Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/E2jgt2VWJEPYbtCgpstaHr3kkvM.roa
File: E2jgt2VWJEPYbtCgpstaHr3kkvM.roa (raw, json)
Hash identifier: tlZilhItmlm3+WvO90NuEpvNab1MMx3qIEPAN1oUex0=
Subject key identifier: 13:68:E0:B7:65:56:24:43:D8:6E:D0:A0:A6:CB:5A:1E:BD:E4:92:F3
Certificate issuer: /CN=fcaae514c5f9940391435614d79404bee1209b3b
Certificate serial: 01899716441DCCE71E8EE8DE5AE6F98C3080
Authority key identifier: FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/E2jgt2VWJEPYbtCgpstaHr3kkvM.roa
Signing time: Thu 27 Jul 2023 11:22:46 +0000
ROA not before: Thu 27 Jul 2023 11:22:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15372
IP address blocks: 176.111.245.0/24 maxlen: 24
2001:67c:12b8::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:97:16:44:1d:cc:e7:1e:8e:e8:de:5a:e6:f9:8c:30:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcaae514c5f9940391435614d79404bee1209b3b
Validity
Not Before: Jul 27 11:22:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1368e0b765562443d86ed0a0a6cb5a1ebde492f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:de:8d:58:69:4e:5e:f8:18:72:b7:8a:27:1e:
f0:f0:c8:b8:a7:1e:cc:b1:49:99:8b:ec:e1:0a:d1:
08:7d:eb:84:c1:7d:a5:cb:57:69:85:de:6f:88:ea:
90:b1:71:ff:d4:7c:96:ea:52:23:8b:34:ff:c4:0e:
2b:d6:ab:cc:85:ea:9b:61:4c:65:c0:98:8a:ce:8f:
49:3d:c6:5c:12:42:28:cb:47:bd:1e:b1:dd:24:42:
fe:c5:84:8b:14:1d:10:d5:63:73:2d:76:50:3d:32:
2f:bc:04:32:f9:4d:5d:c2:bc:28:2c:2a:f9:c6:c0:
41:31:ce:d0:8b:22:ab:b5:66:a3:0f:b0:e3:7a:cd:
a4:45:8f:cf:1e:55:7d:e0:af:30:64:21:68:ff:53:
46:1d:2b:29:44:58:0f:25:59:7a:c4:f6:3a:8f:56:
df:e8:84:29:0a:ce:46:19:7c:e0:c3:8e:8b:ff:56:
f8:68:58:05:00:77:be:8e:c3:6f:71:5b:ab:53:d4:
ad:be:f5:f5:c3:92:5f:ef:b5:7e:53:16:04:73:81:
20:19:6c:d0:75:3b:a3:09:5f:b6:5a:8c:62:58:11:
26:64:0b:4d:e7:b1:f4:0b:76:90:fa:36:6a:80:b7:
13:51:1f:5b:f6:ec:78:61:0f:3a:e0:69:b7:d3:57:
3a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:68:E0:B7:65:56:24:43:D8:6E:D0:A0:A6:CB:5A:1E:BD:E4:92:F3
X509v3 Authority Key Identifier:
keyid:FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/E2jgt2VWJEPYbtCgpstaHr3kkvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.111.245.0/24
IPv6:
2001:67c:12b8::/48
Signature Algorithm: sha256WithRSAEncryption
3d:2a:dc:74:3a:99:e8:6d:da:0e:14:35:27:75:a9:8d:cb:58:
9c:02:6f:ba:1d:94:16:52:f1:cc:a3:88:ed:bb:55:f2:9e:23:
e0:33:c8:14:a2:d8:7f:2b:42:dd:a1:a9:78:65:db:df:d4:9b:
12:16:52:da:5d:cb:30:df:5f:6b:15:c9:76:12:1a:1b:1f:88:
61:75:30:31:a2:8a:65:b3:74:c8:bb:e9:d2:8f:77:7c:37:15:
94:ec:3d:a9:ae:69:10:4a:5f:77:c8:60:9a:3a:fb:f1:6a:16:
52:cf:35:3d:ba:9e:fe:b7:58:87:23:68:cd:ed:46:03:c6:d8:
47:82:59:f3:32:89:ee:be:bb:c5:ab:a8:26:70:45:6d:6a:a4:
f7:50:7e:c2:64:87:1d:82:7c:ea:58:b1:be:52:96:92:45:02:
e5:36:94:92:b3:69:bf:bd:f5:60:d1:92:02:29:e5:fa:20:3a:
e5:f3:86:a0:1a:33:84:50:9e:de:20:b9:6c:6d:e6:9f:8f:e6:
6e:48:41:53:4a:7b:3b:86:ef:41:f2:0c:9b:27:97:df:76:5c:
5e:53:0c:04:b9:ef:45:b4:1e:b1:e4:31:83:69:ce:2d:a7:54:
1e:a3:3c:c0:43:60:f9:69:72:cc:20:7f:fc:99:23:6b:63:3d:
2d:f4:4e:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:57 2024 by rpki-client on console-fra.rpki-client.org