61:38:89:4b:14:c0:48:4a:ee:0e:fa:c5:6e:0f:cb:63:6c:
43:36:86:be:2c:81:19:51:47:d8:3b:ca:be:2a:f9:c5:c8:2f:
f3:86:c9:42:35:af:2a:f3:96:46:d2:a4:26:40:3f:09:9f:e4:
82:63:36:97:8c:28:9b:6f:13:9d:f1:4a:bd:8a:2f:d8:37:16:
e2:e4:db:c1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY0diKrY1gDq/Pkmq5RFEedVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj
NWFjOGQwHhcNMjQwMTE4MTcwNTEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMTBjZTFjOTlkOWNlNDU5NmI2YWJjMThmNjRmODIxZjFjZTNiZThhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9+/ezqkN/nZjUjV4IYnJMJxcvjG
5xX2rntzDW1oHbPbhWr/Bxu+nMKZbaihBcjDAcg5qO0HEiD3E+IB+6PKEA/SKRyE
MH8mv5DGslcAyT9yqpvmIgcazHom7EAelg47Lyxvax3ErIDm6lowgzq5UOTD9lbI
IqmTWo78EPrIx1H1Tf+iD6tXbwp+qdSr/roohoE49o0WgBv8msTniWBMTXLM5hHr
9965sqRV13+j3wqodAGCREcOKYCY4FZ1X1p7Gg+F4AIGnpc7EdX7oh/IBBQq41Gp
Oq8CYn3GY0C9agjnrMn/68x+NzOA2PnXK+D67VTvPZ2k+UR1uHp8MBPmjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCEM4cmdnORZa2q8GPZPgh8c476KMB8GA1UdIwQY
MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt
MzE4YTI2ZDRhOGM5LzEvSVF6aHlaMmM1RmxyYXJ3WTlrLUNIeHpqdm9vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5
LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BfOMA0G
CSqGSIb3DQEBCwUAA4IBAQAaq7tTgZqFFKO3B1umAV0yCS8t17cyZ26IxdNDpGCy
tRMAn68wmuZJabaDjoQBai0JrZgKeAMBJj0+isPJICY3juVuHJz9lC1TsWxM2+Uf
a3gcBegbfowNx8u/+Nhl92+OGo9FJ7AMR4s8N7/R26SzJoV4LnWT8eJ8tp4MXjMt
lstKWIjksjTT6BLmfE0ZyJnfhTHbi8W8WJSwVPPSTSBBUSq10kTyqh5srG837D5T
CMK99AH/YTiJSxTASEruDvrFbg/LY2xDNoa+LIEZUUfYO8q+KvnFyC/zhslCNa8q
85ZG0qQmQD8Jn+SCYzaXjCibbxOd8Uq9ii/YNxbi5NvB
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org