Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/a_on4KQTZcYWWj9rBjbKxbplRMI.roa
File: a_on4KQTZcYWWj9rBjbKxbplRMI.roa (raw, json)
Hash identifier: O/STaUpEJnK1dE4PA9ap+Rt90GMNnGPFikWfg0YM15A=
Subject key identifier: 6B:FA:27:E0:A4:13:65:C6:16:5A:3F:6B:06:36:CA:C5:BA:65:44:C2
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 01856B5328D4786A9793B22B0C1880F4EBC1
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/a_on4KQTZcYWWj9rBjbKxbplRMI.roa
Signing time: Sun 01 Jan 2023 03:14:50 +0000
ROA not before: Sun 01 Jan 2023 03:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212953
IP address blocks: 213.238.178.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:53:28:d4:78:6a:97:93:b2:2b:0c:18:80:f4:eb:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 03:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6bfa27e0a41365c6165a3f6b0636cac5ba6544c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e9:0a:ac:a0:74:0b:ef:85:9d:d8:6a:6c:29:
28:e4:b4:65:19:db:f3:14:6a:52:46:a4:27:7f:b2:
8f:17:d4:5f:81:4b:58:94:53:c6:7f:9f:bf:37:b2:
b8:b5:f5:8e:8f:19:9c:b3:16:29:9b:6d:e7:17:b1:
db:15:88:92:be:ac:5f:4f:55:c1:84:fb:2b:c6:a0:
e6:23:b1:a2:c8:7c:03:80:9e:cf:b1:e9:21:69:a6:
29:7a:0d:91:3e:a3:2d:38:54:6d:75:29:62:0e:4f:
2d:4b:44:1f:3d:95:05:14:da:e8:69:26:5c:8c:a9:
07:6d:0b:54:ad:07:76:f8:b0:7d:d4:f8:3b:d6:a0:
e2:fc:36:e7:f7:2e:2a:c6:00:88:ee:1a:8c:85:d1:
e2:d3:bf:7e:a4:d9:57:3e:da:70:8f:bf:41:7a:74:
3b:4d:76:56:64:ec:f6:6d:40:0d:ca:40:7b:fe:07:
94:97:c9:f8:d5:e2:97:3c:d0:38:4a:b6:0c:ff:31:
cd:11:ea:25:ed:b0:82:ca:e5:93:83:70:3f:30:43:
72:b9:71:eb:14:b5:38:e8:7b:db:61:99:86:94:51:
99:63:14:e6:bf:b0:e2:95:1c:7d:62:e4:68:ea:c8:
ef:87:38:54:97:95:df:ca:4d:b1:36:e3:6a:40:53:
76:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:FA:27:E0:A4:13:65:C6:16:5A:3F:6B:06:36:CA:C5:BA:65:44:C2
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/a_on4KQTZcYWWj9rBjbKxbplRMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.178.0/24
Signature Algorithm: sha256WithRSAEncryption
90:bf:8f:f2:18:bf:68:7d:ad:4c:c0:60:cb:a8:0c:54:21:5e:
09:aa:b8:a1:52:62:a5:36:e1:5d:6d:41:2f:12:24:5c:ab:63:
c2:93:29:cd:33:34:ff:c4:f3:75:04:e1:c3:73:a1:52:a4:9f:
a6:bd:f3:20:eb:76:00:b9:80:c8:34:ca:f7:27:2f:0c:d0:f6:
ed:23:19:85:b6:31:a9:8a:9b:67:1c:e0:14:79:dc:42:c2:05:
ea:c3:c2:d9:33:91:0c:cf:0c:e1:5a:3a:c7:38:d3:a4:60:21:
44:e1:00:b1:7f:d2:6f:e7:4b:ac:8a:6b:ae:fd:7e:e9:af:c3:
b1:a6:aa:6c:37:68:b6:21:b2:f0:da:90:2f:7c:79:76:1e:26:
47:db:85:83:e2:e0:0a:ff:21:bf:45:73:a5:26:ef:af:72:bf:
29:ef:a8:cc:3d:e3:02:99:a8:8a:1e:46:00:3a:81:96:1e:b1:
1b:d8:b9:6a:3c:f7:81:9c:9f:91:70:8d:4b:88:83:e2:4c:ca:
00:d8:62:a5:44:d0:97:54:ff:4d:fc:51:a1:3f:58:d3:1d:4c:
e4:eb:d6:1e:30:e2:25:48:e4:09:d5:5f:6e:76:df:fc:11:c1:
d4:32:f3:15:79:c4:26:ff:43:eb:c1:37:97:aa:41:f4:5e:4e:
71:75:fa:5b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrUyjUeGqXk7IrDBiA9OvBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0Y2JkYTc4YjFkMWI2MTNkZjU2NWZmOTk3MDBiNmFlZTk0
MGRlM2YwHhcNMjMwMTAxMDMxNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YmZhMjdlMGE0MTM2NWM2MTY1YTNmNmIwNjM2Y2FjNWJhNjU0NGMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlekKrKB0C++FndhqbCko5LRlGdvz
FGpSRqQnf7KPF9RfgUtYlFPGf5+/N7K4tfWOjxmcsxYpm23nF7HbFYiSvqxfT1XB
hPsrxqDmI7GiyHwDgJ7PsekhaaYpeg2RPqMtOFRtdSliDk8tS0QfPZUFFNroaSZc
jKkHbQtUrQd2+LB91Pg71qDi/Dbn9y4qxgCI7hqMhdHi079+pNlXPtpwj79BenQ7
TXZWZOz2bUANykB7/geUl8n41eKXPNA4SrYM/zHNEeol7bCCyuWTg3A/MENyuXHr
FLU46HvbYZmGlFGZYxTmv7DilRx9YuRo6sjvhzhUl5Xfyk2xNuNqQFN2SwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGv6J+CkE2XGFlo/awY2ysW6ZUTCMB8GA1UdIwQY
MBaAFFTL2nix0bYT31Zf+ZcAtq7pQN4/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVk12YWVMSFJ0aFBmVmxfNWx3QzJydWxBM2o4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC82ZDYxZDktMGJmNy00NGJiLWI4MGYt
Y2QzMTYxNWQwMWE5LzEvYV9vbjRLUVRaY1lXV2o5ckJqYkt4YnBsUk1JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC82ZDYxZDktMGJmNy00NGJiLWI4MGYtY2QzMTYxNWQwMWE5
LzEvVk12YWVMSFJ0aFBmVmxfNWx3QzJydWxBM2o4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1e6yMA0G
CSqGSIb3DQEBCwUAA4IBAQCQv4/yGL9ofa1MwGDLqAxUIV4JqrihUmKlNuFdbUEv
EiRcq2PCkynNMzT/xPN1BOHDc6FSpJ+mvfMg63YAuYDINMr3Jy8M0PbtIxmFtjGp
iptnHOAUedxCwgXqw8LZM5EMzwzhWjrHONOkYCFE4QCxf9Jv50usimuu/X7pr8Ox
pqpsN2i2IbLw2pAvfHl2HiZH24WD4uAK/yG/RXOlJu+vcr8p76jMPeMCmaiKHkYA
OoGWHrEb2LlqPPeBnJ+RcI1LiIPiTMoA2GKlRNCXVP9N/FGhP1jTHUzk69YeMOIl
SOQJ1V9udt/8EcHUMvMVecQm/0PrwTeXqkH0Xk5xdfpb
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:36 2024 by rpki-client on console-ams.rpki-client.org