Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/AbJVusqRQUgDm5Wq5lOpfQAfCiw.roa
File: AbJVusqRQUgDm5Wq5lOpfQAfCiw.roa (raw, json)
Hash identifier: T0GCbz57YVJJAueJPq1foPxXCuEPADCuETFwS3Ijfqg=
Subject key identifier: 01:B2:55:BA:CA:91:41:48:03:9B:95:AA:E6:53:A9:7D:00:1F:0A:2C
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018DCBC4CBB2DB935944DC30DAB56C4B97F8
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/AbJVusqRQUgDm5Wq5lOpfQAfCiw.roa
Signing time: Wed 21 Feb 2024 13:04:48 +0000
ROA not before: Wed 21 Feb 2024 13:04:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44090
IP address blocks: 213.176.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 17:52:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cb:c4:cb:b2:db:93:59:44:dc:30:da:b5:6c:4b:97:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Feb 21 13:04:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01b255baca914148039b95aae653a97d001f0a2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:8a:c5:10:4c:29:9a:29:9b:7f:8a:15:36:5a:
1e:7c:70:0b:45:97:0d:cf:f0:8f:7d:a9:23:3a:27:
bc:e2:b9:9b:af:d9:3c:15:ed:ef:ef:a0:ff:c2:18:
9b:99:ec:5b:3e:a3:7c:ca:c7:9a:c2:2b:48:a9:01:
21:f7:f1:ca:13:39:d6:c0:a8:10:7e:37:1e:b3:5f:
02:86:b3:fc:f6:27:f4:35:db:cb:70:05:75:b2:04:
5b:39:ea:04:74:8e:a1:62:6b:da:3b:35:1e:78:d8:
f1:04:5d:e2:97:76:0a:b0:e6:7a:88:95:b8:10:5e:
bc:60:67:51:c4:be:bd:95:ae:63:44:b9:4e:cc:92:
94:0b:dc:8c:df:ac:36:86:a7:44:16:f8:e3:17:c0:
bc:c9:a7:52:8e:7d:a8:92:e6:f4:e2:d2:f0:20:5d:
9f:8d:cc:77:ff:23:84:c2:ea:d6:4b:41:a7:f3:c2:
81:b9:5e:da:60:7c:f5:ef:93:79:56:66:c1:98:71:
f8:ad:dd:97:65:c2:5f:77:84:51:c9:bb:38:11:5d:
2e:53:e2:43:1c:6b:a3:af:55:fd:0f:32:f0:4c:ad:
21:53:8e:d1:c8:3e:2c:f5:eb:5c:19:b2:39:85:b2:
ca:28:cd:68:45:17:9c:92:22:6b:bf:5f:8e:99:2b:
50:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:B2:55:BA:CA:91:41:48:03:9B:95:AA:E6:53:A9:7D:00:1F:0A:2C
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/AbJVusqRQUgDm5Wq5lOpfQAfCiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.176.2.0/24
Signature Algorithm: sha256WithRSAEncryption
15:01:9d:28:b4:40:1b:61:65:33:44:49:8f:67:7c:2a:cf:d4:
91:2d:6f:0f:1b:f8:56:5b:bd:3a:6a:a3:cd:c0:eb:dd:2e:8f:
f1:11:02:a6:f7:76:b6:e9:1f:b2:9e:ad:9b:aa:b1:e1:a8:69:
18:c0:2c:85:c6:ee:41:5b:6c:88:ef:52:88:af:88:5b:34:af:
95:ce:ed:d5:90:a8:f1:e9:0f:5a:fa:c4:72:62:f8:4c:85:cb:
da:ab:2c:25:11:d6:34:50:cc:37:19:9e:a3:cc:b4:c8:a0:8c:
ee:99:af:19:21:03:0b:00:08:b0:e3:37:ea:57:12:c6:0d:06:
ae:e7:87:0c:38:3f:0b:a3:62:31:39:c2:ae:22:97:fb:72:ba:
92:81:e3:37:6b:24:a4:b2:d7:fe:de:59:a3:dd:a9:25:5f:3e:
21:d4:51:02:0e:52:4f:b9:82:87:99:6b:95:67:f3:6c:f1:46:
ca:57:57:49:b6:7e:44:a9:b8:02:c3:c8:49:ee:ae:f1:0c:95:
7d:dc:cd:a3:8a:0a:46:5d:04:ff:ff:84:18:ce:ca:97:08:f7:
58:e4:d2:e9:c1:88:67:43:af:92:c6:60:d7:12:36:73:bf:ea:
85:68:ed:2c:bb:98:de:ff:ec:fd:1c:80:34:b1:97:26:cd:9b:
99:e9:a3:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org