Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/kscXpuBw_Ri9sq9RPn86KWrfsSo.roa
File: kscXpuBw_Ri9sq9RPn86KWrfsSo.roa (raw, json)
Hash identifier: SgzpkWtKM4m6QwkUTIvAL9ZxBqzzmun2+fXr4qiyuKs=
Subject key identifier: 92:C7:17:A6:E0:70:FD:18:BD:B2:AF:51:3E:7F:3A:29:6A:DF:B1:2A
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018BA94B2BA022A27C6F07C79184612F8BE8
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/kscXpuBw_Ri9sq9RPn86KWrfsSo.roa
Signing time: Tue 07 Nov 2023 10:19:17 +0000
ROA not before: Tue 07 Nov 2023 10:19:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 212.23.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Nov 2023 21:04:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a9:4b:2b:a0:22:a2:7c:6f:07:c7:91:84:61:2f:8b:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Nov 7 10:19:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92c717a6e070fd18bdb2af513e7f3a296adfb12a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:19:ca:73:56:5d:16:0b:be:a9:29:3c:4b:8d:
b7:79:92:23:b6:94:d8:a9:47:ee:d7:a1:f9:dc:8c:
43:30:14:12:c6:0d:7e:e4:d0:77:2b:ff:b1:66:eb:
69:79:4c:b4:29:85:9c:5e:90:0e:9b:b9:2c:17:76:
bf:70:55:e8:0b:ff:8e:c2:da:ca:6d:a1:c2:97:38:
cd:2b:12:8f:ad:3e:7d:9f:a8:8e:06:fc:c1:fc:e1:
f2:0d:11:a4:74:60:5c:f3:ce:a4:98:38:87:d0:75:
8d:af:c4:b7:fe:6f:58:37:ea:2e:53:f3:08:da:c2:
c3:5d:38:48:00:fb:33:9c:f7:e5:1f:f3:f9:08:fe:
59:49:e5:41:97:05:b3:f3:52:71:26:47:ae:5a:08:
f4:bf:01:79:94:27:4c:86:61:54:78:dd:cf:36:15:
da:23:8c:33:d2:1f:90:b6:ea:a1:4d:9e:34:82:8f:
b5:b7:05:cd:9f:6b:a3:ab:08:e5:f8:30:72:f2:d3:
5e:09:1e:d2:b8:d7:13:a6:18:13:44:52:58:2d:fa:
79:58:c2:03:13:7d:ca:5e:50:16:c5:03:5c:72:63:
77:d0:01:0e:ae:6d:36:b1:7d:54:b1:fd:c7:70:16:
a0:3f:d9:57:10:5a:75:b0:ca:5c:82:48:8a:5e:e6:
37:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:C7:17:A6:E0:70:FD:18:BD:B2:AF:51:3E:7F:3A:29:6A:DF:B1:2A
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/kscXpuBw_Ri9sq9RPn86KWrfsSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.206.0/24
Signature Algorithm: sha256WithRSAEncryption
82:d1:ca:4d:c2:13:72:dc:cf:13:a1:f0:85:58:b4:91:5f:e6:
46:ae:69:04:de:31:3b:c3:19:f0:fb:76:19:32:ed:7e:0a:23:
4f:74:9e:71:42:49:4f:85:b1:b5:f9:df:bd:36:dc:a0:f5:d0:
73:f1:07:e5:3c:54:cd:9a:12:f2:df:ba:c5:10:d7:8e:1b:63:
51:55:88:a3:ad:00:fb:d1:88:ac:ba:95:3f:8f:cc:07:39:9d:
5f:b2:fe:90:6c:db:c6:52:f2:82:05:47:26:31:2e:06:01:0b:
f1:54:34:c0:ff:2a:ea:39:fa:91:0f:2d:17:78:79:0b:d0:a6:
d7:fc:00:a7:60:4b:b8:ef:64:14:06:a1:08:c5:b8:a7:86:a6:
67:73:5f:32:8a:c6:f7:9d:f5:48:3a:e2:70:ed:dc:bc:46:4d:
a6:25:96:5a:67:41:52:d1:5b:a6:fb:71:01:7a:01:3a:57:36:
90:85:46:28:ac:d9:30:46:ed:48:97:27:de:ee:dc:5f:e2:c9:
7d:10:38:f3:8b:8d:cb:14:00:a1:87:bb:38:5a:35:4e:a2:55:
7a:6d:ed:60:18:db:3f:ab:3c:ec:7e:4f:f9:4d:ec:4d:ed:06:
b8:f9:6a:20:51:ac:35:f8:69:7e:79:bd:7d:d8:1a:49:05:46:
48:00:44:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:37 2024 by rpki-client on console-fra.rpki-client.org