Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/ssk5jm4_tkTrPpaCunBXf74kYLI.roa
File: ssk5jm4_tkTrPpaCunBXf74kYLI.roa (raw, json)
Hash identifier: EZaov8n1piCAT1GwGy3AQO60/S2wgr9Aq9H9KHNa6Yo=
Subject key identifier: B2:C9:39:8E:6E:3F:B6:44:EB:3E:96:82:BA:70:57:7F:BE:24:60:B2
Certificate issuer: /CN=e4984f8f36ebf9f8f54c12174f463664d7b23aee
Certificate serial: 01856C53AB48CDBA20D06595000EB61D9636
Authority key identifier: E4:98:4F:8F:36:EB:F9:F8:F5:4C:12:17:4F:46:36:64:D7:B2:3A:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/ssk5jm4_tkTrPpaCunBXf74kYLI.roa
Signing time: Sun 01 Jan 2023 07:55:00 +0000
ROA not before: Sun 01 Jan 2023 07:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203966
IP address blocks: 213.171.70.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:ab:48:cd:ba:20:d0:65:95:00:0e:b6:1d:96:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4984f8f36ebf9f8f54c12174f463664d7b23aee
Validity
Not Before: Jan 1 07:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2c9398e6e3fb644eb3e9682ba70577fbe2460b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a4:8b:6f:a3:80:31:27:f1:47:f6:56:a4:6d:
dd:66:16:db:12:86:1d:0c:b9:ef:8d:5d:20:da:bb:
a1:66:d3:49:89:de:00:2a:bb:68:36:6f:39:a4:35:
4e:a8:84:3b:11:40:ac:6f:ae:5b:d5:dd:14:de:3f:
cb:aa:5d:85:1a:74:5b:01:8a:a9:d8:1c:bb:ee:0b:
f5:22:91:26:71:17:cc:be:e0:36:06:75:fa:84:ba:
f9:6a:c6:a9:83:ee:8c:30:cc:fb:aa:87:65:bb:2a:
6c:15:43:a8:5c:4c:e1:d4:a1:1f:93:15:72:76:a8:
55:c1:da:0a:65:08:4b:e8:e4:4f:02:22:79:df:17:
18:76:b9:b1:51:81:4e:00:1f:2e:aa:a0:de:5c:32:
fd:cd:df:8c:54:25:b7:7f:5f:b8:78:24:80:61:e4:
56:8d:17:cb:86:0f:99:ce:94:30:82:ae:cd:45:65:
e0:53:e1:9c:3a:e9:49:d6:4a:8e:28:d6:dc:1a:f4:
6a:77:bc:17:58:02:81:78:57:86:60:f4:13:66:3f:
c3:07:a3:96:dd:e3:0a:2c:ea:49:f3:37:59:d9:48:
df:fb:9b:87:ac:dc:ff:b7:1a:70:1d:57:cb:20:c0:
ee:93:b3:73:f3:8e:28:70:c5:e6:26:fe:fd:66:2d:
bd:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:C9:39:8E:6E:3F:B6:44:EB:3E:96:82:BA:70:57:7F:BE:24:60:B2
X509v3 Authority Key Identifier:
keyid:E4:98:4F:8F:36:EB:F9:F8:F5:4C:12:17:4F:46:36:64:D7:B2:3A:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/ssk5jm4_tkTrPpaCunBXf74kYLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.171.70.0/23
Signature Algorithm: sha256WithRSAEncryption
50:d9:e8:e5:19:73:f6:1b:7e:bc:93:8c:86:d1:17:9c:e3:ab:
b7:03:11:4c:43:46:14:5c:b4:aa:40:b7:34:3a:f3:43:37:62:
c3:31:61:74:1a:b0:1f:03:9e:b1:dc:72:cd:1d:4f:66:fc:41:
03:08:4a:5e:e7:d5:42:12:30:c3:26:4b:35:4e:f6:13:1d:e1:
98:61:30:ab:6c:a1:c0:27:4e:f4:ec:52:9f:26:9e:e0:cf:de:
82:00:55:cd:ed:ec:b4:91:70:15:05:ad:9f:2d:87:aa:3a:81:
a0:c4:d1:9c:cb:f9:6e:36:a3:57:0d:f2:f9:10:6b:d4:bd:89:
2b:c4:c4:72:8a:4f:09:54:f9:27:f8:79:bc:a7:2f:76:1c:fb:
21:54:83:6b:d5:1a:12:11:58:3f:4d:bf:7c:a1:18:04:da:2a:
5d:d4:62:2c:6e:7a:7e:a3:44:e5:1a:a7:ea:f9:91:8a:2e:d4:
f9:54:25:68:ba:2a:c3:79:aa:f6:84:10:dc:2f:4e:05:bf:99:
ef:27:29:60:ce:c9:23:c0:2f:12:41:4c:56:3c:ec:79:8f:51:
8c:a4:87:f1:28:2c:3d:5b:19:e2:cc:84:66:35:30:25:28:50:
b6:d9:17:be:2b:ac:6f:cc:c8:43:b1:29:ce:45:a9:a9:00:a3:
5c:47:38:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:36 2024 by rpki-client on console-fra.rpki-client.org