Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/PaFjbdQ9Za_04BpuzbaU1551pQY.roa
File: PaFjbdQ9Za_04BpuzbaU1551pQY.roa (raw, json)
Hash identifier: tVP4bMJmJ0Mywovnh2LdCvp+Ol7v5XLYxWKGslUDDMo=
Subject key identifier: 3D:A1:63:6D:D4:3D:65:AF:F4:E0:1A:6E:CD:B6:94:D7:9E:75:A5:06
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 018CC801A7CF0E75743B14F5F4AC2E81AA91
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/PaFjbdQ9Za_04BpuzbaU1551pQY.roa
Signing time: Tue 02 Jan 2024 02:30:00 +0000
ROA not before: Tue 02 Jan 2024 02:30:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198602
IP address blocks: 213.135.94.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 26 Jan 2024 09:44:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:a7:cf:0e:75:74:3b:14:f5:f4:ac:2e:81:aa:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jan 2 02:30:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3da1636dd43d65aff4e01a6ecdb694d79e75a506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:26:df:fa:b5:69:e8:a3:d7:c0:da:40:21:5f:
51:78:7b:3e:6a:1c:58:2d:62:95:30:70:8c:e1:c6:
46:4f:df:8e:cd:b1:11:52:3f:be:4a:f8:c5:20:43:
56:77:d6:f7:8d:d9:c6:3b:32:35:4c:5a:60:ae:60:
a8:32:8a:95:1e:42:31:04:b3:d4:5b:87:58:4a:35:
16:3b:a5:fe:8f:c7:36:7b:aa:ea:90:00:f3:a2:c3:
21:39:96:5d:f8:b3:73:af:e3:79:65:2a:67:54:be:
05:bf:ee:4e:9a:53:1b:db:ef:e4:31:db:d1:dd:ca:
3a:4a:3a:ec:b4:dc:a2:fd:cd:03:06:9b:92:b3:3d:
7a:8b:79:a6:58:c9:83:83:a9:ae:6e:f5:5b:97:19:
e5:5a:97:b1:2d:50:5f:5a:92:81:4b:98:80:81:64:
9c:2d:c6:6f:80:75:2d:44:95:db:a4:4a:8d:f2:24:
f6:63:9e:e7:57:55:d9:52:eb:75:48:d1:ef:c3:6c:
44:fa:cf:5e:93:67:12:21:fe:19:22:ed:33:c8:42:
69:d1:11:c4:11:fe:c4:89:b9:6d:39:49:22:75:93:
0c:b1:b2:27:e8:1a:fa:17:23:46:43:1c:d1:5a:e2:
f7:7c:cf:ce:2c:22:f8:af:76:24:68:43:77:3b:21:
41:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A1:63:6D:D4:3D:65:AF:F4:E0:1A:6E:CD:B6:94:D7:9E:75:A5:06
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/PaFjbdQ9Za_04BpuzbaU1551pQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.135.94.0/23
Signature Algorithm: sha256WithRSAEncryption
07:8b:b5:0b:e7:44:f6:f7:aa:fc:ce:d4:06:69:aa:3a:2f:15:
ec:df:c1:57:1e:da:18:1f:02:d9:81:20:00:87:9a:3e:2d:33:
67:ec:e0:41:8e:26:19:69:51:3b:74:01:93:3b:12:31:57:34:
32:84:c7:81:93:ff:43:52:16:80:10:ce:02:65:03:d0:e2:ce:
ba:09:68:4a:1e:4b:b4:86:69:a8:65:b1:10:5e:07:40:00:f5:
0b:47:77:f1:65:a4:14:7f:64:2a:9e:45:ba:e0:0e:f6:89:17:
40:de:09:28:24:1d:fc:43:72:66:24:53:da:17:cb:7d:24:d5:
13:0a:0f:8b:ea:1a:33:88:05:b5:21:94:29:2b:76:d6:41:6a:
bf:f6:8e:cb:d8:44:a2:60:a7:34:6e:17:20:3b:f4:89:ad:85:
51:9a:cd:5a:92:1b:b6:04:7a:3d:4c:02:93:54:bc:b8:e5:08:
11:61:59:62:93:51:d8:07:eb:90:be:2d:2e:0d:09:9d:ea:fd:
ab:bb:dd:0f:fa:db:f9:78:cd:94:11:1c:9e:fd:e4:c4:5d:60:
70:12:af:59:9e:ed:7d:94:59:62:a9:ef:eb:ef:31:06:0f:e3:
4c:f5:c9:24:96:91:e6:37:d5:02:22:db:46:14:38:5c:78:33:
b2:66:ec:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:05 2024 by rpki-client on console-ams.rpki-client.org