Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/rlLsSUrHsAxB9AXXv-B_4svQ4ZA.roa
File: rlLsSUrHsAxB9AXXv-B_4svQ4ZA.roa (raw, json)
Hash identifier: XsGHQSizZ6oMqTC9XbZw20pEPtxM5bw2VWGoa1mPLdo=
Subject key identifier: AE:52:EC:49:4A:C7:B0:0C:41:F4:05:D7:BF:E0:7F:E2:CB:D0:E1:90
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE654F522B0F144E70933AC53C86A48
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/rlLsSUrHsAxB9AXXv-B_4svQ4ZA.roa
Signing time: Sun 01 Jan 2023 10:35:12 +0000
ROA not before: Sun 01 Jan 2023 10:35:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34653
IP address blocks: 213.91.198.0/24 maxlen: 24
37.157.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:54:f5:22:b0:f1:44:e7:09:33:ac:53:c8:6a:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae52ec494ac7b00c41f405d7bfe07fe2cbd0e190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f8:2d:1e:02:6a:eb:5c:6d:be:8d:24:c3:0f:
1e:dd:ce:a9:1f:e0:52:b3:ad:f0:6c:72:00:4b:95:
ca:28:8a:b1:80:cf:8e:a9:04:97:4b:5c:07:ef:fc:
bf:e2:8f:2b:69:41:de:bc:9e:63:d8:fb:31:03:f6:
74:7c:97:6e:2f:ee:9f:94:4d:6f:8a:df:73:8f:2e:
52:1f:f0:5c:6a:29:6d:9e:95:19:2c:1e:76:9f:56:
5a:db:08:fe:af:e9:6d:da:66:02:1b:07:a8:4b:a0:
c3:1e:53:ef:eb:18:bc:3c:1d:0c:39:d0:74:78:9c:
37:5f:d9:55:cf:4c:d3:bb:22:3d:b3:2a:ea:b4:f0:
ad:e8:c2:9e:68:6a:d4:94:79:da:90:ec:c6:e1:7f:
68:dc:a6:82:ce:45:2f:f5:02:d6:b2:e0:84:e7:3b:
7f:ca:76:6f:03:0c:e9:b9:14:36:b7:9b:61:c0:b9:
ba:ab:7f:e0:fa:e6:66:1b:e3:c2:67:e4:93:4b:94:
4c:17:c9:9f:3b:34:fc:94:58:a3:6c:b7:f3:38:93:
01:0b:7f:51:88:31:80:ba:89:06:8a:c0:8c:03:cc:
30:2c:eb:11:d4:7b:b9:35:a1:e5:75:8f:4f:4c:ee:
56:ae:77:00:f4:21:97:e6:1f:de:9d:19:52:48:3f:
a9:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:52:EC:49:4A:C7:B0:0C:41:F4:05:D7:BF:E0:7F:E2:CB:D0:E1:90
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/rlLsSUrHsAxB9AXXv-B_4svQ4ZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.157.160.0/24
213.91.198.0/24
Signature Algorithm: sha256WithRSAEncryption
01:a3:07:30:d3:bc:f6:d3:c0:18:b7:a7:13:a4:0f:eb:91:ea:
1f:8b:51:a1:1f:92:26:06:b5:ac:7c:af:2f:bc:20:ff:49:4a:
2b:00:a8:e2:c1:30:81:cd:2d:f1:44:17:ca:df:38:fa:6d:87:
2a:96:15:15:71:8a:d3:e4:73:f5:19:fb:9d:ff:07:92:fc:59:
70:27:1e:ae:79:d7:86:59:ca:7d:31:e9:eb:87:9e:0a:ae:10:
44:04:21:07:be:93:e7:84:a0:09:41:be:af:1f:b2:62:f4:65:
7e:ee:76:bd:e7:6e:9a:08:8a:05:9c:86:3c:96:93:37:38:58:
0a:a2:6f:6d:c1:7c:00:73:ce:6f:83:b5:f4:d7:7c:6f:a2:86:
7b:6d:f6:bb:49:c3:1e:b2:48:43:7f:80:5a:b2:6d:af:af:90:
6e:5a:6b:7b:77:46:a4:56:28:4e:92:70:92:a8:24:62:da:67:
6f:4f:22:6d:b0:66:58:50:d7:73:ac:89:3e:29:49:80:a4:9f:
a5:4e:d0:f6:ec:38:00:a2:a5:8c:a0:3b:d8:70:33:96:2a:45:
9c:fd:80:5c:1c:a8:f2:b9:a2:a4:ff:ea:94:5b:c2:2b:56:b7:
de:af:91:db:8a:c7:77:ed:be:2d:4d:ed:d6:4a:77:6d:01:fc:
1b:be:b3:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:54 2024 by rpki-client on console-ams.rpki-client.org