Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/8628b1-4a97-483e-a420-f8ebc42c6691/1/xT_3FQRbuSZ2QZ-3tmrJc6OIdQE.roa
File: xT_3FQRbuSZ2QZ-3tmrJc6OIdQE.roa (raw, json)
Hash identifier: pZLNTWSQlYIjdpP9RcZhyFjCUIiszkpWsfHGsF9MU5g=
Subject key identifier: C5:3F:F7:15:04:5B:B9:26:76:41:9F:B7:B6:6A:C9:73:A3:88:75:01
Certificate issuer: /CN=ac21a0182d6664a8cff9e9e0170b692168cef950
Certificate serial: 01856EC21B8FDF95FE6ECD9D97AE0A2AF11E
Authority key identifier: AC:21:A0:18:2D:66:64:A8:CF:F9:E9:E0:17:0B:69:21:68:CE:F9:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCGgGC1mZKjP-engFwtpIWjO-VA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/8628b1-4a97-483e-a420-f8ebc42c6691/1/xT_3FQRbuSZ2QZ-3tmrJc6OIdQE.roa
Signing time: Sun 01 Jan 2023 19:14:52 +0000
ROA not before: Sun 01 Jan 2023 19:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 213.173.38.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c2:1b:8f:df:95:fe:6e:cd:9d:97:ae:0a:2a:f1:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac21a0182d6664a8cff9e9e0170b692168cef950
Validity
Not Before: Jan 1 19:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c53ff715045bb92676419fb7b66ac973a3887501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:14:fd:77:f1:66:ec:2b:d0:bb:f6:4b:59:e9:
fe:46:7e:eb:d3:91:aa:3b:73:80:6e:f5:c0:11:51:
30:fc:35:62:e3:74:b4:79:82:d5:61:5c:b8:4e:a5:
6e:71:f0:a2:60:80:8a:9b:fb:2c:00:3c:13:43:c8:
ec:0d:1a:6a:ff:74:f4:4e:57:ec:ee:72:be:f2:d1:
22:76:8d:82:55:a5:65:46:e3:e4:2e:e6:9f:57:af:
d5:39:32:9b:20:2f:e0:b1:13:c6:3b:a6:1f:d2:30:
b9:fc:a8:0c:78:ad:00:89:49:d8:09:b4:37:6d:db:
63:40:f0:7a:7d:6e:5b:5b:3a:06:97:12:9e:69:5c:
d8:fa:5d:f2:ad:86:1a:6d:ec:56:91:31:25:d5:c9:
c4:1e:d6:62:3e:e5:f3:b3:46:77:cc:03:24:41:a2:
1e:df:2a:a4:08:3b:9f:a8:7b:e9:0e:59:33:9a:b1:
a0:c9:40:9f:2d:9d:ce:99:50:4f:ec:38:dd:db:40:
3b:d6:c3:2e:04:23:7b:a0:c1:a1:37:8f:62:30:d2:
85:74:2c:b9:2e:a0:70:dd:e0:41:d0:05:1d:76:e5:
0a:f8:c1:c6:06:cf:20:83:c8:e4:d0:74:0f:83:c7:
0a:3a:68:b1:ca:fb:f6:2f:c8:37:39:94:30:40:02:
f8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:3F:F7:15:04:5B:B9:26:76:41:9F:B7:B6:6A:C9:73:A3:88:75:01
X509v3 Authority Key Identifier:
keyid:AC:21:A0:18:2D:66:64:A8:CF:F9:E9:E0:17:0B:69:21:68:CE:F9:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCGgGC1mZKjP-engFwtpIWjO-VA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/8628b1-4a97-483e-a420-f8ebc42c6691/1/xT_3FQRbuSZ2QZ-3tmrJc6OIdQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/8628b1-4a97-483e-a420-f8ebc42c6691/1/rCGgGC1mZKjP-engFwtpIWjO-VA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.173.38.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:2b:7c:2b:d9:aa:0b:ee:af:36:a4:51:76:74:39:6a:ca:f6:
d8:7d:d2:d5:b4:83:10:1c:0f:41:3a:96:ac:0a:5a:b2:f9:77:
83:0f:28:3d:12:a5:c7:f7:7c:fc:8a:2e:4c:45:db:cd:d4:28:
ad:9b:02:61:53:ac:75:25:08:3a:c0:19:1d:23:69:d2:66:8e:
61:39:e1:11:b6:de:82:03:03:c7:7a:42:59:19:59:d5:71:df:
1a:0d:e8:0b:1d:00:0f:52:4b:d1:ea:65:ce:88:48:f6:85:0c:
e5:2b:fb:28:13:64:83:ba:14:29:bc:94:7e:5e:db:6a:2d:01:
2c:dd:22:13:37:a0:8c:87:2f:a7:b7:5b:20:cb:f1:71:61:43:
03:89:ae:23:99:eb:91:dd:9c:41:0f:42:3e:65:84:39:df:a6:
33:9f:13:ab:ef:c4:28:56:05:24:33:5e:bd:7f:e3:23:41:ff:
bf:d6:9a:4c:2c:b8:68:d0:c8:cc:d8:e9:e7:07:b0:b9:e5:1b:
a3:94:2d:33:ef:b1:bb:af:11:68:87:6f:2b:28:72:08:bc:78:
ca:30:1a:0b:be:9c:e7:a9:71:36:31:72:eb:f6:56:ad:c8:49:
4c:db:15:e9:73:7e:8e:f8:14:8a:a1:4c:65:e5:d2:b0:02:a3:
c1:37:19:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:01 2023 by rpki-client on console-ams.rpki-client.org