Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/2I67TLt2cp4IXmZ_qyN2wLCG1eE.roa
File: 2I67TLt2cp4IXmZ_qyN2wLCG1eE.roa (raw, json)
Hash identifier: lEqGoMyuFU47O+Vf1zG26JOraXZeYDu0541ItpymmGg=
Subject key identifier: D8:8E:BB:4C:BB:76:72:9E:08:5E:66:7F:AB:23:76:C0:B0:86:D5:E1
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 01856F14E921C0781165EA3D57FBC4CAA02A
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/2I67TLt2cp4IXmZ_qyN2wLCG1eE.roa
Signing time: Sun 01 Jan 2023 20:45:19 +0000
ROA not before: Sun 01 Jan 2023 20:45:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25070
IP address blocks: 213.199.213.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:e9:21:c0:78:11:65:ea:3d:57:fb:c4:ca:a0:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 20:45:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d88ebb4cbb76729e085e667fab2376c0b086d5e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:9b:91:a7:1b:7c:d2:79:9e:4f:db:83:fe:84:
2b:3d:55:f7:bb:d6:4e:40:92:89:47:9c:15:f4:68:
07:6f:2d:54:27:28:8d:9c:9d:10:de:85:43:99:32:
ac:3e:ae:07:de:89:70:ff:b3:d7:e4:17:6f:b0:ef:
86:60:9a:ed:09:50:29:91:bc:8c:e5:d9:1f:3d:a7:
76:89:9d:8c:18:b7:2b:cf:f9:95:77:15:0c:67:12:
c9:5c:5c:cf:e8:0f:84:cf:ba:b2:11:25:07:5a:a5:
e5:c6:f4:63:2c:aa:58:b9:2f:71:66:52:8e:ed:93:
e3:4b:66:9e:66:96:33:f5:7b:f8:5a:40:99:f8:29:
9b:37:4e:10:41:7b:6b:48:ec:d2:4b:c3:b9:1b:cc:
db:52:cd:c6:f1:44:db:7e:9e:f7:41:ef:65:5d:a5:
6b:a7:2d:e2:53:bc:50:95:25:06:4f:cd:4f:3f:04:
84:64:36:5e:9f:3e:bb:53:fe:2c:00:74:34:d2:fe:
e4:69:8e:8c:df:88:62:bc:1e:e4:8b:1f:21:b2:10:
11:3f:0d:bd:ad:70:12:e9:84:f8:d7:aa:a9:f8:e3:
cb:89:48:02:f2:a5:a0:44:6c:bb:79:9c:53:7b:55:
be:a8:73:99:e5:1c:4a:9a:84:ce:38:28:f0:ae:e2:
d8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:8E:BB:4C:BB:76:72:9E:08:5E:66:7F:AB:23:76:C0:B0:86:D5:E1
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/2I67TLt2cp4IXmZ_qyN2wLCG1eE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.199.213.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:c8:8c:53:dd:1b:17:83:07:f9:3a:b0:19:6e:60:35:8c:86:
d7:18:a4:5a:8d:eb:52:4f:54:26:9e:32:d4:44:32:3c:43:44:
a6:c0:67:6a:5b:54:db:ee:15:f7:60:26:e0:bc:74:ea:c5:a9:
d9:a4:0e:34:9d:33:f2:7c:1f:4c:3a:53:25:f8:2b:3d:d6:08:
e5:20:a1:8d:a2:80:c7:c4:7b:60:20:37:24:12:0e:21:d5:94:
e4:a0:fb:cb:71:ed:ee:b8:80:3b:dd:17:0a:b9:94:89:56:63:
5d:53:af:40:6b:ad:82:28:32:4a:43:33:7a:e2:c1:06:84:32:
c4:9e:cf:36:f9:3e:dd:3a:92:2d:86:aa:46:c3:50:78:a1:bb:
60:5f:64:31:16:92:32:d5:32:d2:cc:e2:9b:f9:7b:e9:f7:73:
cf:37:ae:07:d7:41:09:e0:1e:73:c3:2d:55:53:56:c9:91:80:
ec:79:5e:95:36:a7:97:63:7a:f4:7d:a1:0e:c2:8f:00:bc:61:
9c:d5:98:2c:03:bd:cc:cf:fc:b1:97:5c:66:de:94:f9:21:93:
36:a5:ad:11:e7:18:34:6d:54:12:37:0a:61:6e:bd:5e:21:0b:
10:01:f3:61:3a:06:8c:7e:62:df:8b:52:4d:5f:22:1f:12:9c:
54:c2:40:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:53:58 2024 by rpki-client on console-ams.rpki-client.org