Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/1-hk3TCz9YCxLzH_1EFvhuDjbkw0.roa
File: 1-hk3TCz9YCxLzH_1EFvhuDjbkw0.roa (raw, json)
Hash identifier: pemWEmltm5gFCTvzVOS2MQXu7EkKsku8+DEOqAn33gA=
Subject key identifier: FA:19:37:4C:2C:FD:60:2C:4B:CC:7F:F5:10:5B:E1:B8:38:DB:93:0D
Certificate issuer: /CN=bc4703e08ca0d6a310cbc643ffcb307ff6cdc65c
Certificate serial: 018C6C9B9C801FFEFE1FF202645F4BC4D499
Authority key identifier: BC:47:03:E0:8C:A0:D6:A3:10:CB:C6:43:FF:CB:30:7F:F6:CD:C6:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vEcD4Iyg1qMQy8ZD_8swf_bNxlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/1-hk3TCz9YCxLzH_1EFvhuDjbkw0.roa
Signing time: Fri 15 Dec 2023 08:33:06 +0000
ROA not before: Fri 15 Dec 2023 08:33:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205879
IP address blocks: 213.156.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6c:9b:9c:80:1f:fe:fe:1f:f2:02:64:5f:4b:c4:d4:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc4703e08ca0d6a310cbc643ffcb307ff6cdc65c
Validity
Not Before: Dec 15 08:33:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa19374c2cfd602c4bcc7ff5105be1b838db930d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2d:a5:0d:c4:cf:71:63:2b:e5:dd:4e:65:a4:
e7:6a:10:d3:61:b6:d2:c8:33:11:24:8c:39:15:a1:
e7:23:93:e8:59:66:ad:49:eb:4c:87:cf:8c:98:f8:
a2:88:d0:19:15:38:cc:33:4a:56:69:ed:89:0e:37:
59:da:23:0d:95:67:b6:3a:26:e2:74:eb:f5:36:a1:
dc:72:93:99:db:d4:81:72:d7:f9:ad:3d:ea:4c:47:
02:75:6f:e2:9c:a4:b0:65:3e:89:62:d1:1a:e0:20:
b9:61:9c:cf:ce:90:9f:56:65:86:7b:65:7e:89:f7:
a2:d4:53:37:b7:45:4a:5b:32:6b:64:c6:56:79:ed:
49:12:cb:a1:1c:a8:f1:bf:0f:4d:98:67:3c:56:a4:
39:f2:18:a5:29:2c:b3:10:46:ac:e0:05:cd:4b:5e:
5b:07:f2:7b:f9:8c:83:86:2e:08:ef:9e:4f:9f:56:
36:d3:6c:6b:11:71:9b:9e:3f:1c:d6:28:de:e1:0e:
25:8b:9a:28:60:93:a8:c2:97:a6:a8:1d:10:4b:e1:
93:9e:c7:c5:58:47:6e:18:5f:9a:0c:f8:27:e5:d7:
c2:61:ff:7d:28:07:53:ce:77:3d:f8:6c:e5:46:ba:
32:e1:38:20:d1:81:06:94:2f:1d:f8:5b:d6:ef:1e:
82:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:19:37:4C:2C:FD:60:2C:4B:CC:7F:F5:10:5B:E1:B8:38:DB:93:0D
X509v3 Authority Key Identifier:
keyid:BC:47:03:E0:8C:A0:D6:A3:10:CB:C6:43:FF:CB:30:7F:F6:CD:C6:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vEcD4Iyg1qMQy8ZD_8swf_bNxlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/1-hk3TCz9YCxLzH_1EFvhuDjbkw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/vEcD4Iyg1qMQy8ZD_8swf_bNxlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.156.101.0/24
Signature Algorithm: sha256WithRSAEncryption
39:02:25:8a:55:b4:8b:93:8a:e7:ca:b8:ee:e7:1d:21:e7:62:
c6:06:e7:ba:53:3a:77:da:7e:54:e5:eb:b6:35:1d:98:a9:2c:
44:38:30:b3:c4:ef:21:9c:5b:f6:c0:de:df:15:eb:3f:26:30:
7b:06:3d:88:32:ba:2a:40:bb:a9:54:75:e5:a2:ba:19:91:a1:
85:8c:bd:1f:ab:f1:05:9a:02:61:97:eb:32:76:c2:24:37:5e:
59:54:87:0f:19:61:e8:10:58:71:54:01:ff:77:3d:e7:d9:82:
23:07:f7:8d:15:be:20:f0:a5:ea:0c:6f:64:db:e9:13:a0:97:
57:4c:17:73:68:5d:e9:19:b1:e1:d1:9b:5f:77:3b:74:54:26:
49:20:7b:c8:6d:8b:cb:6c:45:9f:65:bb:08:26:c7:04:df:7b:
29:92:c8:28:f4:4e:7f:fc:f3:ab:0a:dc:ef:de:4b:f2:06:8f:
44:e5:6c:84:7a:44:85:00:d7:26:95:d7:7a:58:10:40:38:8c:
e1:5d:13:29:70:13:90:db:0e:e0:c7:6f:31:67:f5:33:46:8a:
79:1e:a6:1b:5f:d6:24:47:03:14:80:d6:23:63:dc:7b:31:69:
61:19:6a:21:05:42:a4:dd:1f:42:42:b8:f5:71:70:23:c2:0c:
ff:c5:99:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:09 2024 by rpki-client on console-ams.rpki-client.org