Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/eiaoJ0qMThFioSweSb7WAn5pCY8.roa
File: eiaoJ0qMThFioSweSb7WAn5pCY8.roa (raw, json)
Hash identifier: 0ElgN9eHD35wQatslH7hSVX+c/8IU1tfyzk+fYWZouA=
Subject key identifier: 7A:26:A8:27:4A:8C:4E:11:62:A1:2C:1E:49:BE:D6:02:7E:69:09:8F
Certificate issuer: /CN=ef3e71b96992da3d91c88dd74ef41f9b95b9485b
Certificate serial: 01896996A31C7E3A92E76C58BA9A1ADC4D4E
Authority key identifier: EF:3E:71:B9:69:92:DA:3D:91:C8:8D:D7:4E:F4:1F:9B:95:B9:48:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7z5xuWmS2j2RyI3XTvQfm5W5SFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/eiaoJ0qMThFioSweSb7WAn5pCY8.roa
Signing time: Tue 18 Jul 2023 15:20:26 +0000
ROA not before: Tue 18 Jul 2023 15:20:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5400
IP address blocks: 213.9.138.0/24 maxlen: 24
212.163.169.0/24 maxlen: 24
213.9.148.0/24 maxlen: 24
212.49.181.0/24 maxlen: 24
212.49.190.0/24 maxlen: 24
212.163.141.0/24 maxlen: 24
213.9.232.0/24 maxlen: 24
212.163.40.0/24 maxlen: 24
212.49.131.0/24 maxlen: 24
212.163.55.0/24 maxlen: 24
212.49.142.0/24 maxlen: 24
212.49.167.0/24 maxlen: 24
213.9.173.0/24 maxlen: 24
213.9.177.0/24 maxlen: 24
212.163.206.0/24 maxlen: 24
212.163.3.0/24 maxlen: 24
212.163.215.0/24 maxlen: 24
213.9.188.0/24 maxlen: 24
212.163.6.0/24 maxlen: 24
212.163.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Oct 2023 10:58:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:69:96:a3:1c:7e:3a:92:e7:6c:58:ba:9a:1a:dc:4d:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef3e71b96992da3d91c88dd74ef41f9b95b9485b
Validity
Not Before: Jul 18 15:20:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a26a8274a8c4e1162a12c1e49bed6027e69098f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ed:4f:ea:48:cb:68:f6:8b:f6:40:f0:7f:f4:
d7:dc:5c:70:1c:68:54:f0:c3:63:7d:21:1c:76:13:
cd:02:41:52:bc:85:a6:d4:71:dc:2c:85:2b:5f:fe:
33:4b:0c:63:fd:99:24:f9:22:54:8b:a7:f3:0f:b0:
4e:a9:17:49:9e:a2:9c:3b:64:03:3b:f3:d9:1e:9d:
0d:6f:10:c4:4c:91:fa:92:b9:37:62:bb:da:6e:b8:
1a:d8:06:62:64:4e:69:18:a8:78:2e:5c:f1:38:33:
3e:c1:e1:c9:57:b0:e2:58:e3:68:cf:d6:38:78:cb:
8d:25:d7:f9:d0:1b:f1:c7:15:52:51:59:59:7e:53:
8e:18:84:7a:53:1a:6c:7d:73:92:98:7c:e8:2b:86:
ca:42:9c:a2:3d:8c:dc:0d:15:59:51:3e:42:ce:c5:
26:5f:8b:09:b6:33:50:26:26:7b:22:01:c1:ad:f8:
f2:43:f9:28:fd:ce:1a:e4:ae:6c:b5:d1:ff:83:8e:
d0:77:6c:19:83:37:ec:c1:c8:49:24:61:96:86:3f:
8b:a7:47:1d:d6:06:58:1c:ce:15:6e:35:0b:f4:fb:
a6:2b:e3:8d:f7:ae:46:3a:bf:bf:18:ff:92:d1:4d:
1c:04:8c:6e:91:4b:b4:23:f9:00:ab:8c:94:fc:22:
1e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:26:A8:27:4A:8C:4E:11:62:A1:2C:1E:49:BE:D6:02:7E:69:09:8F
X509v3 Authority Key Identifier:
keyid:EF:3E:71:B9:69:92:DA:3D:91:C8:8D:D7:4E:F4:1F:9B:95:B9:48:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7z5xuWmS2j2RyI3XTvQfm5W5SFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/eiaoJ0qMThFioSweSb7WAn5pCY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/7z5xuWmS2j2RyI3XTvQfm5W5SFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.49.131.0/24
212.49.142.0/24
212.49.167.0/24
212.49.181.0/24
212.49.190.0/24
212.163.3.0/24
212.163.6.0/24
212.163.24.0/24
212.163.40.0/24
212.163.55.0/24
212.163.141.0/24
212.163.169.0/24
212.163.206.0/24
212.163.215.0/24
213.9.138.0/24
213.9.148.0/24
213.9.173.0/24
213.9.177.0/24
213.9.188.0/24
213.9.232.0/24
Signature Algorithm: sha256WithRSAEncryption
56:9f:be:b0:ed:45:36:e3:96:ea:80:5c:f8:de:98:22:b6:88:
cd:16:cf:19:ea:b0:01:d6:a2:81:dc:5f:71:b7:f7:32:a9:8c:
7c:76:b4:86:a4:0e:dc:a5:98:4b:6b:8e:6a:a7:1f:7a:ee:5b:
3c:1a:a6:c4:4a:3b:2b:e7:10:ff:c9:b9:9f:24:55:8b:83:68:
e7:45:d1:29:ce:65:e5:44:19:39:ed:38:f2:f4:c2:8d:ac:77:
1f:64:6a:c8:35:9c:1a:90:b5:4a:88:61:d6:d2:3c:e3:dc:8d:
1e:09:e8:b0:51:8c:a8:8d:25:3c:b8:01:d1:cf:89:e8:10:c8:
53:ff:8a:58:75:a2:d6:c9:f1:98:90:b1:e8:10:c8:fa:e2:56:
ec:d9:73:25:d1:45:47:11:fc:7e:9f:12:44:39:42:dd:66:f4:
2f:71:3a:fd:92:50:3f:15:34:c6:ce:78:73:17:94:ce:49:a9:
23:91:0b:57:0a:26:c0:64:fa:e3:ce:d6:e2:07:a9:91:a2:3c:
2d:e7:07:68:77:a0:ee:9d:86:01:63:88:ea:99:fc:bc:15:a6:
17:80:f5:4d:09:0b:92:59:12:33:4a:50:b1:25:18:08:63:02:
a4:d2:ff:2d:b1:d4:fb:38:49:55:dc:f6:d0:5d:a4:e6:ef:e9:
9b:6f:42:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:57 2024 by rpki-client on console-ams.rpki-client.org