Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d83c74-49de-4e4e-84f9-8abd6834c61a/1/vdJ-nGaE7YZ4od1kGUrZnfgU9sg.roa
File: vdJ-nGaE7YZ4od1kGUrZnfgU9sg.roa (raw, json)
Hash identifier: Obn5GKXkGAmkenP63pJTUNWzLSmJgwqUHRhig5HWvK4=
Subject key identifier: BD:D2:7E:9C:66:84:ED:86:78:A1:DD:64:19:4A:D9:9D:F8:14:F6:C8
Certificate issuer: /CN=547abe92b0b91e54715d17a6e87f5e599126f750
Certificate serial: 01856E267C4F491EED56865EF0DB8BECEC8C
Authority key identifier: 54:7A:BE:92:B0:B9:1E:54:71:5D:17:A6:E8:7F:5E:59:91:26:F7:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VHq-krC5HlRxXRem6H9eWZEm91A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d83c74-49de-4e4e-84f9-8abd6834c61a/1/vdJ-nGaE7YZ4od1kGUrZnfgU9sg.roa
Signing time: Sun 01 Jan 2023 16:24:53 +0000
ROA not before: Sun 01 Jan 2023 16:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 213.173.37.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:7c:4f:49:1e:ed:56:86:5e:f0:db:8b:ec:ec:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=547abe92b0b91e54715d17a6e87f5e599126f750
Validity
Not Before: Jan 1 16:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdd27e9c6684ed8678a1dd64194ad99df814f6c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:44:cf:5b:ea:7d:54:94:e4:4b:57:84:b3:7d:
9b:07:23:9f:40:4f:1a:08:d4:b4:04:2c:e3:f1:53:
39:8b:f6:fd:89:25:c0:b8:20:0a:f7:da:7a:fd:4d:
d4:b3:77:f7:08:e6:43:21:57:e1:67:ec:93:98:c6:
fa:3a:af:92:3c:5b:5a:44:15:a0:14:2c:f0:4c:d7:
1a:26:65:cf:6a:7d:8c:68:01:fb:67:24:f2:09:37:
61:eb:3e:a9:cc:cd:ae:65:e5:e1:8d:1b:0c:c8:4f:
c4:a4:a1:4a:a2:55:d7:2f:13:b9:02:50:a5:cf:24:
58:73:2a:c0:45:ec:a1:60:9f:63:14:86:3d:47:e0:
32:02:75:6f:89:7d:58:9d:e8:94:58:0d:d4:9d:a8:
7b:c4:ec:0a:cd:a8:4f:55:17:6c:6f:a2:fe:38:77:
76:09:20:13:f1:dc:13:88:9d:f1:a9:50:74:0f:9a:
4d:97:e8:07:bb:54:d5:6f:e7:a0:78:c0:61:ec:b2:
10:db:4d:99:d8:2d:98:a6:c0:aa:ab:ea:83:b5:21:
93:8d:ef:72:51:2b:21:0e:be:ae:6a:72:f0:71:ac:
f9:5e:d6:4f:58:41:d4:f5:d5:b2:f6:f6:e3:ae:64:
ea:28:1d:30:32:60:5b:4f:57:d5:b3:7f:c6:61:17:
28:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D2:7E:9C:66:84:ED:86:78:A1:DD:64:19:4A:D9:9D:F8:14:F6:C8
X509v3 Authority Key Identifier:
keyid:54:7A:BE:92:B0:B9:1E:54:71:5D:17:A6:E8:7F:5E:59:91:26:F7:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VHq-krC5HlRxXRem6H9eWZEm91A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d83c74-49de-4e4e-84f9-8abd6834c61a/1/vdJ-nGaE7YZ4od1kGUrZnfgU9sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d83c74-49de-4e4e-84f9-8abd6834c61a/1/VHq-krC5HlRxXRem6H9eWZEm91A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.173.37.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:d0:b8:fd:c4:f8:65:e0:97:36:86:8c:d6:1a:89:01:84:9c:
73:63:66:c1:07:49:ae:b4:8f:13:66:e6:c1:09:f3:14:21:59:
12:74:c7:40:b1:0d:53:4e:3d:15:9e:5c:41:31:9b:9c:fe:ec:
a3:c5:81:4c:41:64:28:71:91:78:5b:d6:7a:06:f2:69:91:01:
f1:28:da:bc:11:5a:90:c6:41:9c:25:5a:d9:fd:be:cf:71:0e:
90:2f:9c:66:f2:58:b0:5c:b8:d0:c8:46:4a:30:9f:7c:b3:93:
ad:58:3c:91:eb:98:1d:a8:dd:b4:ac:ee:26:dc:71:eb:b6:67:
43:0e:23:11:a6:12:00:4e:c0:73:5e:00:92:91:35:71:5a:0b:
96:f4:2f:16:1e:62:2f:cc:87:f1:bb:68:a1:2a:a1:50:38:aa:
24:70:a1:22:1c:be:2d:bc:9d:c2:61:3b:18:63:e1:7a:25:55:
a6:da:fe:4f:60:3f:45:d6:d7:a7:cd:aa:80:f7:c2:82:fa:eb:
80:12:82:e7:35:1c:10:cd:ae:3a:30:1e:a0:ea:a5:28:22:b2:
57:03:b6:37:19:16:f5:a8:75:cd:c1:b9:f8:4f:53:36:b6:b7:
75:5f:9e:8e:77:0a:d2:3f:7c:ea:68:d8:04:1a:0b:13:13:1e:
c6:14:4b:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:18 2023 by rpki-client on console-fra.rpki-client.org