Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/ALGLidXsV5lEHZRFxpV9ps8WRZ4.roa
File: ALGLidXsV5lEHZRFxpV9ps8WRZ4.roa (raw, json)
Hash identifier: QA0TgNyJ2kXbTpjsMZyQmAvlWsH8AOjMW1bBYwYJGXI=
Subject key identifier: 00:B1:8B:89:D5:EC:57:99:44:1D:94:45:C6:95:7D:A6:CF:16:45:9E
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 01856B532156ACA3EFEF352D1C4D4CB8562E
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/ALGLidXsV5lEHZRFxpV9ps8WRZ4.roa
Signing time: Sun 01 Jan 2023 03:14:48 +0000
ROA not before: Sun 01 Jan 2023 03:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61135
IP address blocks: 213.238.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:53:21:56:ac:a3:ef:ef:35:2d:1c:4d:4c:b8:56:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 03:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00b18b89d5ec5799441d9445c6957da6cf16459e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:cd:58:3a:a2:89:63:53:b1:0b:63:9a:7f:c8:
e7:83:6a:94:b7:54:86:54:5c:f1:17:67:e3:cb:ce:
13:65:c9:5d:5f:bd:7b:51:c1:b4:5d:f2:12:4f:8d:
f1:0b:a8:a3:f1:2a:fb:46:cb:16:f2:9e:2d:09:d5:
61:27:5a:d9:49:e3:6d:d2:07:17:8d:3b:6a:b8:4b:
56:fd:7d:d6:71:f9:b2:7f:18:c0:d9:30:55:30:3f:
f0:d3:e0:e8:03:c6:5f:0d:91:9d:91:be:4f:d5:a8:
a5:7b:fd:1b:47:0b:b5:5f:d7:cd:86:e9:f8:20:7b:
28:5a:86:1b:2c:00:a9:d4:fb:f7:f2:8f:a4:54:68:
68:fc:d0:6e:42:9b:b7:af:a2:6f:ea:24:26:7d:02:
24:e9:11:30:02:81:a5:7c:ba:a9:1d:24:15:83:90:
c2:b9:97:6c:c7:ce:03:d5:46:d2:9e:1b:e8:ad:3d:
8b:84:33:fb:94:b6:57:5d:04:5e:e7:37:96:ec:23:
11:20:95:32:e6:0e:a1:b7:45:c2:ed:51:b8:4e:dc:
04:d1:4e:7b:e5:1e:ec:fe:b8:b9:bf:70:be:0a:f3:
56:ef:e8:d3:72:55:02:31:a2:a5:10:33:4e:54:e1:
4a:0b:af:b7:b4:54:9f:e4:16:f7:75:d4:da:e6:3b:
b3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B1:8B:89:D5:EC:57:99:44:1D:94:45:C6:95:7D:A6:CF:16:45:9E
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/ALGLidXsV5lEHZRFxpV9ps8WRZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.167.0/24
Signature Algorithm: sha256WithRSAEncryption
74:11:69:da:f7:cd:f3:a9:b8:a1:12:29:d1:6b:b2:0f:d4:de:
e7:73:b8:0b:30:31:9d:6f:96:97:df:97:95:95:4b:0e:45:e6:
3a:af:ac:b9:25:9d:84:cb:b5:53:03:18:b2:d9:01:27:ca:16:
1a:9e:8b:e5:dc:9f:62:2e:6b:4e:3f:17:6e:24:be:c8:b0:e3:
53:e0:65:bf:33:2b:b2:49:41:6e:bb:52:21:c4:f5:e7:e1:dd:
2f:a7:96:5a:f4:7a:48:32:db:1f:8d:5d:62:73:2b:85:d0:5b:
78:b8:07:6a:e1:52:42:00:11:bf:e6:fb:95:85:d1:41:71:56:
f7:33:cc:68:39:db:87:8a:e6:1a:c0:7b:23:72:fa:41:7a:e5:
6f:b4:53:c6:8c:bc:dd:ea:0b:31:f2:17:80:25:e6:6f:32:10:
bc:c7:d8:a5:f0:4e:b6:a8:45:57:f2:00:b9:d3:f6:24:10:1a:
7f:26:77:05:9b:3c:b2:f0:34:18:60:3b:24:67:20:d1:54:74:
b8:e9:a3:54:f7:84:09:31:b0:33:c9:9b:84:52:39:38:0b:7c:
80:ad:30:8d:3b:ca:25:55:c1:ba:8c:00:ef:9d:66:5a:fe:53:
fd:18:8f:15:48:bb:9f:a7:d8:f4:09:be:89:09:cf:65:15:f7:
01:c6:ff:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:36 2024 by rpki-client on console-ams.rpki-client.org