Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f444aa-ae8c-4d14-a3a3-49f65c6a48bf/1/IYyjGFZapRlG2CVnelXvN-kPkGM.roa
File: IYyjGFZapRlG2CVnelXvN-kPkGM.roa (raw, json)
Hash identifier: oNIULVHc+fp3euMArwa8flo/Ursjzwdd+JWRjXByTts=
Subject key identifier: 21:8C:A3:18:56:5A:A5:19:46:D8:25:67:7A:55:EF:37:E9:0F:90:63
Certificate issuer: /CN=a8010ceb20f2e076a3f000271a5c375761bec2f5
Certificate serial: 018CCA29DDE86067BC1C2CC882EC586C26A6
Authority key identifier: A8:01:0C:EB:20:F2:E0:76:A3:F0:00:27:1A:5C:37:57:61:BE:C2:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qAEM6yDy4Haj8AAnGlw3V2G-wvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f444aa-ae8c-4d14-a3a3-49f65c6a48bf/1/IYyjGFZapRlG2CVnelXvN-kPkGM.roa
Signing time: Tue 02 Jan 2024 12:33:10 +0000
ROA not before: Tue 02 Jan 2024 12:33:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39151
IP address blocks: 213.175.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Jan 2024 16:15:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:dd:e8:60:67:bc:1c:2c:c8:82:ec:58:6c:26:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8010ceb20f2e076a3f000271a5c375761bec2f5
Validity
Not Before: Jan 2 12:33:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=218ca318565aa51946d825677a55ef37e90f9063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:23:63:c4:b6:73:ba:43:23:2b:6c:1b:d0:61:
c8:d1:7c:1d:4a:88:bc:b6:73:d0:b0:12:77:f0:67:
37:41:62:d5:b1:fe:c3:71:37:e9:28:d6:68:a1:fe:
25:e2:74:36:fb:f8:e8:1b:e7:da:d5:24:11:fd:50:
a6:27:ad:2e:1b:45:ed:b3:34:d7:b6:0c:04:f1:47:
94:ee:97:9b:1d:40:ef:9d:e7:65:30:35:8e:72:75:
00:bc:49:ba:7a:b1:59:f4:75:7d:5b:2e:ba:6b:fa:
cb:7d:9f:94:fd:d1:10:74:2a:2f:2d:17:7f:f5:b5:
e2:64:83:5f:96:1d:03:8d:50:71:89:e0:77:cc:d5:
4f:7e:70:6d:88:48:3e:3a:6c:36:4b:0b:bb:0c:ae:
a2:5e:f7:53:d3:e4:2f:da:32:c7:02:99:1b:be:84:
d0:75:e8:60:3b:8a:4b:3a:88:5e:42:48:ea:aa:87:
0f:d0:a9:4d:25:84:c1:a5:a6:4a:6e:45:60:d0:6a:
91:26:e3:a8:dd:11:1c:f1:51:27:58:a9:d8:d9:cf:
5b:74:03:1b:06:82:d3:97:2f:ee:01:a5:b0:9f:45:
2a:ba:a8:98:08:37:b0:14:ef:45:31:fc:18:74:16:
dc:a2:fe:b4:cb:71:cf:d0:8c:c7:31:be:77:33:90:
98:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:8C:A3:18:56:5A:A5:19:46:D8:25:67:7A:55:EF:37:E9:0F:90:63
X509v3 Authority Key Identifier:
keyid:A8:01:0C:EB:20:F2:E0:76:A3:F0:00:27:1A:5C:37:57:61:BE:C2:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qAEM6yDy4Haj8AAnGlw3V2G-wvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f444aa-ae8c-4d14-a3a3-49f65c6a48bf/1/IYyjGFZapRlG2CVnelXvN-kPkGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f444aa-ae8c-4d14-a3a3-49f65c6a48bf/1/qAEM6yDy4Haj8AAnGlw3V2G-wvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.175.134.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:93:91:00:20:42:d1:2a:9e:c0:80:f5:ee:a7:ab:f4:01:0b:
33:bb:7b:03:f7:47:fd:86:8c:0e:91:03:1f:a2:c4:c5:d3:72:
3b:9f:f4:96:96:aa:ad:33:6b:6c:98:b4:22:5e:6c:fa:51:06:
61:5a:5f:c6:3d:72:00:5a:32:9d:2c:e6:a2:f0:f7:1c:b0:d4:
cf:80:f5:f4:37:19:b3:6b:d9:1b:e3:7b:c1:5e:5d:3b:05:f3:
5c:01:2e:ad:3a:f6:ca:50:94:d7:15:ad:c1:ee:05:ca:2f:bd:
ee:10:19:16:2b:fb:21:92:ec:41:29:8c:7a:f1:09:3c:12:2d:
8d:71:bb:8e:b7:ab:1c:ed:e6:76:f3:4e:95:25:ff:82:f5:27:
16:4b:ea:47:b9:76:e9:16:38:55:14:6b:5a:ca:ea:c5:9a:e2:
68:eb:80:d3:c1:d5:71:15:b5:f1:a5:45:0a:76:2a:61:2f:03:
2f:c7:da:40:ff:5b:88:3e:5c:2b:cf:53:0b:d9:50:03:f0:67:
96:6a:c0:d7:6f:28:f5:85:39:d7:5f:a2:dc:58:8f:c9:7a:85:
3e:c5:c7:d0:6a:a8:76:72:42:9a:31:ad:7c:dc:32:c0:a4:11:
fe:1a:8c:07:67:40:a4:10:28:c9:d4:4e:42:de:29:1c:2a:3f:
56:43:dd:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 26 21:09:57 2024 by rpki-client on console-fra.rpki-client.org