Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/6gvH868_vnl2w2TZ_fSc-bpyJ1Q.roa
File: 6gvH868_vnl2w2TZ_fSc-bpyJ1Q.roa (raw, json)
Hash identifier: +A2Qx1V21zgCQZPAjuAGHy2yUhHyJaCzRFLV7hTiAQs=
Subject key identifier: EA:0B:C7:F3:AF:3F:BE:79:76:C3:64:D9:FD:F4:9C:F9:BA:72:27:54
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DC84769F2535C3C346259BD1A0887
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/6gvH868_vnl2w2TZ_fSc-bpyJ1Q.roa
Signing time: Sun 01 Jan 2023 23:14:49 +0000
ROA not before: Sun 01 Jan 2023 23:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60250
IP address blocks: 213.74.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:c8:47:69:f2:53:5c:3c:34:62:59:bd:1a:08:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea0bc7f3af3fbe7976c364d9fdf49cf9ba722754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:9b:44:bd:b6:cb:2a:dd:12:0a:56:44:4a:57:
96:8b:7c:64:be:a4:fb:22:e9:da:c0:2b:ab:5c:79:
86:44:b8:48:db:66:03:7c:8f:77:ee:76:59:b7:57:
a3:b0:b4:b0:03:7e:e6:4e:3e:06:8f:86:0e:4a:0e:
ca:c7:3e:d8:68:eb:35:ca:75:a0:24:54:15:01:9e:
11:84:97:19:a6:e6:15:7e:97:13:5d:93:11:d0:b4:
b5:57:98:dc:95:9f:b5:fe:f2:bc:ca:e9:1a:ca:8b:
74:de:44:bc:0f:f9:2d:c9:7d:21:80:f9:0c:51:19:
fa:5b:6a:70:ba:01:8d:72:41:93:21:5b:82:17:d9:
65:20:90:b4:43:06:3a:46:4c:96:f6:41:a1:a3:1f:
2b:84:5f:c9:94:4b:b6:b8:34:b8:95:00:86:6d:dd:
30:56:17:23:3f:37:14:0b:f7:c8:da:05:83:b3:3d:
e8:cb:e4:83:b3:a7:bf:7c:f7:b5:07:0b:02:8b:fd:
e5:63:98:7d:89:76:86:f8:4b:50:85:a0:36:6a:92:
66:76:dd:a2:19:a8:f5:16:8b:91:96:04:5a:5b:52:
85:71:2b:67:90:a2:43:5e:1e:c3:f7:c3:e0:a2:27:
c4:8e:92:d0:2c:0b:75:c2:07:03:cf:bb:c1:f0:a8:
9c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:0B:C7:F3:AF:3F:BE:79:76:C3:64:D9:FD:F4:9C:F9:BA:72:27:54
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/6gvH868_vnl2w2TZ_fSc-bpyJ1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.74.40.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:63:1c:d8:20:c0:3c:b7:a4:de:32:9a:f8:66:56:bd:f7:9f:
84:1c:e8:cd:fb:5c:28:46:51:b5:67:70:52:e0:5d:5f:1b:af:
f8:f4:14:7f:06:37:8d:8a:68:41:4d:db:c2:23:cb:ca:5e:b4:
0d:4c:48:6c:16:0e:cc:e3:8c:b1:25:a2:0a:d7:fc:9a:a0:92:
2e:82:9b:17:d1:67:a0:d4:ba:78:05:32:9c:06:b4:20:8f:92:
a9:62:67:86:b8:0f:5f:82:89:9f:91:b0:75:aa:a7:12:8d:e3:
e0:04:6d:30:1f:f2:26:76:22:dd:9a:c1:f8:38:32:8d:3a:09:
5a:14:63:b8:5f:d6:be:42:91:7b:41:54:71:6a:a0:a8:cd:fa:
7b:37:91:ff:d9:e9:b3:67:20:e3:6e:b1:0b:19:99:9a:9a:da:
74:eb:ba:1c:77:b8:fc:77:cc:ff:43:b2:d7:af:cd:c5:f2:09:
ab:8c:9d:59:7c:22:56:c5:81:a9:ad:89:41:f1:19:c3:d0:b2:
90:d9:e1:e8:46:71:44:4c:39:42:61:b9:6b:0b:69:c4:ca:9a:
4d:25:4b:c7:8a:28:af:56:07:e4:f3:e4:72:70:8e:f9:4c:1c:
e3:a0:5a:52:a3:70:0a:0a:91:1d:2f:ee:68:cb:69:a2:3a:fa:
df:7e:79:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org