Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/67dgtdqadCEV3vJj3fUEV9R8MgM.roa
File: 67dgtdqadCEV3vJj3fUEV9R8MgM.roa (raw, json)
Hash identifier: 1sPNRqoqo8nl3rfVV6n6HSGrrD7W/VH/NKpT6J6H/vc=
Subject key identifier: EB:B7:60:B5:DA:9A:74:21:15:DE:F2:63:DD:F5:04:57:D4:7C:32:03
Certificate issuer: /CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Certificate serial: 018890038DE48654463C55F6D33EFE4DD2BB
Authority key identifier: BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/67dgtdqadCEV3vJj3fUEV9R8MgM.roa
Signing time: Tue 06 Jun 2023 09:22:11 +0000
ROA not before: Tue 06 Jun 2023 09:22:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8285
IP address blocks: 213.21.239.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:90:03:8d:e4:86:54:46:3c:55:f6:d3:3e:fe:4d:d2:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Validity
Not Before: Jun 6 09:22:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebb760b5da9a742115def263ddf50457d47c3203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c4:43:7b:14:84:10:0f:68:26:41:2d:b1:f0:
33:c9:ce:02:d0:26:af:fd:e0:7e:62:9d:14:4e:c7:
6b:7a:c2:fa:8d:4f:8a:51:47:96:57:04:19:55:c3:
55:35:55:8c:c8:7d:ad:21:16:b5:ff:05:22:7d:97:
39:ad:ce:e8:16:47:f3:fe:36:12:06:a2:fa:db:ff:
ce:25:31:1d:77:6e:15:66:0c:cd:88:ae:a4:8d:84:
5e:5c:da:50:44:82:e7:94:87:f8:79:f1:5b:09:96:
e4:09:b6:81:88:ab:5a:83:85:77:4c:c9:26:f4:0d:
a3:d5:57:b6:34:36:f3:be:b7:04:fc:6d:ea:84:f9:
ee:9e:37:67:97:23:64:18:2d:5d:28:19:3b:10:59:
48:f9:a0:17:e7:12:67:df:42:6d:aa:4e:75:e3:f9:
9b:83:92:2a:5f:42:af:e9:33:8a:36:0e:fc:4a:74:
56:c6:e5:41:d2:46:96:0d:3a:94:d2:57:4f:fe:15:
d5:3d:2b:32:c2:87:45:8f:80:77:9f:c0:2c:24:ef:
50:64:40:6e:28:1b:2b:0e:be:52:2f:85:4c:8b:cc:
3e:08:ee:75:f8:62:ca:ed:35:20:e5:05:cd:b2:1d:
90:b1:b9:ac:98:84:c6:e5:0e:27:12:fc:92:83:1b:
02:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:B7:60:B5:DA:9A:74:21:15:DE:F2:63:DD:F5:04:57:D4:7C:32:03
X509v3 Authority Key Identifier:
keyid:BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/67dgtdqadCEV3vJj3fUEV9R8MgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.21.239.0/24
Signature Algorithm: sha256WithRSAEncryption
60:b0:57:95:a4:ce:a8:34:48:2b:32:de:cc:95:29:96:c2:26:
05:74:d6:5a:44:60:d7:96:68:39:2e:46:1c:31:f3:1a:ad:06:
14:95:40:25:d5:b6:ca:b7:df:93:5a:ee:73:fb:55:db:5a:40:
f8:97:17:c1:8a:98:fa:35:22:04:4a:0d:09:91:8e:e0:87:57:
20:06:81:e6:15:52:25:a7:99:2a:18:56:99:66:aa:3d:b8:b5:
6f:ce:e3:a0:b0:7d:e2:5c:8b:d1:10:3c:11:0f:18:e3:4d:d1:
81:1d:8b:ef:f5:50:b3:10:1b:14:2b:94:ba:ff:fb:92:97:d1:
20:df:3c:0f:17:cb:8d:a6:96:81:52:be:32:b1:87:80:2c:80:
66:a5:11:f0:13:16:a9:f4:ed:ed:80:3b:90:ba:a9:02:e4:28:
ea:9b:8b:91:29:c8:e0:25:fd:35:3b:46:16:eb:b3:56:d4:03:
fb:a5:7c:8f:23:fc:93:69:c9:8a:9c:0a:f1:b9:36:23:2e:00:
6a:c6:9e:2d:9a:6b:1f:2d:b0:83:2b:22:4e:92:1c:06:1d:f1:
31:5b:a7:02:d1:0b:25:6a:ad:ba:60:84:e9:9f:dd:98:00:0f:
ca:57:ec:83:d3:90:dc:87:8b:0c:4d:33:d9:cd:20:04:1e:ea:
35:0d:41:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:40 2024 by rpki-client on console-ams.rpki-client.org