Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/lYa1LOjElq2ooXVGAnfSvKPiAjU.roa
File: lYa1LOjElq2ooXVGAnfSvKPiAjU.roa (raw, json)
Hash identifier: UPjadz9402s7BzEZziCVJguoS2XYWt5669Zl7nMNdik=
Subject key identifier: 95:86:B5:2C:E8:C4:96:AD:A8:A1:75:46:02:77:D2:BC:A3:E2:02:35
Certificate issuer: /CN=bc4703e08ca0d6a310cbc643ffcb307ff6cdc65c
Certificate serial: 018C6C9B9C3AB958FA3B4B4E89E0C8553590
Authority key identifier: BC:47:03:E0:8C:A0:D6:A3:10:CB:C6:43:FF:CB:30:7F:F6:CD:C6:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vEcD4Iyg1qMQy8ZD_8swf_bNxlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/lYa1LOjElq2ooXVGAnfSvKPiAjU.roa
Signing time: Fri 15 Dec 2023 08:33:06 +0000
ROA not before: Fri 15 Dec 2023 08:33:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57255
IP address blocks: 213.156.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6c:9b:9c:3a:b9:58:fa:3b:4b:4e:89:e0:c8:55:35:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc4703e08ca0d6a310cbc643ffcb307ff6cdc65c
Validity
Not Before: Dec 15 08:33:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9586b52ce8c496ada8a175460277d2bca3e20235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:58:05:61:6c:d7:b7:bb:f9:71:c4:c7:13:56:
76:d9:2d:7a:55:c6:5a:a6:ef:d2:3e:72:41:e8:a6:
7e:4a:05:0b:a3:b6:f9:c8:89:c3:34:8f:fb:b6:01:
11:84:19:4d:5a:e5:cd:69:d4:4b:2f:8d:2a:84:da:
d4:d3:9c:c1:a0:df:0c:68:fe:2e:37:ea:26:12:f9:
8f:ad:f0:0e:fb:61:55:eb:79:26:0a:d8:af:e5:84:
d3:54:89:8c:e0:d2:fe:06:e7:2b:4c:7f:96:c3:64:
3d:64:0a:a6:bc:9f:9d:db:7e:b0:1c:20:43:fc:0e:
59:d1:82:75:a7:42:3b:e2:13:25:fb:ce:ec:1b:62:
b2:9b:99:a1:a9:eb:2a:20:25:b2:bc:ce:b0:28:a1:
25:48:ca:59:94:d8:79:1f:a7:12:04:10:40:ef:a9:
61:8e:e5:e3:ea:1f:6c:39:3f:12:13:23:3e:7a:5e:
d0:71:28:5e:95:51:6b:31:c5:48:a4:6b:f0:dc:2e:
28:c1:a6:ae:f2:d1:06:4f:e5:75:1c:d3:66:e0:4c:
e5:29:18:56:de:79:c0:e7:e4:d1:ca:8c:3f:13:6c:
83:31:20:8e:60:4f:1b:e7:95:b3:e7:b3:3b:c2:e9:
8d:00:e6:67:5d:23:b2:5b:eb:05:e9:e0:7f:67:e7:
e3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:86:B5:2C:E8:C4:96:AD:A8:A1:75:46:02:77:D2:BC:A3:E2:02:35
X509v3 Authority Key Identifier:
keyid:BC:47:03:E0:8C:A0:D6:A3:10:CB:C6:43:FF:CB:30:7F:F6:CD:C6:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vEcD4Iyg1qMQy8ZD_8swf_bNxlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/lYa1LOjElq2ooXVGAnfSvKPiAjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/vEcD4Iyg1qMQy8ZD_8swf_bNxlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.156.103.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:d5:e5:07:bc:14:8d:03:a3:b6:35:bb:93:74:a1:27:ec:ca:
8a:53:9e:8f:e0:d6:6b:a7:a4:dd:fe:e1:41:a0:85:4c:85:f0:
c8:3d:e0:04:28:b8:c7:89:c2:a1:64:28:b8:1e:75:a8:07:f5:
d8:7d:f5:6b:ae:5d:8c:d9:84:f2:1a:da:e2:9c:0f:02:ff:e2:
e5:2a:31:b3:7e:aa:2c:e9:6c:39:b9:96:8f:26:1c:05:89:23:
c0:39:5c:cc:84:08:6a:ac:df:fd:0c:1d:d7:ad:da:b8:d6:97:
2c:cf:cd:41:b2:18:e8:86:01:ea:20:45:db:1b:5e:0c:eb:9d:
65:d7:77:09:b7:dd:d2:55:12:a6:8b:8e:4c:fe:07:c8:60:23:
6a:47:ae:c1:6b:2e:99:ee:d1:34:5f:6c:4d:c5:91:c8:ff:e1:
10:6d:44:ca:e3:71:41:b9:3a:46:01:65:63:44:82:2a:f7:6a:
d5:2e:aa:d5:a0:58:b1:af:6b:2b:55:eb:4c:9c:42:34:b9:3e:
3d:4f:63:7e:b6:f4:27:d2:6f:11:50:8a:19:6b:33:25:d4:02:
f6:ca:a8:72:ed:75:0e:3e:74:c6:10:e4:a0:3d:e8:4a:36:f6:
5a:33:d3:b7:92:09:c2:57:28:31:05:fd:ab:c3:76:9d:4c:a8:
fe:45:4e:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:09 2024 by rpki-client on console-ams.rpki-client.org