Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/i9vAj5FIazTH5_YIJt17rMsfSEY.roa
File: i9vAj5FIazTH5_YIJt17rMsfSEY.roa (raw, json)
Hash identifier: JbohfJmTzRauFfSvJ/Zh2Oa5mfmHNookbB2HkdXGiy8=
Subject key identifier: 8B:DB:C0:8F:91:48:6B:34:C7:E7:F6:08:26:DD:7B:AC:CB:1F:48:46
Certificate issuer: /CN=ef3e71b96992da3d91c88dd74ef41f9b95b9485b
Certificate serial: 0187BEC73E1E72BE154F361C263715A821A3
Authority key identifier: EF:3E:71:B9:69:92:DA:3D:91:C8:8D:D7:4E:F4:1F:9B:95:B9:48:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7z5xuWmS2j2RyI3XTvQfm5W5SFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/i9vAj5FIazTH5_YIJt17rMsfSEY.roa
Signing time: Wed 26 Apr 2023 18:15:41 +0000
ROA not before: Wed 26 Apr 2023 18:15:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5400
IP address blocks: 213.9.138.0/24 maxlen: 24
212.163.169.0/24 maxlen: 24
213.9.148.0/24 maxlen: 24
213.9.160.0/24 maxlen: 24
212.49.175.0/24 maxlen: 24
212.49.181.0/24 maxlen: 24
212.49.190.0/24 maxlen: 24
212.49.191.0/24 maxlen: 24
212.163.141.0/24 maxlen: 24
213.9.232.0/24 maxlen: 24
212.163.40.0/24 maxlen: 24
212.49.131.0/24 maxlen: 24
212.163.55.0/24 maxlen: 24
212.49.142.0/24 maxlen: 24
212.49.163.0/24 maxlen: 24
212.49.167.0/24 maxlen: 24
213.9.173.0/24 maxlen: 24
213.9.177.0/24 maxlen: 24
212.163.206.0/24 maxlen: 24
213.9.188.0/24 maxlen: 24
212.163.3.0/24 maxlen: 24
212.163.215.0/24 maxlen: 24
212.163.6.0/24 maxlen: 24
212.163.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Jun 2023 07:46:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:be:c7:3e:1e:72:be:15:4f:36:1c:26:37:15:a8:21:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef3e71b96992da3d91c88dd74ef41f9b95b9485b
Validity
Not Before: Apr 26 18:15:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8bdbc08f91486b34c7e7f60826dd7baccb1f4846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:74:d8:99:a7:c9:9d:ad:99:32:88:07:bf:f2:
99:3b:ac:d7:20:d1:83:48:a4:a2:c9:7a:5b:d3:e3:
b1:42:73:1b:9c:ea:65:12:d2:71:19:e4:d1:06:3a:
ff:ef:dd:b0:c7:9f:39:ab:12:ce:64:dd:5f:b7:de:
05:1c:e2:fb:27:b0:8a:64:6b:eb:6b:39:e3:be:cf:
66:60:20:54:3d:86:15:ae:c2:40:ae:da:66:65:f3:
58:1e:eb:25:d2:8e:d6:c1:24:7c:87:a7:f9:db:6c:
a5:9f:1e:83:58:b7:d5:e7:d9:39:c9:1a:e8:73:c5:
cc:53:6c:5f:f7:2f:5d:a8:3f:fc:b3:5d:89:c0:c8:
56:74:32:83:ea:ba:9d:62:07:29:37:96:75:bf:be:
25:35:fd:bc:49:fa:1f:ea:59:e6:e2:ba:35:b1:c1:
cf:40:be:0c:f8:b5:3a:e7:9e:90:d1:b2:95:e0:98:
0d:da:c7:41:3a:42:33:0a:00:f2:9e:e1:e1:e4:af:
d8:ae:58:8e:17:ac:70:a9:f8:ce:bf:6b:90:2f:54:
f0:e8:50:8d:08:3c:66:46:0f:bd:e3:78:97:f6:4d:
67:02:49:c8:b3:1a:25:6a:29:d9:9c:db:58:77:ef:
7e:72:43:cf:1d:7e:d0:50:b1:32:1d:06:b8:3c:41:
94:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:DB:C0:8F:91:48:6B:34:C7:E7:F6:08:26:DD:7B:AC:CB:1F:48:46
X509v3 Authority Key Identifier:
keyid:EF:3E:71:B9:69:92:DA:3D:91:C8:8D:D7:4E:F4:1F:9B:95:B9:48:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7z5xuWmS2j2RyI3XTvQfm5W5SFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/i9vAj5FIazTH5_YIJt17rMsfSEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/7z5xuWmS2j2RyI3XTvQfm5W5SFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.49.131.0/24
212.49.142.0/24
212.49.163.0/24
212.49.167.0/24
212.49.175.0/24
212.49.181.0/24
212.49.190.0/23
212.163.3.0/24
212.163.6.0/24
212.163.24.0/24
212.163.40.0/24
212.163.55.0/24
212.163.141.0/24
212.163.169.0/24
212.163.206.0/24
212.163.215.0/24
213.9.138.0/24
213.9.148.0/24
213.9.160.0/24
213.9.173.0/24
213.9.177.0/24
213.9.188.0/24
213.9.232.0/24
Signature Algorithm: sha256WithRSAEncryption
75:b9:ad:c9:87:65:e0:e9:83:79:ab:17:00:8c:84:80:c0:ef:
eb:dd:ad:d4:2c:20:aa:96:0f:53:ac:c8:a5:e5:13:94:d6:f7:
f1:9a:98:d2:4e:e4:da:fe:ca:57:24:29:d9:d2:55:20:66:7d:
cc:88:69:95:1e:39:f9:36:e7:84:3c:14:d8:c6:57:a2:4f:a4:
c6:ee:65:b1:cb:49:1b:b3:26:34:38:08:5c:1d:00:12:d7:3b:
0a:f8:05:c8:02:5a:e4:c2:d6:f3:dd:be:74:70:82:48:54:20:
38:03:4e:e4:11:16:13:70:32:aa:3d:24:37:c8:0a:51:43:18:
16:75:0f:e3:4a:a5:5c:6a:6c:fd:f1:38:7c:13:b9:1c:38:c6:
05:71:5c:bb:c7:e5:e5:b1:2e:d9:8a:3c:42:f8:ea:d6:31:bb:
82:f9:1f:d8:b2:62:8c:7a:ea:51:3e:64:d2:e3:24:c9:a5:9d:
01:09:75:c4:8b:ad:ea:c7:ee:71:cf:eb:f5:c9:03:f0:96:3d:
43:84:8a:76:75:e1:7e:a0:20:10:59:40:c5:a1:58:a6:aa:60:
ce:d2:ee:98:3e:b8:d2:f4:5d:a5:57:23:74:21:9f:e0:30:4b:
0d:16:44:be:9e:4d:6d:28:c5:34:93:cb:72:af:58:23:08:13:
86:be:0c:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:03 2024 by rpki-client on console-fra.rpki-client.org