Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/KP3LJ0tpt7tMlFfYnf-F8VG9eVk.roa
File: KP3LJ0tpt7tMlFfYnf-F8VG9eVk.roa (raw, json)
Hash identifier: fntDqea6RYZ678W3zZhiib8PutgNiO0oQRU6ezmtAM4=
Subject key identifier: 28:FD:CB:27:4B:69:B7:BB:4C:94:57:D8:9D:FF:85:F1:51:BD:79:59
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 018B7072D5C78BE4591A78647C27EC795390
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/KP3LJ0tpt7tMlFfYnf-F8VG9eVk.roa
Signing time: Fri 27 Oct 2023 09:24:15 +0000
ROA not before: Fri 27 Oct 2023 09:24:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216202
IP address blocks: 213.109.98.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:70:72:d5:c7:8b:e4:59:1a:78:64:7c:27:ec:79:53:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Oct 27 09:24:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28fdcb274b69b7bb4c9457d89dff85f151bd7959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:76:a3:6e:8d:ac:ad:54:05:43:a1:63:a5:16:
5b:7d:77:8f:b1:bb:e1:2b:3a:a0:3b:cd:e8:fb:c7:
06:70:99:b3:a5:58:6b:f7:33:de:d0:fe:6d:25:1f:
0b:b6:90:6c:06:26:ee:23:e3:36:23:0b:06:b9:13:
55:99:7f:42:ea:e2:c6:a8:fb:dc:96:14:31:d5:93:
4f:01:f0:2d:37:b5:15:68:1f:4e:b6:16:d4:20:43:
a4:7b:6e:65:9c:ab:9b:8f:aa:3b:7e:c0:c3:06:b8:
fd:a2:cf:77:5f:c1:fa:8b:09:2e:c1:c7:f3:65:2f:
be:3f:6f:8a:e3:b8:cb:f1:f2:ab:73:eb:b6:d7:c9:
d6:29:45:dc:f2:c9:98:37:4c:71:06:b7:b9:11:d3:
2b:06:bf:06:fa:18:03:4a:b4:ba:1b:64:a8:e1:bf:
9b:f4:b6:97:3d:cf:ea:e8:86:00:d5:cf:1e:4c:42:
67:c5:2d:09:96:8d:0d:f9:d2:1b:df:25:b2:bb:32:
61:28:a3:3c:2e:e8:26:e6:15:47:e8:34:c1:62:ba:
28:9b:de:c6:c0:65:15:ed:6b:7c:90:5e:3d:59:53:
74:20:86:09:99:85:76:40:c7:8a:4c:f2:f8:2c:0f:
94:29:d2:e8:49:c2:8c:a5:61:28:23:29:f0:b8:3e:
90:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:FD:CB:27:4B:69:B7:BB:4C:94:57:D8:9D:FF:85:F1:51:BD:79:59
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/KP3LJ0tpt7tMlFfYnf-F8VG9eVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.98.0/23
Signature Algorithm: sha256WithRSAEncryption
35:40:0c:85:b7:54:69:1a:c3:4f:3f:e4:70:5c:d4:ac:fc:ae:
5d:86:fe:94:19:9e:f0:99:d1:8c:9c:78:d5:cb:61:93:d3:b7:
b3:9c:32:d0:66:8f:5c:6d:91:a7:31:35:67:97:07:91:e2:37:
f1:e0:ed:11:d6:80:50:8a:2d:21:8d:10:39:22:13:dd:12:a4:
84:13:84:a8:62:ba:42:ce:f2:fe:a6:34:41:bb:b7:60:04:7b:
fc:ef:ac:5e:b4:88:07:65:82:b7:b6:a3:d1:4d:e1:64:f3:a5:
fb:1f:87:96:83:e9:5d:b9:e5:6c:1f:42:5d:c0:8e:5d:95:b2:
d4:30:86:21:11:f1:ce:ee:f9:6b:b0:42:0c:f0:0c:40:d7:4c:
de:d2:6c:04:8d:13:9e:8e:c2:1b:b6:6f:4c:0e:89:5d:00:1e:
91:3a:b4:b6:65:c1:3b:99:da:67:90:32:fe:e9:c0:a8:1f:a5:
e0:39:b0:ba:f6:09:41:c8:65:c4:72:db:3e:a1:d3:aa:1b:bd:
9b:c5:34:3b:da:48:20:16:ee:b7:89:49:cf:40:f8:3c:45:7b:
2f:28:6a:53:a5:c3:d3:b5:a6:98:6e:a7:83:38:78:e3:61:bb:
d6:7f:56:c2:c2:fa:eb:34:f2:24:f3:c5:ac:79:89:1a:b4:74:
1e:7e:e4:c9
-----BEGIN CERTIFICATE-----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Generated at Mon Oct 30 10:14:26 2023 by rpki-client on console-fra.rpki-client.org