Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/A5fouWup_h7vBfrCjziYa30IFnM.roa
File: A5fouWup_h7vBfrCjziYa30IFnM.roa (raw, json)
Hash identifier: bTe9BvnCRJxDkLnO9sktZqjKQk2Pt9uoiL23UEWGgsQ=
Subject key identifier: 03:97:E8:B9:6B:A9:FE:1E:EF:05:FA:C2:8F:38:98:6B:7D:08:16:73
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018F9B1AEEEE45038E58FA414FD94D56ED01
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/A5fouWup_h7vBfrCjziYa30IFnM.roa
Signing time: Tue 21 May 2024 12:23:04 +0000
ROA not before: Tue 21 May 2024 12:23:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 213.173.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jul 2024 21:42:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9b:1a:ee:ee:45:03:8e:58:fa:41:4f:d9:4d:56:ed:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: May 21 12:23:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0397e8b96ba9fe1eef05fac28f38986b7d081673
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:99:a0:57:5b:1c:05:b8:2e:be:9a:1e:1c:47:
db:b0:dc:12:09:96:cf:10:f8:e3:bd:18:1c:82:e1:
84:03:97:6a:aa:e6:07:72:49:d9:b7:86:44:04:57:
cf:bb:ab:1a:83:cb:95:88:b1:1e:22:a1:be:b1:81:
6b:df:fa:ad:98:1c:32:ad:9b:d5:47:56:8f:20:2b:
e7:bf:29:65:35:a7:ba:98:7b:2f:29:6e:03:78:1f:
d0:eb:ff:36:e8:67:91:54:3f:44:6f:dd:68:e3:5f:
6f:a7:a9:64:15:f7:cf:0d:93:be:7b:a6:cf:68:da:
73:c3:ac:a8:58:9c:aa:bf:62:cf:f6:50:8e:3c:bc:
f7:cb:d5:d2:e8:64:a1:d2:74:63:a2:41:50:88:0b:
9b:94:c3:d1:4b:1a:de:ae:1a:57:f4:0e:5f:b8:e0:
b8:bb:32:8b:bd:7d:0d:f3:6b:80:85:5f:25:72:fc:
60:7f:70:12:33:ce:71:80:6c:42:d2:ed:e3:a7:d8:
da:59:09:36:1a:f9:d0:d0:a1:32:9a:77:43:b6:81:
65:c4:b1:8f:29:94:f6:2f:15:f8:e2:7b:e2:a7:81:
ba:ba:fb:7c:ca:24:2c:4b:bd:c6:45:3d:d0:37:17:
9c:0a:8a:77:b0:8d:95:a3:b5:78:79:a0:e2:38:a0:
fc:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:97:E8:B9:6B:A9:FE:1E:EF:05:FA:C2:8F:38:98:6B:7D:08:16:73
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/A5fouWup_h7vBfrCjziYa30IFnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.173.35.0/24
Signature Algorithm: sha256WithRSAEncryption
95:bf:90:a1:6c:83:82:96:90:cd:07:07:34:4d:20:7f:f7:37:
7c:65:fe:0e:9f:a9:03:1d:ba:41:9b:80:fa:91:53:59:a5:62:
02:c6:65:bf:66:47:0e:35:b4:be:31:73:5a:56:c6:23:c0:6b:
28:12:b4:c5:26:74:3c:d1:e2:1a:5e:17:b3:be:1b:40:3b:29:
16:88:a2:a1:05:52:63:4f:0e:a4:51:1e:62:34:c5:00:7f:49:
be:7c:c2:f7:cd:3f:10:6d:dc:25:63:e8:dc:c0:46:f5:0f:92:
b4:bd:3a:22:2d:0c:4e:3c:d5:c9:24:f3:4e:e2:19:8c:b5:d9:
1c:ca:89:1b:61:98:93:ff:64:fb:16:fd:88:bc:b5:fd:9b:c1:
be:5b:9a:92:9d:c6:4d:81:bc:75:91:cf:65:62:8a:23:e6:2e:
94:6a:27:a2:73:9c:6b:51:00:f7:46:d1:9e:36:d1:59:9c:bf:
60:86:52:36:f1:58:f9:b4:b1:67:85:4e:23:aa:94:65:e8:85:
e0:66:dc:08:e5:ca:d9:37:e8:97:ee:d4:5c:3e:01:ba:21:7f:
be:6b:d6:f5:59:a6:91:84:12:89:44:4f:36:47:ce:dc:34:ee:
85:4e:a9:68:bf:4d:d8:e9:ed:a9:b4:d5:42:f8:6c:81:15:56:
c8:6f:33:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 9 23:11:36 2024 by rpki-client on console-fra.rpki-client.org