Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/360fdd-76ae-41f1-98c0-2b275043719f/1/Ai7aju-FGz4hna1oaTVECAvJX0I.roa
File: Ai7aju-FGz4hna1oaTVECAvJX0I.roa (raw, json)
Hash identifier: Dt6bzaXx7Iahb8+8x2bx2Y8jn2J012gvE0JcuH33ISc=
Subject key identifier: 02:2E:DA:8E:EF:85:1B:3E:21:9D:AD:68:69:35:44:08:0B:C9:5F:42
Certificate issuer: /CN=cc5911433ba206f450ac9bd065c86c96608401c1
Certificate serial: 018CC5013BF4D3502D16E012089121FD674F
Authority key identifier: CC:59:11:43:3B:A2:06:F4:50:AC:9B:D0:65:C8:6C:96:60:84:01:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zFkRQzuiBvRQrJvQZchslmCEAcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/360fdd-76ae-41f1-98c0-2b275043719f/1/Ai7aju-FGz4hna1oaTVECAvJX0I.roa
Signing time: Mon 01 Jan 2024 12:30:41 +0000
ROA not before: Mon 01 Jan 2024 12:30:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13002
IP address blocks: 213.159.96.0/19 maxlen: 19
213.159.113.0/24 maxlen: 24
213.159.118.0/24 maxlen: 24
213.159.119.0/24 maxlen: 24
213.159.124.0/24 maxlen: 24
213.159.125.0/24 maxlen: 24
213.159.122.0/24 maxlen: 24
213.159.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 13 Oct 2024 09:38:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:3b:f4:d3:50:2d:16:e0:12:08:91:21:fd:67:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc5911433ba206f450ac9bd065c86c96608401c1
Validity
Not Before: Jan 1 12:30:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=022eda8eef851b3e219dad68693544080bc95f42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5e:9c:4f:9e:c7:2b:4b:8b:e4:1d:d2:53:4f:
f2:a6:1f:a4:d1:47:60:f8:5b:9f:fa:42:18:c1:77:
16:53:93:fe:f2:a4:83:84:39:42:9b:c1:f5:a6:e6:
b6:3c:db:c4:01:4e:7d:af:51:9f:a9:ba:54:69:b3:
bb:40:6e:52:4a:00:bd:93:81:f0:3e:03:17:08:e6:
2e:27:38:d4:66:6b:1d:94:eb:40:32:e6:ee:bc:cd:
50:7a:65:08:2d:dc:78:e1:12:19:ce:29:8b:ec:fb:
c5:49:04:36:6e:27:e5:a8:12:74:db:ce:7c:96:ec:
ef:39:b7:fe:1c:8f:a5:d7:0e:60:b3:5b:38:53:90:
d7:b6:f0:5d:7f:66:a6:3a:86:f0:5b:0c:10:c6:d0:
b7:e2:56:1a:da:ae:cf:80:72:1e:1b:41:c6:0a:fa:
05:91:b9:7d:51:c9:de:75:9a:ec:4d:a5:32:11:77:
ae:ff:92:25:9b:f9:0c:62:ac:44:b5:f4:af:59:d4:
7d:56:e1:67:c2:3c:fa:f3:c4:7c:a8:cd:34:52:da:
d9:e9:b7:21:08:10:f7:a7:a1:19:77:d4:bd:d3:02:
cf:ec:da:c0:d6:b8:3b:c3:55:eb:3c:38:c7:38:ea:
bf:b4:fc:1d:ea:b6:9d:99:04:9e:6e:fc:c1:7c:43:
53:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:2E:DA:8E:EF:85:1B:3E:21:9D:AD:68:69:35:44:08:0B:C9:5F:42
X509v3 Authority Key Identifier:
keyid:CC:59:11:43:3B:A2:06:F4:50:AC:9B:D0:65:C8:6C:96:60:84:01:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zFkRQzuiBvRQrJvQZchslmCEAcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/360fdd-76ae-41f1-98c0-2b275043719f/1/Ai7aju-FGz4hna1oaTVECAvJX0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/360fdd-76ae-41f1-98c0-2b275043719f/1/zFkRQzuiBvRQrJvQZchslmCEAcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.159.96.0/19
Signature Algorithm: sha256WithRSAEncryption
56:81:9e:3d:d6:bf:04:43:7a:05:c8:2a:88:6e:a4:46:c7:7f:
20:fe:ef:d3:74:29:e7:44:52:4d:0e:d8:cd:7a:14:1c:52:99:
30:ee:38:fe:86:2b:17:3a:2e:b0:fc:70:66:03:d8:29:dc:dc:
f1:6c:e6:7a:db:71:a3:99:c3:de:99:49:7a:2e:88:04:ce:67:
73:97:b2:c5:cf:e1:c0:c3:fa:b1:73:77:d6:0c:28:86:b5:b5:
22:c0:c4:95:95:17:63:4c:ac:81:ea:06:50:e9:8d:b0:90:8f:
3b:59:bc:d4:c2:8e:3d:57:9a:df:d8:52:fa:b6:4d:05:e2:b5:
b4:88:16:83:d2:d6:0e:7c:72:97:68:95:c0:70:1c:51:d8:48:
5d:a3:95:79:f6:58:c4:a6:46:db:3c:57:49:4d:d0:17:40:39:
ed:59:04:7d:3c:af:8a:d9:2d:c1:23:83:3c:e3:d0:57:88:6c:
1e:a3:3e:77:30:5b:f6:44:de:87:b1:21:5b:f7:01:94:59:02:
0d:d8:8a:2c:78:e6:aa:21:0a:99:af:f9:6e:47:a6:7b:04:00:
3f:e6:48:b0:8d:11:e4:25:63:35:f2:f6:96:c6:0a:28:07:88:
dd:17:e0:33:22:13:07:65:58:d0:05:07:22:b2:3e:5c:40:0f:
93:3a:86:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 13 11:06:04 2024 by rpki-client on console-fra.rpki-client.org