Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/v1pTRuwr-Q2QaT2Idmdk55lvbpQ.roa
File: v1pTRuwr-Q2QaT2Idmdk55lvbpQ.roa (raw, json)
Hash identifier: moEncoS0Iiw/0KRPHhkAXdOxvNjFHoBZ5NEskuB3iFk=
Subject key identifier: BF:5A:53:46:EC:2B:F9:0D:90:69:3D:88:76:67:64:E7:99:6F:6E:94
Certificate issuer: /CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Certificate serial: 01856D0A92DA8E3BD947BCF8C403C005BBA3
Authority key identifier: 39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/v1pTRuwr-Q2QaT2Idmdk55lvbpQ.roa
Signing time: Sun 01 Jan 2023 11:14:47 +0000
ROA not before: Sun 01 Jan 2023 11:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28781
IP address blocks: 213.161.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:92:da:8e:3b:d9:47:bc:f8:c4:03:c0:05:bb:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Validity
Not Before: Jan 1 11:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf5a5346ec2bf90d90693d88766764e7996f6e94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:13:22:e1:cd:93:6d:7a:b2:ff:e2:d0:87:8e:
c3:01:ea:8f:a9:e0:66:86:a1:af:50:e2:2d:44:ab:
9d:ef:3b:8b:38:94:a6:11:2d:43:1b:0b:61:ce:1c:
c4:5b:96:1b:0e:f5:88:ef:30:b8:03:d6:fa:50:86:
05:03:1c:e9:b5:5d:de:b1:f1:14:6d:74:9d:6e:4c:
dc:4f:08:3c:e2:62:a3:9d:09:8b:db:b4:c0:3a:9e:
eb:72:01:69:c3:ea:a1:b7:d9:4d:dc:99:0b:0b:d1:
e6:44:f6:87:e4:54:2f:b7:4e:87:2e:da:4f:cf:1a:
a3:f3:83:bf:c6:2b:54:24:21:b6:d6:b4:18:8d:76:
53:bc:8a:65:f1:d8:5a:79:cc:8a:a2:90:e0:db:04:
19:cc:29:cd:73:47:2e:6b:e5:59:a8:aa:dc:97:ed:
f5:e2:55:89:f6:61:fc:b7:65:26:37:71:c7:4f:55:
5b:a5:a7:6b:1b:9c:f9:89:11:2d:36:c8:21:4d:20:
eb:82:69:b4:50:02:b2:32:d4:98:94:fe:7a:be:f6:
53:23:01:07:80:61:cf:65:b7:d0:d0:f9:1e:c3:9a:
d5:5f:b1:16:40:ba:32:de:6c:21:cb:d8:55:f9:49:
15:0f:43:f1:f5:6c:29:08:3b:80:36:1f:d7:1a:be:
fc:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:5A:53:46:EC:2B:F9:0D:90:69:3D:88:76:67:64:E7:99:6F:6E:94
X509v3 Authority Key Identifier:
keyid:39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/v1pTRuwr-Q2QaT2Idmdk55lvbpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.161.131.0/24
Signature Algorithm: sha256WithRSAEncryption
49:09:8b:60:9f:af:e7:73:7c:47:4b:92:ee:b0:ef:59:14:dd:
7f:3d:9c:53:d3:7d:cf:3a:e2:21:75:32:ad:e4:5e:0d:1f:3c:
23:94:53:d4:f3:2f:f9:55:1d:b8:8a:50:10:81:07:1c:64:fd:
b5:e6:21:b4:9e:14:47:d4:a4:89:e8:5d:54:8a:e1:aa:a3:28:
e6:be:a0:b8:25:e3:8f:15:ae:46:ea:64:18:89:b2:c8:5b:29:
54:7c:42:59:cc:81:6b:b6:b0:59:7b:a8:15:bc:05:3f:46:56:
48:8b:6f:79:64:7e:cc:1d:68:57:8b:bc:6d:4c:0e:b0:65:3a:
30:8b:51:dc:5f:ab:b2:3b:3e:58:7b:ea:28:94:91:03:0b:7f:
53:47:8c:8d:72:f6:2e:37:2f:f9:8d:48:85:6a:f5:23:dd:60:
05:02:8a:f9:10:d7:0a:af:01:06:ad:0e:89:c3:3e:81:66:f5:
44:95:63:11:26:be:f1:1a:9e:2e:70:b9:af:e1:29:3e:fe:29:
1e:a5:be:74:27:47:c0:99:d1:fe:59:80:3e:d2:b4:92:4d:2b:
74:50:53:6b:21:4c:c9:68:ce:e4:ad:c2:01:a9:ae:8f:ee:ba:
ca:d0:d2:dd:d7:fb:ac:8c:1f:dc:44:f3:c4:d7:0d:84:be:dc:
e8:d1:a8:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:17 2024 by rpki-client on console-ams.rpki-client.org