Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/qS8J2GWeXUDEdBenZ9QBFZIlHtQ.roa
File: qS8J2GWeXUDEdBenZ9QBFZIlHtQ.roa (raw, json)
Hash identifier: RppimuLuMdWoPx1tUkesGYtS1Sepk9U8goKsB/Nc40I=
Subject key identifier: A9:2F:09:D8:65:9E:5D:40:C4:74:17:A7:67:D4:01:15:92:25:1E:D4
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 01856B5320EFB9D36C365CC61D29D57FCAFF
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/qS8J2GWeXUDEdBenZ9QBFZIlHtQ.roa
Signing time: Sun 01 Jan 2023 03:14:48 +0000
ROA not before: Sun 01 Jan 2023 03:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 213.238.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:53:20:ef:b9:d3:6c:36:5c:c6:1d:29:d5:7f:ca:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 03:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a92f09d8659e5d40c47417a767d4011592251ed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:15:e7:17:27:9c:2a:ae:19:f7:43:36:03:9e:
fd:8b:3f:c2:12:80:bd:0a:76:8f:37:ce:06:c9:83:
97:ed:ff:fc:b1:d2:4a:4d:b5:4f:2b:cb:eb:2c:73:
3d:a8:71:2d:1f:dc:a5:24:99:8e:80:7d:3a:0e:53:
79:0a:73:7c:83:51:88:89:a4:71:66:5c:15:56:0e:
d0:a4:44:a4:96:e3:a8:2c:ec:21:c8:50:1d:a3:21:
a4:4a:bf:e3:db:18:95:e7:9e:01:0b:a7:0f:1a:11:
df:a1:69:4d:32:67:7d:40:78:40:51:f6:13:23:b0:
80:b0:75:7c:5d:9e:4e:39:df:fe:ee:0f:5b:c0:a2:
c7:e7:e1:9b:16:ed:01:91:84:29:c0:0b:6f:11:ea:
09:73:cf:58:b4:d9:36:a1:bc:93:e1:50:e2:7f:1f:
12:a7:37:0c:5c:6c:b9:0d:b7:b6:1f:ec:0a:49:ae:
16:75:d0:6b:46:b6:24:ee:9f:5c:12:b8:58:54:e1:
fe:1d:0a:45:f2:b8:9f:f5:67:d3:19:fd:37:be:81:
a2:f5:f0:53:9d:06:30:65:90:77:ac:f3:fb:73:ae:
d0:c2:53:a4:dd:71:63:db:76:6d:29:ac:26:e6:19:
4a:f9:6a:ac:22:a8:25:65:42:48:87:94:e8:95:26:
65:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:2F:09:D8:65:9E:5D:40:C4:74:17:A7:67:D4:01:15:92:25:1E:D4
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/qS8J2GWeXUDEdBenZ9QBFZIlHtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.166.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:82:4d:a3:80:88:6c:25:fc:91:a5:82:7b:4e:f5:45:77:59:
a5:f2:ae:42:63:4b:f7:d6:32:32:60:dd:59:c0:a5:2a:84:53:
ba:76:ef:e6:eb:0b:ad:fa:97:c2:52:31:6c:f4:f3:2b:47:3a:
ed:de:e6:c6:d5:5d:39:d2:56:e8:dd:75:b8:86:d2:1e:d1:d8:
55:3a:89:f1:2d:e1:be:55:1b:00:bc:7a:d6:ed:a6:c4:32:da:
bd:11:18:91:2c:18:2d:70:9d:e8:63:6b:79:43:14:05:5b:97:
a6:d6:58:af:89:5b:52:9c:be:ff:ae:58:4c:a5:9b:27:00:15:
29:63:a9:41:ec:bf:28:b9:6a:a3:c0:60:35:aa:5b:a0:05:9e:
f7:b4:80:ac:73:53:e0:45:1e:49:b6:04:7d:02:cf:c0:bf:48:
fa:90:95:2a:82:1b:c0:7e:dc:9e:45:12:6d:e3:8e:52:dd:60:
78:b5:27:b3:d1:0a:43:fa:8f:a9:36:5f:cf:82:4c:25:fc:4b:
b4:8c:43:c0:b7:cb:4d:7f:57:9e:51:59:82:cc:cf:c6:3d:8b:
8e:a3:00:75:dc:cb:3f:01:70:23:a2:bd:e5:29:ea:b1:de:33:
2e:a6:d2:ca:63:13:ac:d1:c4:98:be:d1:de:ac:0e:c7:f8:2b:
ea:9e:5a:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:36 2024 by rpki-client on console-ams.rpki-client.org