Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/7xRdpUtOzqe9GMeDXydy-hOYxdM.roa
File: 7xRdpUtOzqe9GMeDXydy-hOYxdM.roa (raw, json)
Hash identifier: UReYJhKEg6/KStyUzdQBdXa6X4QJWvE2/PRCjAMJoas=
Subject key identifier: EF:14:5D:A5:4B:4E:CE:A7:BD:18:C7:83:5F:27:72:FA:13:98:C5:D3
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 018A418EFD38334459A15F81314CABCBF11B
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/7xRdpUtOzqe9GMeDXydy-hOYxdM.roa
Signing time: Tue 29 Aug 2023 13:50:04 +0000
ROA not before: Tue 29 Aug 2023 13:50:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136744
IP address blocks: 213.209.151.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:41:8e:fd:38:33:44:59:a1:5f:81:31:4c:ab:cb:f1:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Aug 29 13:50:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef145da54b4ecea7bd18c7835f2772fa1398c5d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d3:50:34:d5:04:7a:fa:e3:39:e4:f4:99:2d:
aa:e8:a4:11:c3:62:f8:8f:de:5e:df:5c:47:ef:c5:
a0:3d:cd:83:9f:fa:8d:bb:ab:64:7b:a3:7f:fe:23:
96:cc:f4:80:90:5b:e1:43:06:54:a0:ea:8d:2d:72:
95:25:e9:ab:c7:f7:38:7f:27:3d:62:d0:8d:1f:90:
c1:15:49:c9:2a:74:f0:b2:13:79:e5:6b:90:4e:0f:
78:72:46:66:06:cd:31:a4:00:ff:6b:26:b7:a3:1c:
f5:dc:6e:7a:f8:d8:8c:47:e8:a8:90:59:c9:a5:21:
e5:76:5c:26:e8:b5:3e:56:37:93:63:89:00:98:53:
d6:35:a2:ee:ce:fa:17:e4:e5:1a:93:25:2d:e7:39:
f3:8a:5b:10:6f:eb:0a:1a:2e:2e:88:48:52:94:d2:
d5:63:c3:68:5e:d3:a8:11:45:22:43:bd:f5:28:4a:
11:53:f5:a2:13:6c:42:71:f6:e0:7d:a6:51:2a:41:
e8:96:fc:dd:dd:6b:7f:12:ed:ae:bc:00:58:a6:fb:
7f:cf:70:c5:13:5a:a3:6d:b4:0d:60:16:e3:1d:c3:
63:08:05:fd:b3:37:01:9c:8d:18:b9:b9:12:13:25:
aa:5c:3c:06:cd:0e:88:2d:dd:59:f2:6d:37:25:84:
4a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:14:5D:A5:4B:4E:CE:A7:BD:18:C7:83:5F:27:72:FA:13:98:C5:D3
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/7xRdpUtOzqe9GMeDXydy-hOYxdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.209.151.0/24
Signature Algorithm: sha256WithRSAEncryption
87:32:a2:62:08:f9:50:60:5d:67:2d:fc:e0:e7:47:ad:2c:bf:
24:94:4a:91:cd:d8:ec:bf:06:6c:ea:5c:ae:e7:be:dd:11:0f:
0d:07:49:67:74:1f:f0:56:d6:2d:ec:8b:e2:3e:08:71:c4:c3:
1c:aa:c4:a0:39:f4:b5:94:c6:27:a2:50:85:fd:60:10:bc:45:
b4:5e:3c:a4:60:bf:42:99:23:cb:85:de:10:ce:53:8d:8c:49:
e6:a8:bb:59:30:46:32:4e:9a:0a:a8:31:e9:6b:7a:99:a3:78:
54:c1:c6:fd:c6:90:64:f4:5a:7b:81:cf:57:0c:0a:3a:47:7d:
12:ae:14:e4:ef:e8:3c:c7:7b:fd:6c:1c:91:33:bc:ac:08:a2:
0c:b1:c0:b1:7d:58:2f:c0:60:73:75:99:00:9f:44:a8:ae:08:
c3:b6:fb:01:0f:96:db:8a:90:37:2a:69:c1:59:4d:77:fa:d6:
56:20:0a:7d:38:2a:f7:5a:46:db:33:e7:b5:42:36:5b:ce:22:
f6:0e:77:0c:84:5b:4a:34:80:25:b1:0a:c0:a9:51:8e:a3:ec:
94:f0:9d:c4:83:ad:b2:54:c2:08:e3:4f:28:d6:c5:90:de:19:
74:cd:cc:54:76:e3:e3:1c:54:7f:24:ef:a7:ce:92:46:35:a7:
bd:57:b2:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:19:10 2024 by rpki-client on console-fra.rpki-client.org