Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/E6KeTzTNRWY0HbYfG3DlRBBE1hE.roa
File: E6KeTzTNRWY0HbYfG3DlRBBE1hE.roa (raw, json)
Hash identifier: SBzT3jC3U1YckT9+olYcLtkydJbN5tR4uFlA2kGj/sM=
Subject key identifier: 13:A2:9E:4F:34:CD:45:66:34:1D:B6:1F:1B:70:E5:44:10:44:D6:11
Certificate issuer: /CN=622ecc6cc5903aea0db61200f4ccd4f824cdd54f
Certificate serial: 018AB2EAF58A1EE8B027E14370ADB37040CB
Authority key identifier: 62:2E:CC:6C:C5:90:3A:EA:0D:B6:12:00:F4:CC:D4:F8:24:CD:D5:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/E6KeTzTNRWY0HbYfG3DlRBBE1hE.roa
Signing time: Wed 20 Sep 2023 14:07:37 +0000
ROA not before: Wed 20 Sep 2023 14:07:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43519
IP address blocks: 213.248.254.0/24 maxlen: 24
2a01:618:401::/48 maxlen: 48
2a01:618:404::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 21 Sep 2023 07:31:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b2:ea:f5:8a:1e:e8:b0:27:e1:43:70:ad:b3:70:40:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=622ecc6cc5903aea0db61200f4ccd4f824cdd54f
Validity
Not Before: Sep 20 14:07:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13a29e4f34cd4566341db61f1b70e5441044d611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:56:24:0a:4f:45:3a:a2:91:aa:9f:ce:5f:cd:
c3:ca:e1:41:b0:fa:1e:a5:54:ad:e9:6b:77:66:3a:
7c:ef:09:14:91:ec:60:fc:3d:37:d1:e0:ef:cb:78:
8c:ec:c7:89:84:d0:03:14:e9:36:69:7a:c7:ff:ec:
84:be:07:75:4c:ae:d5:30:5a:c7:3d:d4:a3:0d:d0:
f7:f3:4d:26:7a:9c:20:b3:9e:5e:a7:fc:23:78:3a:
f4:8c:3e:d7:d2:5b:cf:0d:d1:d4:ef:a6:e0:59:b9:
9e:72:3c:1f:bc:dc:25:cd:07:58:02:43:a5:9d:29:
82:4a:0a:e1:ba:70:52:0b:47:06:7f:53:bc:7c:49:
57:e8:2f:e9:34:d5:57:3b:61:52:3d:17:60:10:be:
ad:f6:d2:88:be:d9:66:37:da:57:95:41:ff:e1:1c:
5e:c7:a5:17:7c:28:54:d4:ae:8e:ba:fa:97:0a:57:
83:69:b1:27:df:f9:2e:dc:7f:2b:ac:f9:99:f2:41:
ad:af:13:77:61:fc:f9:bd:42:79:ad:21:df:2e:ea:
ee:ca:88:23:59:0b:33:cc:68:47:a3:6e:4b:6b:1d:
6b:7f:04:64:de:0d:f8:9c:00:6c:2c:fe:1e:1d:2e:
b3:04:9c:bd:31:0b:51:e9:8d:97:c0:44:70:ad:4d:
77:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:A2:9E:4F:34:CD:45:66:34:1D:B6:1F:1B:70:E5:44:10:44:D6:11
X509v3 Authority Key Identifier:
keyid:62:2E:CC:6C:C5:90:3A:EA:0D:B6:12:00:F4:CC:D4:F8:24:CD:D5:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/E6KeTzTNRWY0HbYfG3DlRBBE1hE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.248.254.0/24
IPv6:
2a01:618:401::/48
2a01:618:404::/48
Signature Algorithm: sha256WithRSAEncryption
1d:85:04:f2:e6:a4:8f:e4:23:35:c1:9a:50:f9:b1:68:97:82:
20:9e:0c:6e:cb:73:ae:9c:a1:55:77:67:49:97:46:c6:10:ce:
61:05:cd:b1:50:10:97:97:0a:55:ba:2f:1b:44:a0:36:07:fa:
c0:ad:de:28:dc:e7:93:31:89:13:be:89:c8:98:18:51:5f:5b:
77:e0:12:ed:71:bc:89:12:bd:55:64:d2:80:1b:61:d2:01:1f:
62:45:67:72:53:01:01:41:6e:5a:4c:d9:e1:9b:a3:1a:bc:23:
8c:49:bb:ce:07:1e:b4:c5:cc:5e:8c:85:af:65:31:fa:df:fe:
89:5f:e0:0e:a7:ca:12:89:a3:46:d7:78:59:30:9e:1f:02:12:
d8:4a:d3:67:27:ba:4b:63:c8:65:dd:b0:2b:57:80:89:5a:93:
21:8d:ae:80:54:20:1a:ae:8c:c4:60:b5:9b:30:9e:e8:4c:ad:
16:12:8a:b4:4c:60:7f:a4:ab:e8:7e:e7:22:5a:a6:32:4c:fc:
1c:ec:d7:5a:cd:98:a9:08:2e:db:28:a2:37:1e:d1:aa:93:b9:
1c:8a:33:7c:08:05:d0:33:7c:01:7b:65:3d:c3:f5:a4:1e:f8:
84:53:38:c7:36:c2:ff:94:cf:91:e3:b2:3f:7a:17:b7:3f:55:
73:45:bd:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:56 2024 by rpki-client on console-fra.rpki-client.org