Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/dVTSZ6hLEMNPLsEVE7uPBC6D8KQ.roa
File: dVTSZ6hLEMNPLsEVE7uPBC6D8KQ.roa (raw, json)
Hash identifier: g5waBoS6/yucm9mhHzjLHulqZ1hBsafvBMTxoGJZkXI=
Subject key identifier: 75:54:D2:67:A8:4B:10:C3:4F:2E:C1:15:13:BB:8F:04:2E:83:F0:A4
Certificate issuer: /CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Certificate serial: 018CA52339488A5660C4C20A0CC4384BD041
Authority key identifier: E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/dVTSZ6hLEMNPLsEVE7uPBC6D8KQ.roa
Signing time: Tue 26 Dec 2023 07:59:58 +0000
ROA not before: Tue 26 Dec 2023 07:59:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203
IP address blocks: 212.138.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Dec 2023 11:09:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a5:23:39:48:8a:56:60:c4:c2:0a:0c:c4:38:4b:d0:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Validity
Not Before: Dec 26 07:59:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7554d267a84b10c34f2ec11513bb8f042e83f0a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:db:11:a8:fd:be:c3:6c:29:74:d4:dc:1c:58:
89:64:c6:fc:b0:02:33:53:07:b0:b5:15:ec:91:94:
7b:0e:ba:69:66:df:6f:0c:46:92:7a:10:1b:b2:95:
ed:3a:01:33:02:bc:00:53:cf:cc:74:51:b3:e3:23:
b8:44:df:86:bd:dd:a8:25:8f:0c:12:af:2d:fe:fe:
60:ac:dd:72:3c:1e:16:25:cc:b1:6f:73:69:dc:8d:
c6:fb:f9:0a:49:a4:d1:73:1c:f4:72:3c:06:47:e4:
81:bb:c8:e2:c1:20:61:ce:ac:87:36:b4:94:c3:27:
eb:d5:71:af:ba:c0:12:55:32:4a:9a:e4:d9:55:aa:
53:54:0b:f3:d2:8a:a1:eb:de:b7:75:cd:eb:b9:0d:
e0:0b:7f:aa:b6:6f:2f:5f:c4:e0:14:de:06:2a:85:
49:36:81:5c:db:b3:c3:aa:bf:bc:35:33:2b:4f:05:
37:e0:22:d7:14:94:93:b0:a6:53:50:82:43:e5:2d:
67:ed:2b:f5:bc:f2:fe:31:80:e1:57:f9:0b:d9:8f:
39:8d:f5:9f:67:40:78:b6:cc:89:8d:2e:11:b4:67:
dd:02:3b:53:d5:90:c3:7e:99:cc:5a:74:a5:bc:6d:
94:39:98:1e:72:33:c7:bb:49:48:58:aa:5d:84:2d:
fa:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:54:D2:67:A8:4B:10:C3:4F:2E:C1:15:13:BB:8F:04:2E:83:F0:A4
X509v3 Authority Key Identifier:
keyid:E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/dVTSZ6hLEMNPLsEVE7uPBC6D8KQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.138.64.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:ca:9c:ba:a2:bb:4c:f3:4f:7e:56:19:bd:9c:68:2b:5b:69:
d5:b0:aa:be:98:68:cc:a8:a8:b3:b4:87:ae:ac:67:3d:be:c7:
28:a7:04:b5:26:23:40:2a:98:35:44:ef:10:95:ed:aa:dd:5f:
f9:68:23:df:a4:b8:25:7b:0c:26:9f:59:f4:7a:1f:70:3a:6b:
f8:16:df:a0:4d:40:01:81:e5:39:cf:e2:f7:d9:55:6b:5c:26:
e8:81:bf:58:8b:b0:b9:98:dc:cd:fa:8f:ec:02:32:ec:9c:d5:
61:48:16:9d:6a:55:64:42:8f:78:d4:36:31:61:18:ad:e7:1e:
60:2c:f1:3a:14:47:e8:6e:61:14:0f:fd:a5:c3:4f:43:91:94:
6f:21:af:f6:15:24:e2:2b:2f:ba:d4:28:83:2f:70:f3:a7:45:
c9:3f:19:7b:dd:d9:ca:ff:23:86:79:52:c1:ba:bd:77:10:1a:
56:0b:57:4e:63:0d:86:53:e5:25:1c:5e:14:ab:79:f7:d3:1e:
6c:1a:2f:0a:2d:b1:72:53:da:55:2f:49:2d:09:95:94:07:95:
fb:18:98:ee:56:b9:b1:76:ab:00:6b:65:6e:eb:72:fb:69:3f:
d2:e6:14:64:17:34:a5:81:81:fc:49:fb:60:61:62:4b:18:01:
67:c0:a0:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:00 2024 by rpki-client on console-fra.rpki-client.org