Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8f5119-6dcc-43a2-8daf-f3211d91520d/1/sezYJxvDY1mdbhyOjbM9rvizuEI.roa
File: sezYJxvDY1mdbhyOjbM9rvizuEI.roa (raw, json)
Hash identifier: abrSbsNuQ0LoQoZ/LdAYruxSWGOdsb9Qr7Br507LbgI=
Subject key identifier: B1:EC:D8:27:1B:C3:63:59:9D:6E:1C:8E:8D:B3:3D:AE:F8:B3:B8:42
Certificate issuer: /CN=6baa05c6f8f9bfd70e3d41fe05bafc50d1253bf5
Certificate serial: 018BA6492EF3757581D2FA44146E6218AA79
Authority key identifier: 6B:AA:05:C6:F8:F9:BF:D7:0E:3D:41:FE:05:BA:FC:50:D1:25:3B:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6oFxvj5v9cOPUH-Bbr8UNElO_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8f5119-6dcc-43a2-8daf-f3211d91520d/1/sezYJxvDY1mdbhyOjbM9rvizuEI.roa
Signing time: Mon 06 Nov 2023 20:18:15 +0000
ROA not before: Mon 06 Nov 2023 20:18:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 212.23.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a6:49:2e:f3:75:75:81:d2:fa:44:14:6e:62:18:aa:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6baa05c6f8f9bfd70e3d41fe05bafc50d1253bf5
Validity
Not Before: Nov 6 20:18:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1ecd8271bc363599d6e1c8e8db33daef8b3b842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:52:4d:9e:6d:b6:b1:d0:4b:5a:64:0e:e9:f2:
90:c6:8a:c0:3a:9b:40:49:1d:50:30:ba:c3:86:66:
f4:2f:ae:91:6a:7b:bb:d8:ba:9f:97:9b:11:db:ba:
25:db:34:65:a7:6e:0a:62:ae:ac:64:62:ff:b9:7e:
ba:82:22:95:11:23:24:94:22:a6:bd:3e:c9:1d:48:
7a:5c:71:4f:8b:57:30:f8:d1:27:39:15:34:d9:f7:
bb:e3:4c:75:75:60:67:32:98:1a:48:f5:5c:cd:58:
cf:09:1a:8e:42:9f:06:1a:bb:bd:39:74:46:a9:81:
e8:94:28:61:b8:0f:79:65:d2:12:9e:8f:3c:7a:9d:
5b:46:39:1d:01:d6:78:51:f6:09:d0:3d:44:c8:72:
20:8d:aa:4e:71:38:ab:33:41:6f:ad:f2:98:3b:0f:
be:4d:c3:15:d8:3c:c8:e8:92:3a:f3:49:23:bd:86:
d8:20:a5:bc:85:30:8d:5e:09:b3:6c:d9:53:e7:b2:
e0:93:c2:7b:79:80:0b:40:6f:6f:61:81:39:81:1a:
f0:15:7c:13:57:c2:2b:9c:07:83:26:62:18:73:1d:
b8:12:8e:2d:95:d6:a3:b3:cb:b8:4b:b9:55:e5:4f:
6c:29:ee:b0:12:fa:37:8c:5c:cc:00:32:d3:8e:59:
75:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:EC:D8:27:1B:C3:63:59:9D:6E:1C:8E:8D:B3:3D:AE:F8:B3:B8:42
X509v3 Authority Key Identifier:
keyid:6B:AA:05:C6:F8:F9:BF:D7:0E:3D:41:FE:05:BA:FC:50:D1:25:3B:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6oFxvj5v9cOPUH-Bbr8UNElO_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8f5119-6dcc-43a2-8daf-f3211d91520d/1/sezYJxvDY1mdbhyOjbM9rvizuEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8f5119-6dcc-43a2-8daf-f3211d91520d/1/a6oFxvj5v9cOPUH-Bbr8UNElO_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.203.0/24
Signature Algorithm: sha256WithRSAEncryption
be:13:73:36:e3:74:c2:34:58:b9:8d:51:3f:fb:b6:f7:41:8d:
0c:ab:ef:43:88:84:c7:fb:e2:6f:ae:08:0d:de:5b:53:e4:42:
34:cb:fb:4e:74:11:62:14:8a:08:17:af:9e:e9:77:13:8e:1a:
fe:42:06:4b:b0:0a:cf:c8:da:88:51:ba:48:0e:a9:e2:c1:dd:
e1:87:87:94:6b:3a:2b:fe:88:86:b9:f8:27:87:fd:db:6a:f7:
cf:9a:87:ce:4a:0f:36:6c:16:0d:01:42:73:ae:68:d2:4b:6f:
f0:78:4b:6e:e1:8d:92:a0:9b:7d:7e:01:08:e6:87:6f:5d:57:
b8:26:2a:8e:15:44:89:54:c3:35:1c:39:47:5a:4c:97:33:ff:
58:20:55:2e:10:7d:2e:47:94:7b:01:40:53:aa:71:78:12:6f:
23:2a:63:60:d6:2c:db:bd:60:f6:0f:8b:6c:83:49:66:b6:eb:
6a:1a:cf:cb:d7:19:0e:47:89:c3:6a:e9:fe:e1:c0:41:ee:e3:
0c:30:45:84:c6:72:70:82:8d:cf:f7:eb:d1:d5:fa:44:f9:54:
07:06:ae:c4:2d:3b:34:04:66:cd:26:98:f8:f0:08:d1:65:af:
30:e7:cd:9c:aa:c1:91:fa:c0:4b:9a:93:74:15:a4:14:ad:86:
0b:5b:2f:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:57 2024 by rpki-client on console-ams.rpki-client.org