Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/M7HG5IwPugYV2bCG9BfhMAJ4X6Y.roa
File: M7HG5IwPugYV2bCG9BfhMAJ4X6Y.roa (raw, json)
Hash identifier: mjcELcB+JOLnwhadKTt2XoGtF8w9omv6SHMNiBG9ajs=
Subject key identifier: 33:B1:C6:E4:8C:0F:BA:06:15:D9:B0:86:F4:17:E1:30:02:78:5F:A6
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0189DE3A213C5FB8CA92112E088317318D83
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/M7HG5IwPugYV2bCG9BfhMAJ4X6Y.roa
Signing time: Thu 10 Aug 2023 06:54:58 +0000
ROA not before: Thu 10 Aug 2023 06:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209371
IP address blocks: 213.209.143.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:de:3a:21:3c:5f:b8:ca:92:11:2e:08:83:17:31:8d:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Aug 10 06:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33b1c6e48c0fba0615d9b086f417e13002785fa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:05:1e:92:72:10:ef:db:2f:f1:26:b9:8f:a4:
73:a0:b3:01:1e:23:51:07:61:9f:d5:a9:2e:e8:c4:
8d:94:db:8f:90:e7:b8:dd:3d:f1:44:a4:62:b7:b5:
2a:de:f9:2b:1e:ca:73:cd:cc:ed:42:de:b2:96:7e:
1a:a3:8f:0d:c7:be:94:39:a7:9f:3a:d7:07:e5:87:
83:0b:b2:47:44:4a:b7:44:be:8a:03:1a:06:d0:9d:
5b:a4:64:a8:0e:47:e8:e5:cd:89:13:25:38:02:0e:
b4:61:66:b6:bc:e8:92:b2:b6:87:fc:65:23:17:bf:
b9:4c:cb:2c:89:9e:c1:83:e7:e7:54:1f:ad:8b:6d:
e9:1d:2f:59:23:f9:25:59:7f:d6:6c:c5:c4:92:40:
a0:46:0f:ba:61:43:00:d7:d8:c4:db:d0:41:ea:2a:
13:e8:a5:fd:28:35:fe:a1:7e:5d:29:5d:d5:03:8b:
57:26:f0:51:7e:a7:ba:92:8f:50:31:31:1d:e1:31:
3d:a2:1e:cd:42:c2:db:bd:23:1d:0c:a7:d4:58:b6:
11:92:b6:0d:b9:7a:f4:42:bb:f0:34:a2:78:f4:71:
da:f8:93:f5:45:95:f7:3c:0a:93:f4:4e:2f:b9:eb:
85:bd:c5:8c:4c:0a:ce:4d:71:bf:85:1b:8b:f2:0f:
d2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B1:C6:E4:8C:0F:BA:06:15:D9:B0:86:F4:17:E1:30:02:78:5F:A6
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/M7HG5IwPugYV2bCG9BfhMAJ4X6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.209.143.0/24
Signature Algorithm: sha256WithRSAEncryption
31:3f:be:e4:d1:d6:0a:c0:b5:f6:43:ea:04:2a:90:27:d5:14:
1c:f6:88:ea:9b:81:2e:b7:cc:c2:f7:57:6c:39:ee:20:df:90:
ea:ad:f0:aa:89:ee:b5:a1:b0:2c:e4:3b:2f:b0:2f:70:d1:bf:
f1:c3:f4:75:4f:87:a6:e6:c8:94:76:48:1e:93:f6:ee:0d:a9:
9d:f2:37:95:0a:18:a1:a9:d4:be:99:f5:1d:07:6d:90:21:ba:
18:53:81:bc:ee:3a:47:8e:75:e3:cb:61:63:e5:21:60:5b:49:
c6:1c:f3:5f:98:be:a8:5e:05:20:b7:4d:cb:12:66:36:8e:13:
5b:7e:1e:81:ad:17:ca:d8:bf:40:cb:43:0e:c3:eb:8d:20:c3:
70:fb:ad:09:2f:f8:43:eb:81:dd:a1:f6:0e:6a:fe:39:87:49:
2f:e5:08:29:bc:fe:19:c5:34:0f:78:7a:d1:d0:25:4c:8e:9c:
1c:29:5d:f2:bf:d2:db:0c:60:b7:a8:9f:7d:b5:cd:91:a4:97:
9f:ea:0f:32:07:6a:d7:19:b2:b0:5c:96:39:99:ac:6c:a4:58:
21:ef:58:df:33:16:06:dc:63:db:65:96:3e:82:98:83:ec:87:
36:d3:b7:7b:2d:e3:76:f9:a4:3a:3e:91:cd:1d:7b:8d:5c:b5:
e1:2b:f9:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 10 07:57:39 2023 by rpki-client on console-fra.rpki-client.org