Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/baSt2rs6Pp5yro73AOfq5ndBC9I.roa
File: baSt2rs6Pp5yro73AOfq5ndBC9I.roa (raw, json)
Hash identifier: qD1cHZOKxRfFk5vXK4QOhWchhfpESP/yiRrL/DrQGbc=
Subject key identifier: 6D:A4:AD:DA:BB:3A:3E:9E:72:AE:8E:F7:00:E7:EA:E6:77:41:0B:D2
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 018ADB02F293CD1BED63BF5DAF1994ED23AB
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/baSt2rs6Pp5yro73AOfq5ndBC9I.roa
Signing time: Thu 28 Sep 2023 08:58:38 +0000
ROA not before: Thu 28 Sep 2023 08:58:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 213.137.84.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:db:02:f2:93:cd:1b:ed:63:bf:5d:af:19:94:ed:23:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Sep 28 08:58:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6da4addabb3a3e9e72ae8ef700e7eae677410bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3b:d0:d0:77:6c:4c:ca:80:03:af:eb:44:35:
cc:25:2b:7b:d2:31:f4:7b:d0:9b:8c:75:97:4e:6c:
be:b4:f2:3d:b3:62:83:1a:1c:15:6e:92:1e:b6:b3:
bd:40:f2:d3:c3:82:a8:17:4a:2f:39:fd:d4:f2:bb:
76:47:d2:cb:b2:35:39:ad:6e:1e:91:38:34:7b:bb:
51:a3:f2:f7:9c:23:aa:21:99:ee:3e:fc:5c:c6:9f:
55:f7:ee:b8:2d:d3:42:b1:87:fe:32:c8:5e:8d:ce:
ea:14:d5:a8:75:0c:00:bb:39:22:69:86:17:71:79:
8b:46:c7:a5:89:af:70:bc:39:ac:a4:e3:f0:0c:de:
17:3b:45:2a:8e:a6:1e:d9:87:64:29:3b:fa:36:b2:
9a:d4:ba:74:43:92:59:59:c3:dd:d8:07:8e:0c:05:
9c:2d:47:93:e0:27:ac:48:c8:ba:0c:bc:cb:22:cc:
f1:12:6a:07:28:fc:23:2a:bc:2c:20:5d:3f:1f:26:
8b:f3:4c:1d:ab:77:99:0e:de:07:f6:d6:f6:9d:8c:
4d:bf:58:91:a2:c5:8e:3a:b8:34:bf:83:e8:de:7d:
1c:b5:aa:1f:d4:fa:2a:d4:39:3a:d2:34:a2:ae:ce:
8d:ef:92:7d:24:37:09:91:83:49:e0:41:b4:ec:30:
e5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A4:AD:DA:BB:3A:3E:9E:72:AE:8E:F7:00:E7:EA:E6:77:41:0B:D2
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/baSt2rs6Pp5yro73AOfq5ndBC9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.137.84.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:94:11:25:67:cf:33:65:15:58:0f:3d:4b:16:4c:0a:0f:10:
19:fa:5c:e3:df:b1:ba:e1:f5:4a:52:06:88:0e:b7:67:e7:5e:
71:33:7e:fb:db:72:38:d8:f9:43:1f:73:8b:7f:14:9d:31:7f:
da:61:e9:01:26:9e:ee:e7:9e:b2:0a:15:f5:00:ce:a5:2b:9e:
ec:3e:8c:43:2e:fb:8a:c5:ee:a2:95:08:45:1d:bd:64:20:2b:
0f:fa:d8:7d:6c:55:99:39:e6:e7:73:64:f5:89:76:5d:31:0f:
fd:59:4d:3e:fa:b1:82:7f:ca:1f:55:f3:fb:4d:54:b8:88:f2:
99:6f:3b:43:15:f3:96:5e:1e:e5:89:ae:ef:54:d4:8f:57:85:
45:0e:99:88:af:0a:19:49:f6:53:3b:1e:ef:1b:f3:e0:09:1f:
97:ef:66:1a:66:08:7b:f3:37:3d:ea:a6:4f:73:89:ed:4f:17:
11:23:b5:56:3d:cf:27:40:ce:3f:30:6a:3d:eb:a3:0c:f6:7f:
1c:5c:22:ce:e2:e9:e4:97:67:9f:59:ae:2a:47:cc:09:a7:df:
50:2a:c0:71:51:94:e2:34:e1:5a:cf:a5:16:64:c1:0b:d5:e4:
ab:e6:05:69:01:e1:ad:fc:90:17:5e:40:83:84:ff:47:30:91:
21:7c:8f:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 27 09:12:49 2023 by rpki-client on console-ams.rpki-client.org