Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/JW6fskwkWNfF3hOvhJTTFCEo0_Q.roa
File: JW6fskwkWNfF3hOvhJTTFCEo0_Q.roa (raw, json)
Hash identifier: M0Y0mDXXHV9LKjbE2WMhb6T8mP1LTngRkZ7WkODwi3E=
Subject key identifier: 25:6E:9F:B2:4C:24:58:D7:C5:DE:13:AF:84:94:D3:14:21:28:D3:F4
Certificate issuer: /CN=33c342c06aacc359d39439ff58defa8ea1875748
Certificate serial: 01856F0B5F677FE27B5D0999B8FC1B4FFAD7
Authority key identifier: 33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/JW6fskwkWNfF3hOvhJTTFCEo0_Q.roa
Signing time: Sun 01 Jan 2023 20:34:54 +0000
ROA not before: Sun 01 Jan 2023 20:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39575
IP address blocks: 213.128.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:5f:67:7f:e2:7b:5d:09:99:b8:fc:1b:4f:fa:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33c342c06aacc359d39439ff58defa8ea1875748
Validity
Not Before: Jan 1 20:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=256e9fb24c2458d7c5de13af8494d3142128d3f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ab:89:88:fa:36:47:91:13:d7:43:eb:c8:77:
ca:54:08:2a:45:2d:55:f9:d0:f8:53:e4:80:35:4d:
d5:89:8e:38:57:3a:6f:0e:58:50:65:c8:bc:04:b2:
8b:01:ec:20:d8:28:c8:a6:4e:6d:6e:2e:1e:86:30:
34:b4:3a:38:8b:59:71:d5:8d:c7:b3:04:c7:2b:d0:
7d:f8:e9:b1:e5:0b:92:32:a0:49:03:4a:0f:3d:f6:
a4:cb:47:51:cb:2c:87:87:b9:12:5a:1f:30:80:65:
cb:43:f7:33:cc:66:01:bf:55:83:f7:7d:c6:5f:2f:
b7:76:9d:5a:b5:db:dd:52:ae:bf:72:84:7d:9a:c6:
ab:01:4f:98:fc:0c:85:68:7a:71:7d:9e:22:0b:1b:
61:ab:f4:db:3d:06:ea:4c:22:21:e8:51:f5:5c:ae:
af:7e:93:41:59:b2:17:48:13:ef:95:38:53:da:2d:
9f:73:f4:86:1c:ac:05:87:49:15:6c:26:c2:56:37:
1f:be:38:7c:82:f2:1f:04:a3:82:2d:aa:28:ae:97:
21:6d:15:b4:22:6b:b0:8f:1a:fa:6c:c4:c7:bc:0a:
90:9d:63:5b:97:b7:0e:8f:53:92:10:f5:4f:b1:53:
01:73:50:66:a7:59:b3:a2:c2:e6:ce:35:47:68:fd:
c2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:6E:9F:B2:4C:24:58:D7:C5:DE:13:AF:84:94:D3:14:21:28:D3:F4
X509v3 Authority Key Identifier:
keyid:33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/JW6fskwkWNfF3hOvhJTTFCEo0_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/M8NCwGqsw1nTlDn_WN76jqGHV0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.128.209.0/24
Signature Algorithm: sha256WithRSAEncryption
73:51:92:bd:1a:a4:be:c6:02:98:f5:65:99:57:84:7b:1d:fd:
0c:b2:f5:97:3c:51:70:26:e8:1d:22:6c:ed:77:11:73:8c:8c:
a2:36:93:d5:87:5c:c6:f1:24:f9:89:30:ed:26:60:a7:2b:01:
ba:54:36:64:c2:b1:52:ea:9f:cc:53:c8:6e:ca:15:09:3c:64:
6c:d9:7a:da:b7:e2:df:82:d5:74:4e:c6:46:3b:42:b4:c0:d8:
db:0b:2e:12:77:14:50:13:e8:47:0a:b1:8d:97:e4:2d:e9:9b:
5f:c3:2a:e1:82:98:11:5b:a0:db:7a:08:d8:fd:fe:ef:9c:2c:
57:37:cd:e8:c4:f5:95:37:fc:fd:e6:36:f0:a5:27:c7:ae:dd:
42:5d:72:bf:8a:c9:39:6c:55:bb:2d:15:05:c8:7a:81:01:ec:
25:e3:cf:08:43:ab:5a:a7:8a:20:91:17:e1:72:f9:fe:b3:4f:
4a:3e:c2:c8:5d:f4:e5:e2:84:bb:f5:8f:d9:a5:bb:6a:17:f3:
dc:e9:3b:22:2b:04:ac:44:41:12:b2:19:5a:01:db:fb:73:05:
97:55:eb:04:78:e3:6d:fa:bd:2f:5d:0f:97:34:a9:7e:b6:f7:
4e:3c:c5:c4:97:de:8c:52:ed:15:0e:a7:f2:c4:44:b9:d1:39:
71:4d:9e:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:28 2024 by rpki-client on console-ams.rpki-client.org