Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/7pbmuREKXjXvbZhSUDXWqdrMSKI.roa
File: 7pbmuREKXjXvbZhSUDXWqdrMSKI.roa (raw, json)
Hash identifier: 4JXIoOOc3dMWs6hcqcQ/8A5tXXiOX6m40lDNHFOlW98=
Subject key identifier: EE:96:E6:B9:11:0A:5E:35:EF:6D:98:52:50:35:D6:A9:DA:CC:48:A2
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE670E9F93261E199C7214D7EC2CFFE
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/7pbmuREKXjXvbZhSUDXWqdrMSKI.roa
Signing time: Sun 01 Jan 2023 10:35:19 +0000
ROA not before: Sun 01 Jan 2023 10:35:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206180
IP address blocks: 213.16.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:70:e9:f9:32:61:e1:99:c7:21:4d:7e:c2:cf:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee96e6b9110a5e35ef6d98525035d6a9dacc48a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:2d:6e:a5:34:54:e2:b0:ef:e0:8c:3f:34:76:
b5:04:20:a4:30:e7:cf:2f:93:10:8c:10:f8:49:48:
27:fd:9c:42:ad:d3:d7:71:9a:c4:bc:b2:22:43:9a:
48:ce:80:b3:3e:cf:49:49:b1:c9:9b:ce:e0:46:f0:
31:ab:4f:4d:78:5a:db:46:ef:84:da:13:2c:77:7b:
d3:62:ca:4d:68:68:ec:7f:15:9b:a6:d1:e4:b8:84:
f3:16:5e:5e:a0:4c:73:c4:89:59:aa:63:a1:96:39:
90:95:16:cc:ae:1a:23:6f:89:fb:39:39:de:52:15:
11:52:98:40:af:b1:c6:9d:85:31:d3:47:6a:2e:c9:
1b:11:9e:de:f3:d7:62:e4:b5:e2:27:be:f7:1e:25:
ea:e5:d2:72:70:5f:08:f6:54:8f:99:75:7f:48:1f:
59:a0:72:e3:c4:2a:6c:10:e8:a1:32:8f:8e:09:29:
42:e9:bb:2f:60:70:f6:b2:e6:ed:cc:87:44:33:9e:
f1:e3:bb:d8:40:8a:5d:e3:d9:ee:47:fd:30:6b:98:
55:34:88:dc:b4:44:2a:85:8c:92:85:09:7f:74:0f:
11:01:7f:fe:11:5f:40:60:44:86:42:8e:2c:b7:d4:
b0:9f:5b:f4:5d:a4:ad:90:41:61:b7:fb:99:1f:bd:
f6:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:96:E6:B9:11:0A:5E:35:EF:6D:98:52:50:35:D6:A9:DA:CC:48:A2
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/7pbmuREKXjXvbZhSUDXWqdrMSKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.16.38.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:f2:9c:47:55:12:ea:62:fe:c3:cb:13:84:49:97:18:97:e0:
d2:30:40:2f:47:93:5e:de:9e:15:39:21:26:5d:ed:0b:71:60:
dd:47:fc:c5:c1:65:c6:5b:d7:e4:00:8f:be:0f:3c:48:a6:68:
e7:9a:a8:13:e6:86:98:8b:f5:30:91:7d:21:00:70:95:60:fe:
77:1b:b1:a2:35:76:9d:88:fb:40:9b:ca:81:a5:f2:b9:2b:3e:
d0:5c:56:60:c9:26:e8:69:c6:6b:eb:3e:7a:4b:61:f4:10:dd:
81:e7:22:9f:40:4d:82:12:96:8c:87:8f:77:ed:36:da:d8:cf:
6c:81:b4:18:a3:f9:2b:f1:fb:69:e3:26:f4:d6:af:16:1c:cc:
71:02:4d:02:be:04:b7:4d:c9:35:e7:a1:f3:be:17:12:af:3f:
e9:30:51:6a:f5:58:68:5d:31:e3:01:7d:d5:d2:44:c7:95:95:
25:2d:92:46:e1:00:b3:f5:fd:85:d6:90:e6:45:12:26:cb:47:
1d:c3:ff:2a:18:55:7f:9c:30:e6:4c:da:bc:6c:45:47:2e:e7:
81:bb:41:ce:21:51:13:cd:d7:d3:6b:84:c1:49:28:c9:d4:d3:
d3:c3:69:69:1f:15:2d:db:50:92:2e:a9:9a:9a:1c:bc:d2:cc:
ce:f4:ee:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:53 2024 by rpki-client on console-ams.rpki-client.org