Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/CnTZp1uqsoaCy9IYB1NpA9Y7fhE.roa
File: CnTZp1uqsoaCy9IYB1NpA9Y7fhE.roa (raw, json)
Hash identifier: Ewpzh7TZ5yWh4vShjFTPZO9I1lmrcvRcldVeJrpbljI=
Subject key identifier: 0A:74:D9:A7:5B:AA:B2:86:82:CB:D2:18:07:53:69:03:D6:3B:7E:11
Certificate issuer: /CN=ccbf95b47ab2b99c222bfe54521efd1ab67d267f
Certificate serial: 018CC801202792FFB6FCFF716C9D56582134
Authority key identifier: CC:BF:95:B4:7A:B2:B9:9C:22:2B:FE:54:52:1E:FD:1A:B6:7D:26:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/CnTZp1uqsoaCy9IYB1NpA9Y7fhE.roa
Signing time: Tue 02 Jan 2024 02:29:26 +0000
ROA not before: Tue 02 Jan 2024 02:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209838
IP address blocks: 213.170.200.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 12:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:20:27:92:ff:b6:fc:ff:71:6c:9d:56:58:21:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccbf95b47ab2b99c222bfe54521efd1ab67d267f
Validity
Not Before: Jan 2 02:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a74d9a75baab28682cbd21807536903d63b7e11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:8f:02:cf:10:af:e6:04:34:5a:8d:2f:98:10:
9e:50:cc:b4:c2:f8:0b:cc:3e:49:75:9f:fc:01:40:
f4:69:a7:40:c4:e2:c8:5b:ca:ed:d1:08:8b:3f:ca:
4f:2c:1f:81:ba:23:2d:1b:e8:d4:2e:4c:bb:87:6d:
ac:f1:82:a8:a7:2c:d0:f3:85:b0:89:d0:ad:ec:66:
40:77:93:c5:56:29:c0:c5:d6:e3:eb:a7:35:6c:e3:
ea:03:8a:70:67:eb:5e:52:14:93:81:e8:ad:4f:c8:
fc:10:89:46:d8:39:ea:bd:83:0d:fd:e2:d9:f5:8f:
ca:4e:c3:ca:52:f2:07:ef:13:00:b0:c6:f6:0a:b9:
d1:91:89:fc:2f:3f:e5:7f:21:58:ed:e1:80:db:5e:
5f:bc:e8:9e:a2:70:51:90:41:be:d5:2a:72:91:8e:
ae:4e:d4:fe:a8:eb:06:b7:51:f2:ca:28:92:a0:4f:
c3:1b:a1:9b:57:25:b7:64:6f:dd:d2:2a:32:cc:68:
a9:bb:4f:9e:f6:5e:59:a2:9c:f8:89:0b:9a:28:3f:
1e:a2:ff:4b:50:5e:70:b9:52:1b:2a:d4:6d:41:b6:
fa:52:b7:a5:32:3d:fe:fe:5d:32:0b:64:d2:87:19:
b4:3b:81:3b:e3:18:6d:8d:62:26:c2:12:d4:f4:67:
34:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:74:D9:A7:5B:AA:B2:86:82:CB:D2:18:07:53:69:03:D6:3B:7E:11
X509v3 Authority Key Identifier:
keyid:CC:BF:95:B4:7A:B2:B9:9C:22:2B:FE:54:52:1E:FD:1A:B6:7D:26:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/CnTZp1uqsoaCy9IYB1NpA9Y7fhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.170.200.0/23
Signature Algorithm: sha256WithRSAEncryption
68:41:75:a0:7c:e2:aa:ac:06:18:5c:60:e8:36:6a:6b:65:e9:
77:55:7e:76:48:4b:bc:09:1d:87:f3:32:07:ae:e4:12:0d:0d:
41:b0:c8:38:7e:d5:5b:f3:45:38:ad:db:31:ab:33:54:18:47:
fa:38:03:b6:a3:b3:a9:89:3f:e0:ff:94:ab:3d:d8:f4:af:e5:
2b:53:cb:ed:0d:a6:1c:65:fd:68:c8:67:6f:77:64:a1:90:7b:
bf:31:b7:82:d9:54:86:6c:33:a6:3d:e0:db:be:fb:1f:8e:6b:
57:21:f1:10:1c:94:fb:8b:71:97:00:5d:a8:96:8d:fe:3f:48:
9b:65:cd:8a:dd:0d:95:42:f3:a9:b7:28:e7:bd:dc:e2:14:8e:
ae:4f:c3:37:c4:3b:c3:a4:8c:aa:93:3a:f9:c7:09:20:2b:94:
97:f5:1e:0f:9f:19:40:71:a3:17:03:a0:28:8d:bf:14:d7:d0:
2b:16:10:c4:22:70:2f:9a:93:c8:1d:32:39:27:4c:25:4c:e2:
1b:7e:22:29:04:d2:d1:7b:cc:af:98:f2:06:1c:de:bf:01:93:
c8:46:ac:e5:37:a4:7b:73:1d:4b:80:85:2d:75:8c:de:41:68:
33:cb:eb:38:6c:19:4b:08:76:38:33:fa:e8:23:39:8d:d8:ab:
82:79:53:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 6 15:18:28 2024 by rpki-client on console-fra.rpki-client.org