Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/lhHKmeRPcmpVyie7RlUpaqvT-6Q.roa
File: lhHKmeRPcmpVyie7RlUpaqvT-6Q.roa (raw, json)
Hash identifier: z2OJG5ylIJwYnfDsOzLld5ZDUakd38GcvfGKoYZEuMM=
Subject key identifier: 96:11:CA:99:E4:4F:72:6A:55:CA:27:BB:46:55:29:6A:AB:D3:FB:A4
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 01856B5329B2F2543F2E586D855D4ABD384E
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/lhHKmeRPcmpVyie7RlUpaqvT-6Q.roa
Signing time: Sun 01 Jan 2023 03:14:50 +0000
ROA not before: Sun 01 Jan 2023 03:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213083
IP address blocks: 213.238.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:53:29:b2:f2:54:3f:2e:58:6d:85:5d:4a:bd:38:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 03:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9611ca99e44f726a55ca27bb4655296aabd3fba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e7:6a:cc:0b:d5:61:65:fa:88:c1:20:2b:ef:
e5:1a:d3:f7:23:38:b3:f5:dc:f9:ef:60:19:97:c6:
5a:fe:ed:5d:97:7f:88:5e:cf:a1:5d:64:41:9b:c6:
6b:d4:8e:e8:b5:51:36:fb:77:14:53:08:40:99:a1:
c4:e9:57:31:5b:9c:82:31:b4:51:af:1a:f9:bf:78:
ef:af:fc:15:e1:1a:a6:d8:bb:0c:7c:f8:28:d9:e5:
8c:ec:7b:26:fa:45:47:58:84:2b:8f:49:0d:27:bf:
09:04:02:cd:be:bd:81:f1:1d:6b:4b:6c:2e:fc:e6:
74:2a:3c:95:f7:bc:36:b9:56:af:2f:fa:0f:61:f1:
3e:08:80:be:69:92:78:e8:1a:7e:56:a4:50:81:4b:
16:f3:e1:85:49:70:03:59:bd:86:19:cc:2d:b3:4b:
ae:84:04:64:bc:3e:87:06:22:ae:41:e0:6d:c9:37:
c3:42:0b:80:e3:d5:6d:6d:7b:3c:f8:0a:4d:22:0b:
4f:87:c0:b8:51:a5:15:79:f7:f6:15:bb:5d:05:2c:
37:c6:2a:98:62:d2:3c:87:a8:6a:75:c9:bc:9f:92:
fa:9e:fe:ec:4e:28:aa:8a:2d:a7:cf:ad:f2:7c:6e:
de:b1:fa:bb:ad:0e:d9:ce:b0:70:9f:04:55:c1:62:
0d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:11:CA:99:E4:4F:72:6A:55:CA:27:BB:46:55:29:6A:AB:D3:FB:A4
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/lhHKmeRPcmpVyie7RlUpaqvT-6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.185.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:2e:ec:65:ab:bd:12:1d:f6:34:7c:b8:0b:a3:f7:7f:e8:df:
b1:c5:e1:69:15:3d:b5:3c:89:01:79:03:51:f8:31:ad:aa:27:
24:a3:f4:fe:36:38:ec:47:af:9d:14:02:1a:e5:29:03:87:8a:
50:75:e7:ef:fd:7d:52:0d:47:b4:ec:1b:62:49:47:db:21:c6:
41:82:38:f1:a4:ec:bf:d3:07:1d:15:a5:dc:68:df:79:15:3c:
fb:5b:f1:c2:94:b1:30:22:45:38:03:97:1d:10:5a:a8:43:72:
a0:82:7b:71:7e:f3:4c:94:e3:7a:2f:04:8a:28:c3:6c:44:f3:
44:3a:ee:fd:fe:f9:e6:d1:86:8e:9a:ca:2f:b0:64:d3:23:71:
f0:53:17:4f:d1:94:7e:15:de:7a:f0:c8:53:f3:82:d9:0d:e5:
cd:4b:af:5d:55:07:58:95:a7:5e:46:e6:e4:c2:5d:6d:b5:9c:
ad:4d:02:1e:35:06:6f:99:a4:13:cf:59:28:53:5f:99:2f:a9:
56:a7:cc:22:9d:cf:7b:54:d7:61:0e:5f:33:a0:2b:bc:37:e2:
9f:99:38:82:53:f1:ab:4d:7f:b5:dd:a9:3e:95:7d:46:60:49:
d9:33:d0:17:28:8f:b4:70:41:6c:bc:88:97:c3:b4:b0:ae:78:
23:89:be:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:27 2024 by rpki-client on console-fra.rpki-client.org