Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/ZDlINdlUdURJq3Q8rU6zyNypHYs.roa
File: ZDlINdlUdURJq3Q8rU6zyNypHYs.roa (raw, json)
Hash identifier: xyzaJuE6HCNa8DJc0V5hxBH9azQlwFcXYCcGT8Du4eI=
Subject key identifier: 64:39:48:35:D9:54:75:44:49:AB:74:3C:AD:4E:B3:C8:DC:A9:1D:8B
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 01856B532842B07AC47CBB18795BDD314D1B
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/ZDlINdlUdURJq3Q8rU6zyNypHYs.roa
Signing time: Sun 01 Jan 2023 03:14:49 +0000
ROA not before: Sun 01 Jan 2023 03:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212069
IP address blocks: 213.238.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:53:28:42:b0:7a:c4:7c:bb:18:79:5b:dd:31:4d:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 03:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64394835d954754449ab743cad4eb3c8dca91d8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:07:9c:64:3c:a5:e6:6d:c2:06:a4:61:84:96:
d8:ed:23:40:95:9c:37:e6:de:b9:ec:31:d2:b8:b1:
79:60:f6:fa:2a:22:89:50:e8:00:45:49:97:63:5b:
d7:ce:83:65:a3:3f:25:a9:3a:3e:a4:3e:f6:d2:23:
62:76:3b:62:2a:ac:36:bd:5f:bb:3e:98:a5:45:a5:
02:0f:11:cf:0f:46:70:8f:98:d8:b1:ce:29:7f:06:
ef:33:8c:22:0d:d0:b4:71:c1:6b:bf:d6:55:e9:ef:
73:a9:b9:20:55:6f:70:49:cb:ba:6c:a2:a6:11:8a:
65:66:7a:b8:67:68:ef:e1:37:f3:ad:89:1a:14:b9:
6f:c1:44:e7:ff:53:63:12:ea:21:59:e8:1f:b2:03:
48:6a:13:e3:da:e5:58:19:01:21:81:e6:39:f9:a5:
1c:64:bc:d6:d2:df:65:6b:3d:f9:95:4c:04:ac:e8:
98:0c:7e:f0:81:83:25:d1:a3:a3:f4:20:31:e5:5e:
0a:c8:9b:71:c7:f7:25:d2:c5:40:aa:2b:62:f6:5c:
12:74:67:8b:c9:b3:64:86:81:61:f0:87:41:a6:60:
11:e3:13:f2:be:42:7c:d7:a8:d0:14:a2:26:ba:30:
cf:45:af:c7:aa:ee:45:58:2a:ec:54:de:18:32:32:
af:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:39:48:35:D9:54:75:44:49:AB:74:3C:AD:4E:B3:C8:DC:A9:1D:8B
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/ZDlINdlUdURJq3Q8rU6zyNypHYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.168.0/24
Signature Algorithm: sha256WithRSAEncryption
96:6c:49:e1:81:69:16:e7:55:33:98:9a:29:b8:8d:8d:22:24:
90:e2:1e:dc:be:39:2a:c2:83:cf:d8:e7:46:5d:1a:88:32:b6:
ea:19:bc:57:81:1d:e3:93:d2:29:8c:b0:73:0c:5d:cb:05:c2:
65:d8:08:f9:d3:a4:6c:a2:24:cd:c8:94:75:94:81:4b:d1:4c:
f8:ce:e1:38:6c:86:d8:ac:81:81:ca:08:cb:02:35:34:13:23:
b4:b1:dc:e2:aa:78:c5:73:2f:2f:85:d7:cb:14:bc:29:fe:25:
bd:10:6e:13:db:6a:9b:1d:55:42:6c:2f:e2:f3:c0:17:03:c0:
b6:20:ed:7f:fa:31:33:2e:ef:25:d1:98:55:e6:34:77:5f:70:
83:8b:d2:21:92:a1:0a:c0:6d:b6:10:4d:4d:52:df:1f:20:1f:
cd:c7:b2:9a:b3:99:3b:cf:09:dc:18:6d:bb:b4:9e:ea:cd:83:
a6:56:3a:82:2c:06:16:35:22:81:12:b1:be:77:4c:8c:57:2f:
0b:c0:c5:bb:1b:a6:cf:0d:6f:e0:30:f4:af:1a:79:9c:13:37:
c1:a0:4d:a1:53:56:d0:69:95:2d:70:52:c8:c6:cf:86:76:06:
b3:ba:a6:b0:3f:b0:d8:aa:11:33:23:32:6e:04:1b:91:42:f4:
08:f5:a9:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:27 2024 by rpki-client on console-fra.rpki-client.org