Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/PnNiCZ6fnQlnJgusFLCDAhvnvkA.roa
File: PnNiCZ6fnQlnJgusFLCDAhvnvkA.roa (raw, json)
Hash identifier: +6kpQaLItPy68bXvWAUILH5I8ulvK9qCckj+zINmEjo=
Subject key identifier: 3E:73:62:09:9E:9F:9D:09:67:26:0B:AC:14:B0:83:02:1B:E7:BE:40
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 01915F1CB7904FC5EFC28759A5DA0384730C
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/PnNiCZ6fnQlnJgusFLCDAhvnvkA.roa
Signing time: Sat 17 Aug 2024 06:53:23 +0000
ROA not before: Sat 17 Aug 2024 06:53:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211421
IP address blocks: 213.176.121.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Sep 2024 07:03:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5f:1c:b7:90:4f:c5:ef:c2:87:59:a5:da:03:84:73:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Aug 17 06:53:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e7362099e9f9d0967260bac14b083021be7be40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e8:c5:66:c6:c1:ad:93:92:55:5c:e2:98:f7:
67:6c:c9:32:8b:b9:8d:96:e6:ad:1a:0d:5a:06:de:
d9:12:28:02:05:ed:5d:1d:0c:97:bd:dd:54:00:3c:
08:6a:bc:a8:5f:1b:88:03:b0:09:20:83:51:9b:38:
72:f5:6c:87:44:44:d9:57:96:5c:55:2f:6d:25:be:
b4:0c:ab:a4:c6:d5:a1:f6:10:54:72:7f:f1:88:6c:
eb:05:35:f4:20:04:94:0c:11:92:e9:45:7d:de:d9:
3c:1e:fd:d1:ea:95:9f:a0:2b:2c:82:02:bc:24:0d:
69:e4:a3:85:ea:86:50:bb:b7:15:f7:b8:1c:32:cd:
08:84:5d:10:d0:b6:de:ac:54:51:ec:17:8b:13:72:
59:af:47:dc:e5:43:e7:d4:e3:7f:76:0f:c2:63:48:
7c:c8:5e:ea:d3:94:2f:85:31:bb:56:e2:fc:71:e6:
8e:90:b9:d8:0d:08:2e:91:f8:3c:9f:db:8f:2b:e6:
dc:0b:84:65:d2:d1:90:49:c0:d9:b9:77:75:ed:5b:
f3:a9:70:c8:ab:22:49:2d:38:0b:67:19:dd:d4:e5:
eb:50:87:be:16:52:06:39:9a:a0:7f:ee:59:53:61:
a4:55:6a:65:be:20:b5:a3:d7:4f:c1:41:81:f0:58:
cc:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:73:62:09:9E:9F:9D:09:67:26:0B:AC:14:B0:83:02:1B:E7:BE:40
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/PnNiCZ6fnQlnJgusFLCDAhvnvkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.176.121.0/24
Signature Algorithm: sha256WithRSAEncryption
88:59:83:7f:9e:39:74:be:e8:f0:23:e4:79:ab:2b:8c:4c:0d:
d8:04:c4:65:d0:5d:3f:6b:ac:df:82:5d:45:ed:06:48:83:fb:
c8:de:ea:50:ac:38:7d:4d:61:e2:4f:6d:51:74:b7:3d:c2:5d:
bb:30:d5:18:b0:81:d5:47:19:ab:9b:27:9d:ba:fa:07:61:a7:
ec:6b:ef:c3:8d:ab:ca:11:33:8a:24:92:f2:5e:1b:12:bf:11:
cb:ff:1c:fc:0d:72:dc:77:11:9e:6c:40:02:64:a4:1d:7f:ea:
21:78:ee:53:73:f8:25:12:e7:87:88:1d:45:21:3f:92:f3:2e:
eb:ff:26:fb:4d:04:84:15:a7:49:9a:0f:c4:05:67:c1:29:0c:
06:77:5e:46:86:4d:d0:7d:45:50:49:c3:30:6c:36:fd:92:83:
85:04:30:b3:13:67:ea:e2:ac:11:4c:32:71:b6:0b:1c:e4:55:
10:2e:b1:ba:f1:5b:bf:df:93:fc:4b:55:f9:a5:9c:c3:f6:a8:
1d:57:2d:f7:12:b2:fb:70:ac:a0:d4:03:ea:3f:3f:34:9f:44:
18:87:b7:71:d1:2d:01:5f:14:27:08:47:98:c0:8c:b0:b2:1b:
d5:71:6f:d1:c6:ad:92:fd:a9:9c:06:e4:ea:d1:7f:63:df:44:
22:58:e9:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 25 08:13:21 2024 by rpki-client on console-fra.rpki-client.org