Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/yf7JzeruMpgOBxz_uvroW4vIKBY.roa
File: yf7JzeruMpgOBxz_uvroW4vIKBY.roa (raw, json)
Hash identifier: NC9/DAIZ7FJNbOMIa0xW/3UyChoMw0qAvOTNWEjYcmo=
Subject key identifier: C9:FE:C9:CD:EA:EE:32:98:0E:07:1C:FF:BA:FA:E8:5B:8B:C8:28:16
Certificate issuer: /CN=18886007da1730b0770d8604db73d12fd264f3f9
Certificate serial: 018B9B9F15B80AFEDA5F335913218C8265AE
Authority key identifier: 18:88:60:07:DA:17:30:B0:77:0D:86:04:DB:73:D1:2F:D2:64:F3:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/yf7JzeruMpgOBxz_uvroW4vIKBY.roa
Signing time: Sat 04 Nov 2023 18:36:16 +0000
ROA not before: Sat 04 Nov 2023 18:36:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56621
IP address blocks: 213.171.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:9b:9f:15:b8:0a:fe:da:5f:33:59:13:21:8c:82:65:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18886007da1730b0770d8604db73d12fd264f3f9
Validity
Not Before: Nov 4 18:36:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9fec9cdeaee32980e071cffbafae85b8bc82816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:dc:a0:38:4d:c2:08:e5:76:fb:94:20:38:f3:
b9:bf:a8:25:56:a7:ed:2b:27:21:c3:ea:c3:07:e3:
86:9c:09:0a:d7:2c:4a:4d:fd:c2:8d:0c:a7:51:a0:
ad:ea:d0:b8:c3:1e:ab:16:55:8b:e3:24:8e:b3:6d:
b9:c9:a5:7a:13:9e:c4:01:2e:bc:92:45:12:fd:84:
85:57:1f:ec:4f:3f:bc:38:fa:17:ca:d9:fc:1d:82:
70:74:dc:7a:f0:f4:a4:cc:66:9c:ca:f6:ad:c9:9a:
bb:c2:7d:e3:46:98:5c:9e:1a:4d:64:18:bd:7b:a5:
34:79:e0:32:3e:40:17:f1:34:7f:f2:72:cb:ee:fe:
39:03:cf:22:f8:66:5f:53:e6:3a:3c:7b:81:e5:6e:
32:bf:1b:ea:1d:0c:4d:73:63:58:83:2d:c8:5a:cd:
22:6a:45:f4:42:38:46:14:e8:71:cb:c0:b7:77:2c:
11:c9:fa:6c:88:45:39:1e:5f:34:48:04:5b:22:4a:
ef:2a:66:fa:f7:56:04:f7:cf:42:c9:1b:e6:f1:60:
3b:87:b1:c5:6d:31:2d:47:29:54:fc:95:d1:da:c3:
fb:d2:03:7f:cc:94:a5:af:57:14:2a:13:9b:76:96:
cf:1d:9c:78:45:81:38:65:9e:f3:e7:41:60:49:01:
cc:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:FE:C9:CD:EA:EE:32:98:0E:07:1C:FF:BA:FA:E8:5B:8B:C8:28:16
X509v3 Authority Key Identifier:
keyid:18:88:60:07:DA:17:30:B0:77:0D:86:04:DB:73:D1:2F:D2:64:F3:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/yf7JzeruMpgOBxz_uvroW4vIKBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.171.0.0/24
Signature Algorithm: sha256WithRSAEncryption
05:09:d1:c4:a7:0a:10:9c:11:28:3f:9f:54:83:e1:98:0c:25:
b3:d9:08:c8:a9:13:f1:44:9c:d5:df:e4:a4:17:47:22:71:6b:
88:6e:6a:40:8d:5e:c5:98:ef:9c:31:1f:89:38:0b:3b:4e:ac:
17:53:6f:bf:37:da:ed:58:72:90:d9:a6:18:79:d5:2e:e1:ee:
8d:c4:98:0d:95:00:56:12:eb:42:e9:b1:0f:0c:90:c7:5f:0f:
d1:6d:9d:0f:64:a5:33:99:2e:34:e1:7b:af:b2:87:bc:80:2a:
d8:87:3b:96:8f:0b:a6:4a:10:db:b7:14:79:47:b3:72:21:6d:
c3:18:b8:0c:74:c0:c6:6f:55:3c:9e:b6:01:e7:6f:ec:8b:f2:
4e:2e:83:99:b3:19:23:d6:49:54:9f:2f:fa:b7:ca:cd:fc:cc:
aa:5f:46:45:ea:b1:ae:8a:d8:ca:11:03:f6:3a:5a:e6:55:67:
99:ff:a9:3e:e6:00:20:2e:9d:6f:e9:23:6a:f8:87:f6:ae:7c:
1a:c2:bb:b2:e9:7d:26:8f:05:af:c0:ea:eb:b5:ba:1e:de:db:
fa:2d:d1:7e:b2:87:fc:a3:d6:88:19:4d:35:f6:3f:8e:0b:e6:
1a:66:94:83:59:e1:b5:c9:ac:81:e2:29:25:61:04:90:ab:d0:
df:ad:51:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:54 2024 by rpki-client on console-fra.rpki-client.org