Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/X3g_JwEk5jU0xsCUno-2dVuCsoE.roa
File: X3g_JwEk5jU0xsCUno-2dVuCsoE.roa (raw, json)
Hash identifier: oMPl/3feEuWaGPzWmJzX/mYrCyJHg+SvYv+M6BqOrFg=
Subject key identifier: 5F:78:3F:27:01:24:E6:35:34:C6:C0:94:9E:8F:B6:75:5B:82:B2:81
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE64FE3863E706DB13DF0CFD2D4C683
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/X3g_JwEk5jU0xsCUno-2dVuCsoE.roa
Signing time: Sun 01 Jan 2023 10:35:10 +0000
ROA not before: Sun 01 Jan 2023 10:35:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25407
IP address blocks: 213.91.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:4f:e3:86:3e:70:6d:b1:3d:f0:cf:d2:d4:c6:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f783f270124e63534c6c0949e8fb6755b82b281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:18:c7:7b:58:fd:1e:ab:b7:51:4a:f5:a7:5e:
34:95:d6:68:5e:80:20:60:0d:fb:09:c3:4d:f0:7a:
83:62:66:ce:4b:33:cb:a0:d6:4e:3b:60:ad:91:6a:
03:d6:1b:c3:09:ef:cb:30:29:1c:e5:c8:94:ce:ac:
59:e9:0b:04:27:45:a2:91:b4:f8:ef:41:bb:48:75:
4d:bb:0f:fb:ca:df:2c:fc:a4:88:f5:1d:08:38:61:
37:56:1b:18:0d:8f:02:c4:0a:aa:f0:d5:c8:ed:a1:
6c:ef:67:83:ef:34:df:3f:88:07:b9:0f:55:93:57:
84:0e:ad:f4:bd:07:ac:e9:45:29:f8:9e:fe:09:8c:
4f:58:f5:66:7b:d1:18:33:31:64:ce:f6:90:55:c9:
85:5e:ec:57:02:d6:98:f0:2d:67:7d:65:29:10:4c:
14:fd:c2:b8:71:c3:20:c4:58:e0:2c:d6:c5:1e:a1:
3a:7f:fe:1e:ae:21:2a:c5:42:a2:6d:d7:4b:42:c9:
f7:35:a2:c8:ce:bd:9f:14:b6:5b:3d:d6:d2:33:87:
3d:91:84:aa:03:9b:f1:40:83:73:0a:86:94:71:62:
be:1e:47:cd:90:5f:37:4b:a7:92:b8:f1:02:88:e0:
bf:56:0b:d2:d5:b0:1d:c5:ff:97:c6:10:ed:69:d7:
c5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:78:3F:27:01:24:E6:35:34:C6:C0:94:9E:8F:B6:75:5B:82:B2:81
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/X3g_JwEk5jU0xsCUno-2dVuCsoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.91.163.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:cc:02:24:6d:28:87:20:10:66:5c:bc:37:97:8c:b1:2e:e6:
17:65:a9:7b:78:d0:59:66:ca:20:99:e5:bd:92:fc:d2:64:f5:
4f:a8:99:40:5b:ed:2f:fd:bf:d2:29:d5:ae:f8:fb:87:e8:d9:
56:ad:7b:7b:b4:6c:09:ee:61:08:24:48:c7:d3:79:d5:58:61:
dc:2f:8f:ef:58:93:1b:05:7e:d3:ae:2e:6c:ff:64:67:20:91:
89:0a:42:a2:6e:c3:2d:05:9d:d6:b2:9c:2f:e0:22:de:cd:b7:
d4:5b:2c:a2:d1:8e:5e:29:21:9a:3b:15:33:c0:05:71:22:c5:
7f:f5:be:75:cf:8a:e6:05:99:89:d5:92:60:07:4e:3a:5c:31:
47:74:60:ab:1a:da:e6:e4:9a:e8:20:cb:01:58:37:3a:cc:a2:
bc:bf:fd:9c:08:c4:8d:1a:59:02:e9:97:16:e2:68:fb:5e:e0:
db:49:30:6d:85:6c:2c:fb:4c:07:e0:1b:a5:ba:61:0f:7f:34:
05:4e:8f:88:60:0e:84:3f:a6:80:7f:11:76:35:f4:26:c8:72:
73:91:50:ea:cd:80:e4:b8:88:6e:7e:d4:8f:41:99:e0:3b:75:
6d:3b:78:6b:a6:36:79:17:40:c2:49:2e:7e:a5:47:ec:ef:f1:
0f:f9:59:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org