Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Z_SaZLIA1uY-3OgN4VaEO3sjdk0.roa
File: Z_SaZLIA1uY-3OgN4VaEO3sjdk0.roa (raw, json)
Hash identifier: VgsPm76nyHVGkylopNm/tjiqiYf45o1FWR50rFY9l+o=
Subject key identifier: 67:F4:9A:64:B2:00:D6:E6:3E:DC:E8:0D:E1:56:84:3B:7B:23:76:4D
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01869C4223CF7BEAC049401EB4B64B47A20D
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Z_SaZLIA1uY-3OgN4VaEO3sjdk0.roa
Signing time: Wed 01 Mar 2023 08:20:25 +0000
ROA not before: Wed 01 Mar 2023 08:20:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205570
IP address blocks: 212.69.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Apr 2023 12:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9c:42:23:cf:7b:ea:c0:49:40:1e:b4:b6:4b:47:a2:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Mar 1 08:20:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67f49a64b200d6e63edce80de156843b7b23764d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:15:f5:70:d0:33:3b:5c:ce:6e:1a:bd:e7:ce:
e9:31:ae:66:78:dd:1c:3c:91:11:72:c8:a4:e3:cd:
b8:a9:be:92:44:53:83:78:aa:05:aa:39:6a:bb:78:
c0:c9:1a:90:f6:21:9c:1f:84:bf:72:1a:7b:12:be:
c1:00:30:a4:06:e5:c1:4d:15:ba:62:e6:f4:1c:ac:
56:d2:9c:1d:7f:79:a5:c6:9c:25:a1:32:71:18:20:
a7:28:f7:4e:d1:f3:89:55:ff:39:cc:81:7f:b4:52:
aa:5d:7b:48:5d:b5:a3:e0:1f:e2:3c:4a:56:7a:9e:
3b:a0:5d:a1:79:e5:04:a8:1a:76:3c:c1:76:10:4b:
f9:fc:30:ef:e0:50:f5:58:f6:a5:3c:41:d5:17:c1:
38:6b:e8:28:fd:86:b5:36:3b:06:74:5c:fa:f6:8a:
45:a6:32:a2:8c:4e:fe:0e:8a:0c:02:88:dd:8e:8f:
db:19:00:cc:ad:97:94:21:cb:1f:85:97:87:8e:2f:
94:c2:e4:87:ae:c6:f7:27:bd:21:e5:2f:bd:0b:0d:
96:6a:f3:47:67:9a:55:2b:5e:9d:36:0f:48:39:10:
db:25:ae:4d:33:51:c6:a7:cf:8e:22:8a:e3:fd:45:
4c:30:3b:ee:dd:82:94:bd:f0:ba:60:be:29:af:17:
ed:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:F4:9A:64:B2:00:D6:E6:3E:DC:E8:0D:E1:56:84:3B:7B:23:76:4D
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Z_SaZLIA1uY-3OgN4VaEO3sjdk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.69.14.0/24
Signature Algorithm: sha256WithRSAEncryption
49:dc:ff:fa:45:e9:ac:a3:30:3e:47:ad:7d:2b:ba:1e:2c:84:
61:8e:f6:83:be:5b:ae:d2:01:bb:dd:6d:17:64:5c:c2:fb:53:
a9:14:85:ad:95:73:16:2f:ae:88:03:5d:78:f0:a6:61:ad:de:
c3:83:c7:bd:c0:8e:97:07:b2:ea:52:20:d7:83:63:03:99:f2:
1e:b4:35:ba:3f:d3:98:71:7f:b6:3d:08:56:2d:f5:22:7f:d7:
ad:2f:12:05:15:c8:4a:85:18:11:f3:99:55:d5:80:7b:25:63:
f5:5c:ca:68:7c:fa:b6:c6:3d:92:9f:56:e3:49:f0:c3:59:6c:
3a:6e:79:e2:a5:c8:db:00:cc:e9:be:ca:c4:22:c3:1f:00:ee:
5c:ff:ce:fa:21:a9:55:76:7b:54:cb:c1:15:42:db:97:0a:3f:
c4:9d:2f:61:36:de:78:60:0f:39:c7:86:88:b1:84:99:12:f3:
9d:e3:bf:6c:e7:e8:f9:3f:02:27:9a:45:03:ac:a5:5e:af:5d:
23:9f:f5:74:b9:ed:30:21:47:cd:42:f2:ed:08:ce:4e:59:6d:
e8:93:b9:43:d4:0e:7b:59:99:87:61:d5:02:77:ae:7d:27:19:
6d:c8:e3:0d:dd:f9:7a:c1:58:8d:0a:e1:7c:10:ab:86:17:35:
d8:f3:73:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:26 2024 by rpki-client on console-fra.rpki-client.org