Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/govN2h6fYs-dwmTzg04dhQ1-9hU.roa
File: govN2h6fYs-dwmTzg04dhQ1-9hU.roa (raw, json)
Hash identifier: S0iSRUYtDvRl0llWu4joGR+xzA4IiPerrJYyu4HLNhM=
Subject key identifier: 82:8B:CD:DA:1E:9F:62:CF:9D:C2:64:F3:83:4E:1D:85:0D:7E:F6:15
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 018E79D80920A66833F40789DE2EC05605A1
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/govN2h6fYs-dwmTzg04dhQ1-9hU.roa
Signing time: Tue 26 Mar 2024 08:19:45 +0000
ROA not before: Tue 26 Mar 2024 08:19:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212533
IP address blocks: 213.130.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 14:20:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:79:d8:09:20:a6:68:33:f4:07:89:de:2e:c0:56:05:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Mar 26 08:19:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=828bcdda1e9f62cf9dc264f3834e1d850d7ef615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:2a:5d:9a:80:de:9d:3c:0b:52:c7:83:13:fc:
4c:60:20:6e:34:14:83:20:5e:18:d3:65:45:fc:bd:
fa:fa:27:a2:48:ef:d8:44:4d:af:37:3e:b2:00:81:
06:57:f9:5a:cc:56:02:5f:a2:38:32:ec:02:c4:5d:
f6:91:79:3d:c2:65:f0:c4:5f:05:30:b9:77:28:12:
a5:07:ba:90:0d:0d:76:eb:39:16:7a:b7:3b:a7:c4:
9b:53:42:83:7d:de:02:56:2f:72:3a:34:85:85:ff:
7d:e4:ad:42:19:db:36:3c:d7:f7:ad:5f:51:38:87:
97:7e:a6:d7:1d:8e:3a:04:b8:b6:3b:10:7a:60:5f:
e6:bf:4f:b4:4c:8f:c4:4d:f9:e8:f9:6e:35:12:e3:
5e:5c:aa:36:e2:47:25:cf:d1:d6:63:e3:8c:f8:46:
a5:28:23:8e:dc:0d:46:fd:bd:06:e8:ad:4c:77:ed:
a0:a7:92:c9:12:29:4d:43:7f:be:a6:79:44:f0:d0:
16:e3:bb:99:09:e2:90:14:03:47:dc:c8:61:86:e5:
31:73:fe:44:82:ba:17:b6:62:a9:2a:55:05:ae:8f:
55:9b:02:5f:51:43:11:9d:d2:55:0a:cb:73:64:d3:
44:fa:29:8f:e1:ac:0d:73:ff:8b:61:8b:b4:8c:b5:
20:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:8B:CD:DA:1E:9F:62:CF:9D:C2:64:F3:83:4E:1D:85:0D:7E:F6:15
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/govN2h6fYs-dwmTzg04dhQ1-9hU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.130.95.0/24
Signature Algorithm: sha256WithRSAEncryption
93:15:93:f8:1e:8c:a0:7b:f7:67:a7:65:84:7d:fc:be:b6:4f:
2c:ad:e6:f3:b9:df:e7:54:a1:b0:3a:87:3a:55:04:60:11:14:
8a:9c:98:43:0b:62:23:0c:f3:cf:36:f8:a6:0a:71:45:58:e9:
c7:0a:e5:9f:91:7d:4d:19:d9:a0:df:fb:b6:90:70:48:ca:e2:
d2:d0:cd:a0:d1:df:ed:33:ed:59:9f:7f:10:95:13:87:3e:01:
42:34:f6:ce:e5:5d:08:57:0c:76:c3:f4:e7:e1:c3:59:58:a2:
21:ad:0e:e8:0c:14:fb:51:2c:a9:cb:1c:dd:52:5d:c9:42:fb:
08:8c:e1:1a:e4:bc:2e:9a:77:4f:c3:e2:b7:2d:24:a6:e5:10:
b1:20:da:e8:6a:b6:37:4c:c5:ba:7b:76:11:fe:98:35:d0:73:
1f:ac:a0:b5:0f:77:63:9a:1b:57:48:21:ca:bb:70:d3:d4:d4:
5f:c7:6f:58:a0:92:ce:67:ef:ee:97:c9:dc:50:cc:d5:cc:49:
30:32:96:7b:60:3c:b3:c3:9c:79:28:86:59:53:c8:63:36:43:
bd:6c:55:0b:57:83:12:5a:10:2d:0d:5b:6d:01:f1:9e:c4:32:
2f:00:7d:92:80:f4:15:cd:da:eb:49:41:f2:0b:f3:78:f4:d2:
10:5a:0d:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org