Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/97t-8Ldldl6KsiH43eUlyLF9HhQ.roa
File: 97t-8Ldldl6KsiH43eUlyLF9HhQ.roa (raw, json)
Hash identifier: L0fNnTQ242aKtdh6Baw91+4X/wrpjCLijBy+ZBfQaN8=
Subject key identifier: F7:BB:7E:F0:B7:65:76:5E:8A:B2:21:F8:DD:E5:25:C8:B1:7D:1E:14
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DCBD6FAF8D5F8081BC2AA80826CA0
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/97t-8Ldldl6KsiH43eUlyLF9HhQ.roa
Signing time: Sun 01 Jan 2023 23:14:50 +0000
ROA not before: Sun 01 Jan 2023 23:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201364
IP address blocks: 213.74.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:cb:d6:fa:f8:d5:f8:08:1b:c2:aa:80:82:6c:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7bb7ef0b765765e8ab221f8dde525c8b17d1e14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:cd:45:2c:92:85:eb:99:b7:5d:0f:08:e1:bf:
fc:d2:f3:e6:93:bf:05:2e:77:c9:7e:0b:fe:4d:92:
0b:83:ef:fb:c5:f7:6a:f1:e4:e8:dd:aa:2b:79:7a:
b1:b2:ab:27:23:40:6c:46:09:92:e8:39:79:67:eb:
a4:bb:90:b7:04:34:65:14:18:18:bc:95:00:4b:d4:
9b:2b:1b:14:4e:c0:0c:48:03:dd:40:e2:7a:b3:f7:
5f:45:30:eb:cb:38:98:09:3d:93:37:13:dc:4a:f9:
70:f5:ad:db:6d:3d:d8:cb:09:27:21:60:57:b7:47:
86:3a:ff:a1:8e:a2:e0:30:d3:63:32:1b:56:62:2a:
3c:ef:33:4b:90:1c:d3:92:ff:e5:75:5b:b6:b3:7c:
ad:5b:bf:c9:d5:ad:5e:33:93:6b:04:67:0f:9c:ec:
5e:a8:82:21:34:76:d4:a9:ec:54:1c:a5:70:8f:23:
b2:39:53:d1:7b:0c:b7:ee:84:a4:90:7f:f6:f3:25:
86:3e:71:56:a6:2e:c6:e9:99:e2:07:bf:05:ed:7b:
02:e1:ec:1d:c4:7b:86:31:bb:54:c2:f5:02:0e:90:
af:23:9f:f4:d7:39:68:5f:56:8b:69:6a:70:58:7f:
ed:4c:28:9a:e8:ff:27:48:80:a3:eb:aa:f1:0c:57:
e0:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:BB:7E:F0:B7:65:76:5E:8A:B2:21:F8:DD:E5:25:C8:B1:7D:1E:14
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/97t-8Ldldl6KsiH43eUlyLF9HhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.74.40.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:48:d5:c3:72:4d:11:0a:ef:a9:57:8f:6e:73:4c:50:c6:ef:
b1:81:2c:b1:09:cf:17:ee:f5:60:ad:c5:df:d8:42:dd:16:fb:
19:e0:5f:90:d3:f7:fa:d8:c1:3a:a8:20:84:44:33:a8:c5:ae:
d7:07:86:6f:cf:ec:4e:a0:04:ac:cf:d4:5c:48:56:d6:27:02:
bc:25:00:b6:c6:83:09:9a:59:a0:62:0d:14:72:66:b9:16:4e:
86:47:1a:ca:21:fb:37:12:29:30:20:af:61:cc:92:6b:37:df:
ff:d4:dd:1c:9a:1c:db:27:f7:58:b4:2f:d6:09:2e:39:35:57:
2c:95:de:40:5c:c2:62:ab:7f:06:3a:ac:b6:90:c8:3d:9f:fa:
ca:fd:0f:6b:7e:14:3b:46:ee:5f:7d:fb:6a:60:9d:1f:68:c2:
b4:ac:b2:5c:67:6a:fc:34:ff:9f:7b:0e:7a:b2:ef:e9:2d:b6:
33:57:2c:f2:76:1d:57:cb:6b:c2:e2:57:b0:19:cd:d3:20:cc:
51:34:ee:b8:3d:50:9e:74:88:ee:ed:1f:c0:2a:85:7f:32:d2:
ce:66:01:81:06:4b:c0:a8:38:ad:a3:86:00:14:83:96:fc:cb:
f8:8a:10:44:4b:48:aa:22:5b:7e:42:6f:a2:41:cd:18:b2:c6:
11:9e:7e:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org