Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/8c97fe-3f8c-4db4-ab93-752d81cdda40/1/VEhhnBm2VoPoHMxZnCQQA4qemzA.roa
File: VEhhnBm2VoPoHMxZnCQQA4qemzA.roa (raw, json)
Hash identifier: YEYtTCWeNsBP5SBm65qXbQsXgZ0MZYdBFdOn3bAAUIE=
Subject key identifier: 54:48:61:9C:19:B6:56:83:E8:1C:CC:59:9C:24:10:03:8A:9E:9B:30
Certificate issuer: /CN=fbf43fe9fd3af2bcf4ba7a83f111e6559125f3fd
Certificate serial: 018F711ADC343799620C3A361B9467DEC220
Authority key identifier: FB:F4:3F:E9:FD:3A:F2:BC:F4:BA:7A:83:F1:11:E6:55:91:25:F3:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_Q_6f068rz0unqD8RHmVZEl8_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/8c97fe-3f8c-4db4-ab93-752d81cdda40/1/VEhhnBm2VoPoHMxZnCQQA4qemzA.roa
Signing time: Mon 13 May 2024 08:38:56 +0000
ROA not before: Mon 13 May 2024 08:38:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215451
IP address blocks: 213.109.150.0/24 maxlen: 24
2a12:fdc0::/29 maxlen: 32
Validation: Failed, certificate revoked on Wed 29 May 2024 12:49:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:71:1a:dc:34:37:99:62:0c:3a:36:1b:94:67:de:c2:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbf43fe9fd3af2bcf4ba7a83f111e6559125f3fd
Validity
Not Before: May 13 08:38:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5448619c19b65683e81ccc599c2410038a9e9b30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d4:2e:83:5a:dd:6c:cd:1c:38:76:fa:12:63:
02:45:4c:ca:5c:c0:5e:be:67:10:99:21:74:23:cf:
fc:48:82:25:46:d9:ec:f6:56:ef:ee:d7:0c:7f:95:
40:a4:92:57:80:42:e2:f0:2c:f0:2e:c1:0d:6a:fc:
88:18:92:62:11:78:ae:e1:63:5b:09:97:5b:56:64:
92:25:7e:f2:d4:80:69:6d:87:7f:eb:7c:36:7c:3a:
a4:42:b4:ab:4b:4d:ed:6a:32:33:d4:36:c7:e3:77:
ec:a2:fe:e7:86:42:1c:d4:c6:e7:21:c9:e7:c8:cd:
f5:27:b8:58:48:4b:93:09:d5:24:d7:c0:8e:64:ec:
9e:65:72:4a:2e:f5:57:e4:11:bd:23:ec:5f:99:86:
16:d2:ad:5d:0f:9d:49:38:c0:d8:13:89:4a:09:3d:
ab:f5:c2:b4:5a:04:0b:32:2a:8b:2b:d2:15:01:2b:
a4:3f:3a:53:73:17:cf:f2:75:87:f5:04:48:5d:12:
9f:97:4f:e8:dd:2d:12:b1:9f:e3:0f:05:11:2f:b5:
57:ce:c5:e3:c9:b0:20:b2:a1:cc:a8:e4:ad:31:3c:
73:3e:d7:28:2c:0f:8a:3f:0c:8e:ac:a8:29:bc:f8:
58:6e:1e:1a:84:62:70:f3:48:d3:c9:47:ae:0e:65:
d2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:48:61:9C:19:B6:56:83:E8:1C:CC:59:9C:24:10:03:8A:9E:9B:30
X509v3 Authority Key Identifier:
keyid:FB:F4:3F:E9:FD:3A:F2:BC:F4:BA:7A:83:F1:11:E6:55:91:25:F3:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_Q_6f068rz0unqD8RHmVZEl8_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8c97fe-3f8c-4db4-ab93-752d81cdda40/1/VEhhnBm2VoPoHMxZnCQQA4qemzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8c97fe-3f8c-4db4-ab93-752d81cdda40/1/1-_Q_6f068rz0unqD8RHmVZEl8_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.150.0/24
IPv6:
2a12:fdc0::/29
Signature Algorithm: sha256WithRSAEncryption
28:1d:80:d0:e4:e5:42:01:99:68:1d:cb:36:f8:b2:cc:8c:55:
9f:59:78:2f:38:4f:fa:aa:ea:82:9a:4c:db:14:94:6c:a3:3a:
42:31:94:77:c9:fb:57:e0:90:35:4f:49:7a:cc:e7:30:d9:11:
4c:c6:5f:df:c9:2d:26:8c:df:37:fc:a8:99:d9:23:97:37:4c:
a0:b4:98:29:51:40:17:ba:e4:f5:19:be:9a:14:7d:37:20:9d:
18:f6:43:ee:19:50:24:04:36:59:90:9a:d1:2d:e4:44:f6:ed:
2a:06:dd:2f:14:6f:e4:af:ff:27:05:e1:84:14:ba:59:02:3b:
c7:d0:db:4f:56:4b:0c:f3:6f:5b:51:16:51:e6:f9:f4:ba:a6:
d9:7a:8e:47:80:e3:07:7f:98:e3:ef:9e:85:ac:c3:b0:99:f0:
12:eb:5e:47:a9:ba:e7:ab:7c:24:03:58:27:23:9c:76:cf:c3:
47:8a:28:1c:bd:4a:f8:46:26:ce:98:22:c3:b8:8c:63:0f:0b:
51:a2:cd:34:a7:0b:d7:c9:1e:29:58:47:a3:22:25:6f:f7:db:
42:b2:31:3b:e2:49:da:15:51:38:1c:cc:46:18:21:6a:68:81:
19:ed:92:5d:c3:41:2d:47:45:b5:20:c1:e9:65:81:f3:01:a1:
ca:ff:48:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:27 2024 by rpki-client on console-ams.rpki-client.org