Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e4494e-1e33-4437-8433-037b5a7b9544/1/3ZtxrZ01xEyVBMAgxe0RY2wwrdI.roa
File: 3ZtxrZ01xEyVBMAgxe0RY2wwrdI.roa (raw, json)
Hash identifier: QKKezv2BbNRftjOdpQePZYS6y6ZljjUCtOYPGKDslHs=
Subject key identifier: DD:9B:71:AD:9D:35:C4:4C:95:04:C0:20:C5:ED:11:63:6C:30:AD:D2
Certificate issuer: /CN=039831f7ba3de2fbef16d4649fd4860c15e9d6c3
Certificate serial: 018C32C6D8E9F65678A20BC63186FBE2281C
Authority key identifier: 03:98:31:F7:BA:3D:E2:FB:EF:16:D4:64:9F:D4:86:0C:15:E9:D6:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A5gx97o94vvvFtRkn9SGDBXp1sM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e4494e-1e33-4437-8433-037b5a7b9544/1/3ZtxrZ01xEyVBMAgxe0RY2wwrdI.roa
Signing time: Mon 04 Dec 2023 03:02:21 +0000
ROA not before: Mon 04 Dec 2023 03:02:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211403
IP address blocks: 213.110.230.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:32:c6:d8:e9:f6:56:78:a2:0b:c6:31:86:fb:e2:28:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=039831f7ba3de2fbef16d4649fd4860c15e9d6c3
Validity
Not Before: Dec 4 03:02:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd9b71ad9d35c44c9504c020c5ed11636c30add2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ee:16:96:b4:21:02:44:2e:f0:80:bc:0c:31:
3d:d8:17:01:0d:31:73:5e:7c:ad:6e:13:ab:10:b3:
51:c0:cd:ae:4d:45:ba:59:7b:e0:4d:88:1e:55:7b:
83:51:53:bb:51:40:62:94:8f:5f:26:2b:0f:ef:c8:
ff:f3:c9:5e:bf:30:1f:53:46:09:28:1d:fc:4e:f3:
5d:a5:c8:29:0b:0b:77:11:76:48:85:98:a0:7e:93:
51:06:20:6d:a4:bf:06:9a:ef:9f:9e:f7:7a:b0:48:
4e:97:38:e3:ae:fd:1e:c8:be:94:b8:d9:e5:71:70:
9f:3a:7b:09:67:bb:71:32:a2:6c:a7:48:be:d0:08:
84:1e:1e:16:a2:a5:de:db:f3:5e:e0:a2:e1:7b:93:
72:b7:17:8c:1b:32:5b:b2:d1:87:54:f6:03:29:35:
cb:ed:46:04:8f:af:24:40:39:76:23:2f:cc:7e:5d:
bf:4f:28:02:20:53:84:b8:75:b6:0b:50:f8:25:08:
47:ed:02:2d:96:93:8f:fc:b6:29:87:e9:e2:e4:a9:
2e:82:e3:82:6b:e5:6f:ad:2f:b2:c5:ad:c0:32:0e:
1b:d8:90:87:0d:4f:e4:9f:46:c6:4d:08:f1:94:ed:
5f:38:6e:75:e2:cd:9f:ab:5c:5b:e6:27:5a:17:8b:
c5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:9B:71:AD:9D:35:C4:4C:95:04:C0:20:C5:ED:11:63:6C:30:AD:D2
X509v3 Authority Key Identifier:
keyid:03:98:31:F7:BA:3D:E2:FB:EF:16:D4:64:9F:D4:86:0C:15:E9:D6:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A5gx97o94vvvFtRkn9SGDBXp1sM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e4494e-1e33-4437-8433-037b5a7b9544/1/3ZtxrZ01xEyVBMAgxe0RY2wwrdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e4494e-1e33-4437-8433-037b5a7b9544/1/A5gx97o94vvvFtRkn9SGDBXp1sM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.110.230.0/23
Signature Algorithm: sha256WithRSAEncryption
09:66:3a:24:54:12:60:03:66:22:63:9d:69:71:16:0c:18:9b:
8c:65:ee:89:e7:ae:3b:2b:51:26:a0:88:b1:ac:8a:a7:46:73:
ae:85:63:9e:27:ae:ff:7a:58:c9:1d:46:eb:6c:53:45:2e:bb:
a7:8d:42:c1:3c:7c:ae:22:fa:87:31:6b:ea:5e:3a:f6:68:c7:
38:e7:37:c4:ff:f6:ab:b3:92:06:6a:a7:67:d0:2b:5f:68:cb:
c4:80:cd:1f:94:02:4d:f1:d8:dc:4a:ff:fc:ab:f6:a6:5b:f4:
86:d6:9f:91:4c:61:1e:92:19:42:4d:4a:4e:6b:17:8c:0d:0a:
41:5c:03:75:d3:77:f2:f3:d8:4b:da:23:d1:9f:93:02:d0:f1:
ed:1e:a0:0e:b2:57:d1:cd:e6:56:06:72:2b:a6:06:74:66:de:
fc:2a:9c:db:10:a9:e8:c0:95:1a:13:ce:f6:8f:30:49:b6:fc:
3c:e0:0c:eb:02:28:d4:97:6c:76:b4:77:64:14:e5:fc:43:e2:
bd:80:ab:f0:14:51:a0:6a:43:db:aa:26:76:7c:22:a7:5b:82:
b7:b9:36:23:f2:22:82:b9:f4:a0:4d:be:c6:51:fd:70:51:bd:
37:79:40:46:d5:cc:54:b0:d1:19:b7:f3:80:43:f9:22:69:a8:
ab:d5:a9:a6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwyxtjp9lZ4ogvGMYb74igcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzOTgzMWY3YmEzZGUyZmJlZjE2ZDQ2NDlmZDQ4NjBjMTVl
OWQ2YzMwHhcNMjMxMjA0MDMwMjIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDliNzFhZDlkMzVjNDRjOTUwNGMwMjBjNWVkMTE2MzZjMzBhZGQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl+4WlrQhAkQu8IC8DDE92BcBDTFz
XnytbhOrELNRwM2uTUW6WXvgTYgeVXuDUVO7UUBilI9fJisP78j/88levzAfU0YJ
KB38TvNdpcgpCwt3EXZIhZigfpNRBiBtpL8Gmu+fnvd6sEhOlzjjrv0eyL6UuNnl
cXCfOnsJZ7txMqJsp0i+0AiEHh4WoqXe2/Ne4KLhe5NytxeMGzJbstGHVPYDKTXL
7UYEj68kQDl2Iy/Mfl2/TygCIFOEuHW2C1D4JQhH7QItlpOP/LYph+ni5KkuguOC
a+VvrS+yxa3AMg4b2JCHDU/kn0bGTQjxlO1fOG514s2fq1xb5idaF4vFTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN2bca2dNcRMlQTAIMXtEWNsMK3SMB8GA1UdIwQY
MBaAFAOYMfe6PeL77xbUZJ/UhgwV6dbDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQTVneDk3bzk0dnZ2RnRSa245U0dEQlhwMXNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lNDQ5NGUtMWUzMy00NDM3LTg0MzMt
MDM3YjVhN2I5NTQ0LzEvM1p0eHJaMDF4RXlWQk1BZ3hlMFJZMnd3cmRJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9lNDQ5NGUtMWUzMy00NDM3LTg0MzMtMDM3YjVhN2I5NTQ0
LzEvQTVneDk3bzk0dnZ2RnRSa245U0dEQlhwMXNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB1W7mMA0G
CSqGSIb3DQEBCwUAA4IBAQAJZjokVBJgA2YiY51pcRYMGJuMZe6J5647K1EmoIix
rIqnRnOuhWOeJ67/eljJHUbrbFNFLrunjULBPHyuIvqHMWvqXjr2aMc45zfE//ar
s5IGaqdn0CtfaMvEgM0flAJN8djcSv/8q/amW/SG1p+RTGEekhlCTUpOaxeMDQpB
XAN103fy89hL2iPRn5MC0PHtHqAOslfRzeZWBnIrpgZ0Zt78KpzbEKnowJUaE872
jzBJtvw84AzrAijUl2x2tHdkFOX8Q+K9gKvwFFGgakPbqiZ2fCKnW4K3uTYj8iKC
ufSgTb7GUf1wUb03eUBG1cxUsNEZt/OAQ/kiaair1amm
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:05 2024 by rpki-client on console-ams.rpki-client.org