Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/c547b8-99ab-42f1-a6cc-bc665bb21686/1/8D2QFbdX6l75nsUPHWxUDJ49KYM.roa
File: 8D2QFbdX6l75nsUPHWxUDJ49KYM.roa (raw, json)
Hash identifier: Y7VmIp5VqueiCUPc2cZYjPnbRQMnPqPw7SJ0wf8Hthk=
Subject key identifier: F0:3D:90:15:B7:57:EA:5E:F9:9E:C5:0F:1D:6C:54:0C:9E:3D:29:83
Certificate issuer: /CN=eb554c44046c36439a919738942f31fa756b6911
Certificate serial: 0185737155A46FCED25ECB092E516470AD42
Authority key identifier: EB:55:4C:44:04:6C:36:43:9A:91:97:38:94:2F:31:FA:75:6B:69:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/61VMRARsNkOakZc4lC8x-nVraRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/c547b8-99ab-42f1-a6cc-bc665bb21686/1/8D2QFbdX6l75nsUPHWxUDJ49KYM.roa
Signing time: Mon 02 Jan 2023 17:04:45 +0000
ROA not before: Mon 02 Jan 2023 17:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41127
IP address blocks: 212.74.238.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:71:55:a4:6f:ce:d2:5e:cb:09:2e:51:64:70:ad:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb554c44046c36439a919738942f31fa756b6911
Validity
Not Before: Jan 2 17:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f03d9015b757ea5ef99ec50f1d6c540c9e3d2983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c5:6c:c2:74:71:9f:66:62:26:fb:3c:aa:b5:
e9:e3:c3:c0:53:4c:24:43:1a:20:b5:51:f0:a5:2d:
c9:7a:11:fa:47:23:61:0e:36:b3:0d:c2:7f:42:a8:
ca:9a:7d:21:25:89:b2:8e:90:04:f5:54:b3:5a:c6:
e9:37:6d:6a:af:e8:4a:b5:0e:9e:a6:86:b4:b9:6f:
b0:59:ed:73:ef:e0:5e:49:e3:f0:5e:54:4d:76:8a:
38:ca:45:60:77:68:3b:77:96:ce:a5:7e:ab:44:4d:
1f:17:ab:d2:b6:1b:ac:dd:5a:53:4c:ff:d6:1a:7b:
92:ec:91:49:a6:3b:b8:41:4a:5f:7e:30:99:70:6d:
a2:02:8e:6b:8f:50:ce:82:a6:e0:9b:23:bb:42:c2:
42:37:3e:61:26:fb:21:8c:66:8c:9b:b9:31:aa:f0:
d1:2f:11:36:ff:e9:ec:bd:67:10:4c:7c:17:1b:54:
df:bc:09:d8:d9:96:7b:18:45:e5:c3:05:5f:d6:26:
76:82:f2:d7:ac:87:be:93:19:a2:ca:89:2e:41:19:
ee:00:fd:56:27:88:e0:c1:79:46:39:e2:f5:97:ba:
d2:60:9a:a0:0c:68:eb:55:d2:81:b8:78:72:9f:4e:
f4:5c:38:6e:39:6f:39:d1:9a:ad:83:d9:de:0a:2a:
1a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:3D:90:15:B7:57:EA:5E:F9:9E:C5:0F:1D:6C:54:0C:9E:3D:29:83
X509v3 Authority Key Identifier:
keyid:EB:55:4C:44:04:6C:36:43:9A:91:97:38:94:2F:31:FA:75:6B:69:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/61VMRARsNkOakZc4lC8x-nVraRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c547b8-99ab-42f1-a6cc-bc665bb21686/1/8D2QFbdX6l75nsUPHWxUDJ49KYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c547b8-99ab-42f1-a6cc-bc665bb21686/1/61VMRARsNkOakZc4lC8x-nVraRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.74.238.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:84:00:f8:90:93:b4:cf:98:53:e4:98:e0:79:00:a2:f1:99:
3b:0c:74:26:33:55:d9:da:cb:81:f6:9a:27:6d:03:55:19:f6:
28:ec:66:ee:34:bc:5f:33:3c:99:f6:28:a8:18:56:3c:8a:15:
4b:31:62:63:32:9f:31:9d:67:0b:70:25:2f:6c:a8:7b:17:07:
5b:be:d9:cd:69:b2:b4:4f:d8:cd:25:54:97:5a:54:a3:6c:c5:
d7:da:d3:25:2d:fd:4a:6b:f2:12:69:23:97:25:0a:7c:03:23:
54:7d:59:6c:d5:c0:88:7c:68:50:39:d6:16:6d:18:ec:3c:59:
f6:7f:e4:23:4f:e1:93:f4:9f:a3:fd:80:51:40:56:24:a3:a3:
d9:c9:34:75:c7:79:4b:ef:7f:20:d9:bc:3c:92:5f:a2:a2:40:
08:e6:3f:fa:68:68:60:1b:7c:79:cc:48:ab:2d:fa:ff:16:87:
7a:4c:42:2f:dc:3f:25:ee:b2:a4:2c:06:3b:3e:c3:27:53:d3:
3b:73:f4:26:72:f2:3f:e7:9d:5a:7d:cc:31:51:81:44:bd:e9:
e7:78:97:29:59:33:49:42:c9:3c:2b:0d:27:f8:8f:6e:9c:97:
64:ea:bf:c2:06:c7:f8:38:5a:92:88:fc:e6:84:04:a6:94:75:
a9:2a:e7:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:33 2024 by rpki-client on console-ams.rpki-client.org