Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/x6exk3a7-2dnz0JiDsexdO9ABgc.roa
File: x6exk3a7-2dnz0JiDsexdO9ABgc.roa (raw, json)
Hash identifier: iWa4GERLlh55CW8R4LsC+IaMm2PorOHBA5B0oNLnerE=
Subject key identifier: C7:A7:B1:93:76:BB:FB:67:67:CF:42:62:0E:C7:B1:74:EF:40:06:07
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA86B162714EF7A589E41A01E327D0
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/x6exk3a7-2dnz0JiDsexdO9ABgc.roa
Signing time: Mon 02 Jan 2023 13:45:04 +0000
ROA not before: Mon 02 Jan 2023 13:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201592
IP address blocks: 213.189.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:86:b1:62:71:4e:f7:a5:89:e4:1a:01:e3:27:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7a7b19376bbfb6767cf42620ec7b174ef400607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cd:ed:7b:08:3b:60:c6:89:30:06:a7:8f:8f:
60:8d:88:f1:37:76:2f:66:d6:24:2b:e2:f9:81:b3:
c2:c4:ef:57:4a:5f:73:a6:a5:aa:59:1e:fc:f8:e4:
35:aa:ab:c6:c9:36:09:e6:f7:d4:86:1c:f9:38:08:
f0:36:cf:62:0d:f8:92:d2:00:2d:5c:8a:e4:94:95:
ac:46:0b:9b:fa:5a:60:b0:02:5c:47:d8:34:80:c0:
46:78:0b:f9:04:6f:f3:7c:14:10:8c:bc:72:74:c9:
26:50:92:7f:6d:60:6f:b1:f3:22:fe:0d:16:30:66:
3b:8e:f8:53:af:ba:e8:27:70:99:04:c9:c4:42:d5:
85:5b:57:1f:af:9a:13:9f:ad:14:b5:e2:80:68:17:
0a:5b:c0:54:d6:4c:57:03:c1:81:da:72:74:d2:59:
0f:20:54:99:a1:66:e4:64:f2:1c:8d:61:7b:d7:09:
e6:3b:10:f9:02:fe:ba:30:e0:92:10:32:cf:86:c7:
d7:df:a4:59:f6:5f:98:3f:84:67:5d:7b:71:dd:3e:
d2:db:f2:c3:0f:97:3a:fd:ec:49:34:e6:83:ed:49:
43:3b:fa:bb:5f:71:7a:b3:e8:c8:1a:6a:0f:97:6f:
5d:f8:14:39:62:62:10:7a:77:32:a3:c6:fd:a9:e0:
01:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:A7:B1:93:76:BB:FB:67:67:CF:42:62:0E:C7:B1:74:EF:40:06:07
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/x6exk3a7-2dnz0JiDsexdO9ABgc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.189.40.0/24
Signature Algorithm: sha256WithRSAEncryption
72:21:51:1c:d7:f3:3b:db:b7:39:58:62:ec:33:89:d8:9a:c8:
65:33:13:c5:36:fa:e7:fd:46:94:b6:72:b8:94:5e:b6:f0:0b:
36:75:ba:cc:18:97:b8:b8:9f:13:7e:a3:f9:58:76:10:39:59:
5c:92:7d:7f:a6:ae:1f:9f:df:92:81:3f:3d:b0:0d:27:90:19:
7b:dd:e1:5f:a4:9e:4c:56:79:a8:57:14:12:e5:32:ed:13:18:
e6:3f:a9:65:2e:31:fc:96:8b:eb:1c:3d:bb:ef:3b:21:27:ab:
5a:8c:9b:b7:2c:13:f3:18:b9:7f:a1:fe:56:0b:05:de:07:83:
73:a0:d8:00:be:23:a4:ae:4c:c0:1e:97:60:de:37:be:32:6f:
38:83:36:80:54:81:cd:78:d8:ca:3c:59:19:0c:2c:d6:cc:ec:
aa:57:82:78:c1:54:3c:dc:b3:35:db:6b:6d:73:e9:f3:8c:a6:
cf:4e:9a:13:49:5e:46:33:5f:71:f1:7d:46:d4:94:a0:dc:1b:
6f:70:9b:dc:17:e4:43:bf:74:7d:0b:89:1d:f1:fe:61:43:29:
39:f8:46:90:03:40:60:8b:8b:45:bf:1e:d6:4c:ce:78:e0:2a:
4e:84:63:a0:f0:62:31:df:cb:9d:f2:44:13:74:ea:1c:d1:94:
11:a9:a5:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org