Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/iWxQO0JRENtVeWIYKRBDk8kQE50.roa
File: iWxQO0JRENtVeWIYKRBDk8kQE50.roa (raw, json)
Hash identifier: lg6zsvnc9FJ/OGKxYc8r5vM9ecr4ySIp2uHa69rSj1M=
Subject key identifier: 89:6C:50:3B:42:51:10:DB:55:79:62:18:29:10:43:93:C9:10:13:9D
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 0188A4B038FA0AC5CAA1C42543FF3A2595E8
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/iWxQO0JRENtVeWIYKRBDk8kQE50.roa
Signing time: Sat 10 Jun 2023 09:43:12 +0000
ROA not before: Sat 10 Jun 2023 09:43:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210574
IP address blocks: 213.238.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a4:b0:38:fa:0a:c5:ca:a1:c4:25:43:ff:3a:25:95:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jun 10 09:43:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=896c503b425110db5579621829104393c910139d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4a:58:30:b2:14:5d:9b:e1:ec:88:be:5e:f3:
96:4d:3b:f3:f1:a8:09:26:e4:2a:00:aa:a4:f5:16:
20:ff:c4:36:9d:57:40:7c:ac:d5:36:48:a2:ea:a2:
fd:b3:eb:8b:57:a2:1e:fb:b4:e9:47:f3:79:ad:13:
ca:b3:91:64:8c:49:2a:c7:18:cb:84:b2:f3:de:72:
00:73:82:8c:fc:3d:2b:0f:b8:b0:48:c5:38:a5:60:
ae:df:7a:ea:8c:83:4d:59:3a:c8:1b:3d:0f:38:b5:
93:2e:42:9d:a7:9a:a6:53:24:4f:69:76:e6:29:b1:
ff:54:c6:91:74:ff:95:d7:cd:08:72:4b:77:a1:44:
1b:80:43:16:f8:55:6e:51:e7:a1:13:c8:83:34:12:
41:14:cc:17:fd:41:56:8c:ec:f0:8c:3e:c8:0e:ba:
37:c3:13:d6:f2:20:67:89:fe:53:cf:73:b9:a9:6d:
f5:d1:c1:81:1d:7c:9f:27:11:a6:59:62:31:ca:0d:
e7:fb:51:4f:4e:5e:7c:43:7f:85:ce:99:da:e7:6d:
f7:d7:89:19:e8:b4:70:e3:63:6f:41:8d:87:17:1e:
bf:e5:a2:57:f2:fd:16:09:6f:4c:a5:81:31:e1:44:
cb:47:52:29:86:07:8c:71:58:b9:3a:aa:3d:f7:bc:
53:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:6C:50:3B:42:51:10:DB:55:79:62:18:29:10:43:93:C9:10:13:9D
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/iWxQO0JRENtVeWIYKRBDk8kQE50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.180.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:6a:c9:81:76:0e:d8:d6:ee:2f:23:5d:0a:2d:1a:5b:bf:40:
7f:ff:79:e5:e1:f5:03:3a:f8:2d:25:4a:a1:19:c2:8f:f6:f2:
3b:00:17:7a:4c:25:1c:43:a6:d6:bf:27:c5:cb:62:90:5e:f4:
8e:17:6a:bf:c6:18:22:2e:7b:50:2c:68:9a:71:c0:a6:9a:0d:
28:cc:04:05:7d:4e:32:eb:01:b7:b7:ef:ed:a1:0f:b2:7e:1a:
da:a0:d8:98:13:da:46:65:e2:04:51:28:5f:69:4a:a5:e9:93:
a8:15:26:97:26:5f:26:66:e5:ba:51:5f:06:89:bc:6d:2e:04:
e8:99:85:a2:51:3a:3d:98:e0:26:60:84:04:df:d6:a0:25:e5:
09:20:5b:68:40:c0:ee:f6:31:0e:c3:60:d6:c0:cf:3b:60:f9:
86:23:5f:51:52:9b:b7:4a:12:fe:8c:5c:51:df:2a:75:83:b1:
40:d8:fb:a4:f4:75:46:c7:89:f3:13:8a:b9:fc:97:de:54:97:
5a:a5:94:d3:3b:b4:d2:35:20:94:57:3e:78:b0:63:ab:6d:f0:
2a:b8:99:3e:96:89:96:13:a9:71:94:54:df:05:09:ce:49:1e:
33:75:16:86:8b:5f:24:fa:37:a4:fd:fe:72:95:9e:0a:cc:9e:
27:8a:c0:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:27 2024 by rpki-client on console-fra.rpki-client.org