Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/zTELs9yO4iQCLNwQXp95ZU2P7Q0.roa
File: zTELs9yO4iQCLNwQXp95ZU2P7Q0.roa (raw, json)
Hash identifier: RtN2i/URutHWjr5t7o/l6OHE0XJ1UeKDFsQkMas56ow=
Subject key identifier: CD:31:0B:B3:DC:8E:E2:24:02:2C:DC:10:5E:9F:79:65:4D:8F:ED:0D
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 01889A79786F72646844BC949237781482E9
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/zTELs9yO4iQCLNwQXp95ZU2P7Q0.roa
Signing time: Thu 08 Jun 2023 10:07:11 +0000
ROA not before: Thu 08 Jun 2023 10:07:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207084
IP address blocks: 213.209.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Jun 2023 15:36:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:79:78:6f:72:64:68:44:bc:94:92:37:78:14:82:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 8 10:07:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd310bb3dc8ee224022cdc105e9f79654d8fed0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:67:34:bd:73:4d:89:e0:bc:79:57:15:da:91:
d8:66:78:a8:fc:14:cb:d1:56:7f:42:82:f5:93:c3:
88:6d:85:65:f8:d6:92:6b:9a:d9:5e:11:67:f8:b3:
be:f2:b5:77:56:84:29:ec:b0:f4:4c:e0:a7:8a:5e:
07:1b:3b:37:b9:07:f0:bf:cc:82:a5:ed:8b:49:c8:
ab:88:d8:ba:c3:b1:1c:d3:a0:c4:cb:66:49:f4:38:
49:16:55:7f:92:a2:bf:65:fd:e2:88:8c:cf:9d:e3:
95:3d:6c:53:f6:22:e0:10:61:36:20:c0:e4:69:15:
0f:c5:d3:bc:68:78:95:77:52:e0:24:9a:db:01:57:
16:85:47:bc:c2:e7:43:f4:fb:62:32:4e:20:3c:45:
f6:04:3a:a4:82:3a:2e:4b:4e:b3:15:7f:7b:da:1e:
37:8c:6e:26:a5:e2:cb:b7:c7:10:83:ca:3a:cb:b6:
b4:1a:10:15:05:63:af:68:dd:1c:2a:da:3f:48:93:
c4:2c:35:5c:17:2e:6f:0c:3b:fd:b4:9a:a2:2a:42:
aa:b7:9a:e7:a8:1d:f5:5a:38:df:48:cf:15:4a:2a:
12:97:9b:44:f5:1f:db:99:1e:62:b3:59:04:49:f7:
39:71:a1:94:d0:11:f0:42:80:fd:4e:0e:fc:a4:7c:
88:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:31:0B:B3:DC:8E:E2:24:02:2C:DC:10:5E:9F:79:65:4D:8F:ED:0D
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/zTELs9yO4iQCLNwQXp95ZU2P7Q0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.209.145.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:29:d6:8a:2e:33:af:1c:c9:cb:ad:82:e5:eb:23:3b:07:02:
68:ed:3f:20:04:77:4e:06:77:87:2b:62:d6:cc:e1:5d:f1:e6:
58:35:a8:d8:91:b4:f9:72:2c:cb:9d:61:3b:a3:b2:cf:5e:49:
85:3b:94:45:d4:79:d3:39:45:f0:9e:34:09:a9:78:10:ef:c5:
b0:10:a0:a2:a0:ee:d2:44:af:2f:7b:f9:0d:1b:93:6d:d1:9e:
e3:93:7b:b9:c3:6a:b1:c7:a0:96:6f:1b:a1:a9:b4:78:43:38:
6b:33:9c:09:5a:06:ab:d4:e8:75:53:39:f1:bb:16:db:d5:6b:
0a:12:f3:4a:e2:9f:dd:7d:3e:30:e7:c5:80:51:89:ae:b2:ba:
ad:9f:be:fd:dc:33:9d:3e:ab:84:94:a7:17:6f:86:e4:66:15:
c7:41:79:4c:d7:76:06:ab:90:07:89:67:22:0e:43:34:2b:0a:
13:09:b2:25:ee:56:5c:2e:a6:3b:8f:7b:e8:59:fa:24:e1:fc:
f9:f2:4f:a7:6e:a3:39:48:d6:a0:03:66:c1:fc:ea:31:a0:f9:
34:62:ac:8c:c9:2d:25:85:3a:92:87:ca:49:83:56:c2:3e:bb:
00:9e:b4:b3:5b:06:b1:aa:01:53:d5:3b:44:47:06:43:f2:93:
92:8e:72:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:06 2024 by rpki-client on console-fra.rpki-client.org