Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/mD-WqkSYOyTtU0Vu2ukY40Opo4g.roa
File: mD-WqkSYOyTtU0Vu2ukY40Opo4g.roa (raw, json)
Hash identifier: a9/TqXttW1W/j2iML6o3r8ndbRC36Ui3cKukRUsAMnQ=
Subject key identifier: 98:3F:96:AA:44:98:3B:24:ED:53:45:6E:DA:E9:18:E3:43:A9:A3:88
Certificate issuer: /CN=622ecc6cc5903aea0db61200f4ccd4f824cdd54f
Certificate serial: 018AB6A6C5B171A30CCDD351C7DC1481C6FF
Authority key identifier: 62:2E:CC:6C:C5:90:3A:EA:0D:B6:12:00:F4:CC:D4:F8:24:CD:D5:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/mD-WqkSYOyTtU0Vu2ukY40Opo4g.roa
Signing time: Thu 21 Sep 2023 07:31:37 +0000
ROA not before: Thu 21 Sep 2023 07:31:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137502
IP address blocks: 213.248.254.0/24 maxlen: 24
213.248.255.0/24 maxlen: 24
2a01:618:400::/48 maxlen: 48
2a01:618:401::/48 maxlen: 48
2a01:618:404::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 21 Sep 2023 08:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b6:a6:c5:b1:71:a3:0c:cd:d3:51:c7:dc:14:81:c6:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=622ecc6cc5903aea0db61200f4ccd4f824cdd54f
Validity
Not Before: Sep 21 07:31:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=983f96aa44983b24ed53456edae918e343a9a388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:09:96:79:98:5c:51:5e:dc:0a:16:7c:a4:d0:
0a:c9:45:97:37:bf:89:75:38:49:1b:d0:bb:8e:d5:
65:33:f1:5c:33:13:4e:3a:2c:bc:60:8c:38:6a:ac:
97:5e:88:f0:51:c5:1d:2d:7f:ec:66:cf:6c:9a:7b:
24:34:f6:29:60:59:5c:4d:e9:7b:a6:39:df:08:4b:
7f:77:81:16:3d:1d:0b:fa:0e:b8:b5:bf:3b:57:cd:
bf:ac:7b:f8:85:50:49:3c:fb:45:fc:64:3c:37:e0:
1d:8f:12:31:ad:99:8d:07:f3:69:ed:8f:0e:76:78:
ec:2e:d4:bb:24:1d:45:b8:5c:63:08:90:e7:91:f7:
ef:2a:04:37:ee:b2:91:74:d2:9e:2d:37:09:69:af:
eb:18:ce:22:a7:eb:d8:7f:52:95:29:6b:b1:6a:cd:
83:0e:d3:41:58:84:40:7b:23:3a:ad:5a:cd:ad:56:
89:82:b4:06:b6:34:86:7a:c8:b2:0c:e2:de:bb:2d:
ca:b8:8d:eb:e6:ca:ac:92:85:99:8c:f8:a3:b1:b7:
99:a6:c7:d0:53:11:8d:58:6b:26:25:2c:7d:17:25:
32:80:40:87:e4:5a:98:43:3f:32:28:71:dd:8f:82:
21:2d:16:e2:4e:5b:bc:1a:4f:f3:c7:24:47:e7:c8:
83:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:3F:96:AA:44:98:3B:24:ED:53:45:6E:DA:E9:18:E3:43:A9:A3:88
X509v3 Authority Key Identifier:
keyid:62:2E:CC:6C:C5:90:3A:EA:0D:B6:12:00:F4:CC:D4:F8:24:CD:D5:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/mD-WqkSYOyTtU0Vu2ukY40Opo4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.248.254.0/23
IPv6:
2a01:618:400::/47
2a01:618:404::/48
Signature Algorithm: sha256WithRSAEncryption
14:1d:12:07:0b:cc:a7:b3:fe:25:9a:68:7e:35:4d:90:33:f4:
84:c0:1b:72:67:d7:08:9f:87:cd:f2:0b:62:ea:b0:f3:e0:4b:
24:7a:1d:54:8a:eb:59:a7:22:1d:1d:2e:da:18:a8:10:67:3a:
5e:4c:c8:06:59:7b:95:a3:62:48:cc:c5:5d:e7:26:b3:17:04:
d3:f8:d1:e9:28:68:ae:4b:2c:52:9a:19:2a:ef:ff:f5:99:76:
d5:91:f8:c6:7f:59:f4:92:9c:f7:93:48:dc:17:2a:52:13:63:
d6:8b:bf:53:f5:85:58:9e:e1:76:b9:1a:f1:c4:2f:f3:11:18:
a0:60:d3:f8:ef:c9:ac:a8:a8:e8:a2:bb:0b:47:f9:90:f6:b3:
71:8a:c8:db:8b:fe:2d:17:b3:37:c2:e4:e8:67:a2:4a:38:fd:
b8:29:81:ad:3e:e4:25:85:19:cb:36:6d:06:67:35:5b:92:c8:
7a:f1:c9:96:15:c6:ea:ff:bf:ec:4e:35:16:4f:08:81:24:32:
71:0d:7c:95:c2:f8:1d:83:80:68:ef:10:91:4b:a7:46:52:d0:
7d:b9:06:e8:b9:62:e7:54:39:67:c3:00:91:b4:ff:05:30:19:
3a:3c:16:01:9f:a2:f5:68:f6:8d:a4:cd:02:83:69:b6:56:38:
dd:79:cd:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:02 2024 by rpki-client on console-ams.rpki-client.org