Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/3gVXzkKm3GX7aAXid1fm2Z4ZgmY.roa
File: 3gVXzkKm3GX7aAXid1fm2Z4ZgmY.roa (raw, json)
Hash identifier: c7HdjfMkArkfJjx/wmCjgutATto0gjiCGl0KqGLuOO4=
Subject key identifier: DE:05:57:CE:42:A6:DC:65:FB:68:05:E2:77:57:E6:D9:9E:19:82:66
Certificate issuer: /CN=e30cc9429b63382e9b1714d21b3c96d2e5ebe257
Certificate serial: 01856B935AC0D121CF7741C9BB94A22F747F
Authority key identifier: E3:0C:C9:42:9B:63:38:2E:9B:17:14:D2:1B:3C:96:D2:E5:EB:E2:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4wzJQptjOC6bFxTSGzyW0uXr4lc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/3gVXzkKm3GX7aAXid1fm2Z4ZgmY.roa
Signing time: Sun 01 Jan 2023 04:24:57 +0000
ROA not before: Sun 01 Jan 2023 04:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2723
IP address blocks: 213.161.82.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:93:5a:c0:d1:21:cf:77:41:c9:bb:94:a2:2f:74:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e30cc9429b63382e9b1714d21b3c96d2e5ebe257
Validity
Not Before: Jan 1 04:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de0557ce42a6dc65fb6805e27757e6d99e198266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:14:2e:00:57:bd:c9:83:73:bb:79:11:ad:03:
69:f5:8c:e9:bb:91:06:16:7d:d4:96:75:13:86:76:
3a:25:09:76:2f:97:55:81:fe:69:d2:5e:0b:75:3c:
c4:70:d8:e0:cc:ee:41:e7:15:9b:80:97:16:bc:f6:
e4:96:18:6f:6f:55:f5:5a:4b:53:64:73:0f:16:18:
a0:78:9d:21:5b:dc:38:f1:6a:f5:a6:11:e0:85:86:
12:21:72:5f:4d:bf:c2:11:76:6c:80:02:b5:71:75:
b9:9b:24:22:1c:14:a0:aa:4b:15:7d:39:89:4f:7a:
da:2c:cf:ca:1f:2d:63:b4:c6:40:c4:b5:62:12:85:
3b:41:d0:a1:59:41:32:48:33:20:fe:09:b1:47:49:
a2:a8:ce:44:7f:8a:e1:45:53:d5:c9:d6:3c:86:49:
e4:99:de:a8:a4:2b:40:7c:9d:92:b6:4a:2d:8f:52:
6a:84:ff:8d:4b:8c:0d:02:a6:70:c3:e5:b9:63:7d:
9f:a1:c9:d3:92:42:95:c9:2e:a9:87:d6:c9:21:ca:
8f:0e:c3:69:ff:3e:36:90:cd:17:3b:7b:73:29:11:
af:ab:7a:76:b5:a5:df:a3:eb:5b:f8:4a:38:d6:69:
ed:ba:7e:f7:24:28:5d:e4:a4:fb:22:27:48:9f:ba:
4b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:05:57:CE:42:A6:DC:65:FB:68:05:E2:77:57:E6:D9:9E:19:82:66
X509v3 Authority Key Identifier:
keyid:E3:0C:C9:42:9B:63:38:2E:9B:17:14:D2:1B:3C:96:D2:E5:EB:E2:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4wzJQptjOC6bFxTSGzyW0uXr4lc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/3gVXzkKm3GX7aAXid1fm2Z4ZgmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/4wzJQptjOC6bFxTSGzyW0uXr4lc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.161.82.0/24
Signature Algorithm: sha256WithRSAEncryption
28:70:10:91:a9:30:ce:b3:af:40:09:f7:1f:e9:36:c7:86:c3:
ca:11:9c:e9:fc:f0:de:69:b0:9a:d9:b1:27:c5:93:16:f6:38:
49:e9:76:28:ac:74:b0:e1:68:f1:ef:15:f8:7a:29:f4:92:7d:
65:6b:63:bc:85:d8:3c:72:91:80:30:69:ca:5f:07:e2:a9:c2:
31:9c:a9:fd:1d:d9:20:b4:ed:0e:20:d1:89:a7:c0:ea:18:1c:
38:8b:d3:d1:2a:9f:08:2d:25:a8:66:45:24:f7:74:62:61:22:
37:e1:02:c3:6d:ee:8e:43:86:7a:35:92:95:46:b6:70:b2:26:
de:7f:6b:68:18:a0:6b:e6:56:58:57:4d:b2:86:2a:f2:39:49:
ff:ff:95:7b:4e:5d:1c:b6:26:4b:6d:5c:97:00:bd:95:cb:34:
36:70:88:4b:ee:17:c0:d1:f1:50:6c:fd:80:2d:a8:2b:ba:da:
1f:a3:fe:92:cd:e9:f7:9c:b9:b0:f0:ca:18:58:ef:41:e5:45:
b2:19:46:e6:d4:c9:d5:83:e2:93:35:ab:5f:d8:3e:b9:7a:81:
ad:d5:f6:75:e6:5b:ed:c9:3d:11:41:91:49:4d:28:ac:a3:0c:
20:1e:27:e0:2b:40:75:55:1e:77:76:a5:56:b7:cd:65:18:49:
d2:c0:84:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:40:40 2024 by rpki-client on console-ams.rpki-client.org