Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/Efwv0LzU8sUUnq0U05b7FUYg76A.roa
File: Efwv0LzU8sUUnq0U05b7FUYg76A.roa (raw, json)
Hash identifier: GZ7nEiAzmJwo9loROi1qk3LWBfgMtAyMEITkiYcAUcA=
Subject key identifier: 11:FC:2F:D0:BC:D4:F2:C5:14:9E:AD:14:D3:96:FB:15:46:20:EF:A0
Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial: 0185734CB05C77881D8AEBEA9EEEEAAC683F
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/Efwv0LzU8sUUnq0U05b7FUYg76A.roa
Signing time: Mon 02 Jan 2023 16:24:43 +0000
ROA not before: Mon 02 Jan 2023 16:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21464
IP address blocks: 213.86.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jul 2023 12:18:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:4c:b0:5c:77:88:1d:8a:eb:ea:9e:ee:ea:ac:68:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Validity
Not Before: Jan 2 16:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11fc2fd0bcd4f2c5149ead14d396fb154620efa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:b6:71:c5:51:87:1f:8d:62:32:1a:aa:79:17:
2e:ce:48:d7:8a:cb:e0:18:bf:15:ae:96:08:a2:8c:
30:78:44:ad:51:d9:b4:34:ea:f1:0a:22:28:59:6f:
59:45:aa:3e:53:43:58:55:7c:aa:12:80:55:cb:b5:
b0:12:f6:7f:09:cb:bb:97:ed:dd:47:bc:4e:2b:46:
32:49:c6:b7:a3:46:fb:0e:4d:09:11:22:82:3d:b0:
48:1a:95:06:23:2c:3a:f4:a6:c6:8d:66:e9:54:0e:
52:e2:fb:47:0b:cf:43:e1:c8:ff:09:3d:16:d9:65:
9e:53:2b:fa:28:43:e6:bf:ee:31:21:bf:d8:33:04:
58:d3:4c:0e:ad:c3:1a:b6:0d:6e:9f:ae:44:fc:41:
ec:84:8d:77:ef:e9:55:e0:ea:ca:d9:af:fe:3d:c4:
b3:09:ae:d3:b0:0f:6b:9f:9e:70:ae:07:87:cf:ca:
45:17:1d:12:1b:54:6f:7f:28:4c:36:41:7d:07:c0:
cc:c5:ea:ce:73:72:29:fe:d3:eb:ca:4c:24:75:e2:
8f:6f:e7:b9:af:37:c2:9e:88:f0:ab:00:35:89:8d:
e1:46:a6:09:c0:f3:d1:dc:99:c9:45:1f:07:85:53:
a2:7f:e3:a1:b4:73:c7:28:57:9b:08:2e:cb:00:20:
fb:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:FC:2F:D0:BC:D4:F2:C5:14:9E:AD:14:D3:96:FB:15:46:20:EF:A0
X509v3 Authority Key Identifier:
keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/Efwv0LzU8sUUnq0U05b7FUYg76A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.86.168.0/24
Signature Algorithm: sha256WithRSAEncryption
41:bb:fb:65:18:af:38:ca:d7:22:38:36:0e:9b:fa:20:f0:25:
bd:a7:83:0f:c3:cb:fa:f8:d4:ad:70:06:e1:85:50:e4:9b:9e:
01:29:79:0a:ce:a5:f2:c0:45:32:f3:3c:3d:72:be:a1:2a:46:
63:72:54:5c:68:de:16:c3:a5:be:bc:af:7b:3b:12:42:8e:09:
08:b9:a3:73:60:28:07:b4:d6:1c:18:e0:81:6a:fd:1e:2f:9f:
fa:4b:fe:50:f5:69:6b:5e:5d:c1:ba:7f:2a:ff:f4:41:3f:8c:
0f:a1:60:60:f4:df:67:65:28:53:85:06:b1:39:9d:d0:63:44:
f4:38:7a:e6:99:24:bf:64:b0:44:e9:15:ce:e6:21:bb:63:b6:
b6:b8:a9:56:34:18:c4:28:de:9a:f5:a3:65:2a:ee:97:e2:c1:
91:ca:e4:60:23:fe:08:c9:e1:e0:5f:5e:be:33:86:c6:54:e4:
39:ed:0f:c3:d4:c5:3d:08:36:bc:b7:6a:42:f6:82:75:46:5c:
55:67:73:01:5c:22:8a:73:c0:e7:6c:58:33:44:e0:6b:5d:91:
89:ed:36:85:76:34:f9:25:7c:1a:a5:eb:2c:5f:c4:0d:98:6b:
7b:a2:28:04:60:17:e7:64:b4:ae:39:c0:5e:77:d0:2f:66:e8:
fc:20:47:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:28 2024 by rpki-client on console-ams.rpki-client.org