Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/PPq-hXjMy61SudRfQIJxr6BisLY.roa
File: PPq-hXjMy61SudRfQIJxr6BisLY.roa (raw, json)
Hash identifier: ZJzrH0f/7D0TXH9U6eRinZtaaU6DG+yHhYoC0gVTVQA=
Subject key identifier: 3C:FA:BE:85:78:CC:CB:AD:52:B9:D4:5F:40:82:71:AF:A0:62:B0:B6
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 0185735621811257EB137F52422790AD83CB
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/PPq-hXjMy61SudRfQIJxr6BisLY.roa
Signing time: Mon 02 Jan 2023 16:35:02 +0000
ROA not before: Mon 02 Jan 2023 16:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42193
IP address blocks: 213.153.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:56:21:81:12:57:eb:13:7f:52:42:27:90:ad:83:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: Jan 2 16:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3cfabe8578cccbad52b9d45f408271afa062b0b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ab:38:dd:da:5c:32:b2:bb:57:55:7d:84:3e:
50:18:52:6b:c0:af:5e:de:b4:df:cc:44:35:3d:3a:
6d:fe:06:07:50:bc:74:1c:55:99:ae:b2:78:03:c9:
4b:b8:64:c2:6d:9f:95:7b:d6:30:77:1a:50:5e:06:
e0:de:db:af:6f:40:1d:9e:69:59:e4:73:2c:22:be:
f7:c2:12:c5:2d:ee:c0:ea:cf:51:1e:c3:49:f7:8e:
6f:ee:3d:80:dc:c8:53:76:dc:c3:dd:16:58:90:fd:
ce:2b:b2:22:af:d4:78:69:3d:01:e7:b0:f2:10:b9:
de:60:bf:32:2d:78:00:a9:11:2d:71:4f:06:24:eb:
49:d8:ee:64:b3:4e:b2:c1:b6:25:91:2f:90:30:5a:
d1:6e:78:89:d2:6a:ae:c3:0d:15:a3:01:63:64:87:
ea:d9:a7:c0:36:c5:04:39:7c:10:cd:68:28:17:29:
ba:d6:97:15:05:30:21:84:4b:ff:80:b2:69:f1:60:
ea:f5:bf:c9:56:e6:d2:6e:5a:4f:16:d3:e9:86:92:
a8:07:ca:78:68:8a:3f:3a:b9:bb:39:93:12:5b:8d:
ed:96:e1:5d:bd:cd:c4:48:c2:b9:23:e7:8a:dc:1f:
54:dc:f6:23:60:7b:06:9f:c2:be:15:00:e3:35:c4:
d7:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:FA:BE:85:78:CC:CB:AD:52:B9:D4:5F:40:82:71:AF:A0:62:B0:B6
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/PPq-hXjMy61SudRfQIJxr6BisLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.153.129.0/24
Signature Algorithm: sha256WithRSAEncryption
04:35:a5:36:25:2c:7b:f3:2d:02:31:cd:fe:68:c9:3a:33:93:
d9:b5:c8:a6:8a:f4:3f:98:03:7c:e7:b5:30:76:22:3a:d5:cf:
cb:c8:14:26:1e:b8:19:c2:f7:2c:d4:3b:60:cc:14:03:2d:9c:
5e:a8:5e:80:18:b7:cf:cb:8f:3c:2a:6e:da:f8:f7:a7:59:3f:
6b:b8:0e:7e:a1:2f:0f:91:85:2e:c6:25:34:f7:51:78:6a:31:
09:dc:52:fc:6b:53:d2:e0:ed:54:c7:f1:07:92:d9:0f:1c:f6:
f4:7a:c5:a9:e5:ad:c5:72:07:3e:d0:e1:3c:94:2c:78:49:4e:
4d:69:49:44:69:58:fb:ef:8d:20:ea:f4:9e:4a:d7:4a:75:c0:
b3:59:ca:5e:c5:8a:ba:e0:52:34:03:c4:7b:ff:5f:66:12:3a:
18:a4:2b:4b:c7:a0:f1:d1:1d:74:8b:46:0d:45:f6:5d:21:08:
63:cc:c6:33:ee:26:97:33:ea:65:6c:54:57:87:44:bc:88:7c:
a8:d7:05:21:b5:e3:8e:fa:89:db:d0:26:ac:cc:6e:81:b9:84:
b5:be:cd:5c:18:eb:20:2e:30:1e:3b:71:d3:ba:e8:73:75:80:
df:98:d7:51:83:f0:83:9f:f7:ea:65:a5:fd:3f:46:d5:23:62:
27:7a:2b:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:00 2024 by rpki-client on console-ams.rpki-client.org