Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/KgJX0CFMR4ez0hl0SMZUBnKZgU0.roa
File: KgJX0CFMR4ez0hl0SMZUBnKZgU0.roa (raw, json)
Hash identifier: ONjEcJaOx11i0cU+AFMaU8YNEDP4SVB41dZeoakHhis=
Subject key identifier: 2A:02:57:D0:21:4C:47:87:B3:D2:19:74:48:C6:54:06:72:99:81:4D
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 018AEA8418DF49F80630BA21E92637737417
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/KgJX0CFMR4ez0hl0SMZUBnKZgU0.roa
Signing time: Sun 01 Oct 2023 09:14:00 +0000
ROA not before: Sun 01 Oct 2023 09:14:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 213.137.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ea:84:18:df:49:f8:06:30:ba:21:e9:26:37:73:74:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Oct 1 09:14:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a0257d0214c4787b3d2197448c654067299814d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1b:31:9c:58:fa:45:30:90:bc:c2:2f:50:f8:
dc:ea:b1:00:23:14:d8:e3:16:40:df:0d:0a:dc:fb:
27:b8:24:a6:1e:97:ad:2d:52:75:3d:74:e7:59:a0:
f8:28:58:58:c2:40:61:fc:6e:2f:ed:42:3c:80:a3:
f2:79:83:d6:b1:0e:70:76:f4:7c:1e:98:11:d1:cd:
2f:b1:13:b1:f2:c4:cc:21:0d:93:56:2e:87:f0:e7:
90:13:55:c0:89:15:3b:3d:b9:48:40:b1:17:47:36:
ce:07:2b:09:57:fe:0e:f0:20:f8:80:c8:99:bb:c7:
09:27:63:bd:f4:0a:4e:d4:3a:dd:07:ee:7c:e7:66:
8d:48:47:f1:d0:53:0d:44:91:b8:31:c7:85:03:32:
01:35:f9:30:75:f7:04:e4:5c:53:74:f3:cd:e0:8b:
ae:7d:6d:69:bd:e9:19:2e:58:53:54:fa:fc:9d:07:
92:91:3a:63:68:e7:55:37:8d:e0:cb:ef:20:91:d6:
92:86:e9:68:69:bf:79:f3:c1:35:92:4c:e5:9f:18:
a4:7c:c8:8d:cd:15:11:9f:15:a0:22:8e:35:3e:33:
02:95:81:e3:a0:16:9d:d6:d3:76:2f:69:ae:98:bf:
0c:53:03:c8:da:e1:76:aa:98:8a:4f:25:df:6f:5c:
84:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:02:57:D0:21:4C:47:87:B3:D2:19:74:48:C6:54:06:72:99:81:4D
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/KgJX0CFMR4ez0hl0SMZUBnKZgU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.137.82.0/24
Signature Algorithm: sha256WithRSAEncryption
90:61:5b:b0:95:3c:12:0c:46:13:7f:c1:7b:a5:5a:14:c5:c3:
ba:38:70:f1:9b:04:e5:dd:26:d9:78:12:1e:2c:8e:2f:b5:33:
17:f7:e7:7e:88:2f:cc:f5:d0:9b:a3:ff:f1:59:02:44:e9:c3:
47:ae:17:fc:3b:0a:d9:50:0a:77:cd:60:43:8c:d4:b4:31:cc:
e2:07:eb:23:e0:6a:fd:31:f1:39:56:c8:2d:51:db:df:9e:58:
18:6d:ac:50:48:9a:45:2a:9a:bb:4e:d9:92:06:2d:0a:40:e4:
b9:98:3a:92:c7:92:fd:31:a3:d9:7e:ff:bc:9c:cb:5d:62:9c:
89:f2:85:21:eb:14:ca:ee:d4:c6:5e:e0:74:b2:37:6d:fd:44:
6b:05:c0:c4:f2:9c:62:31:71:64:9d:49:61:e3:e0:fd:ed:83:
49:03:a5:b7:0b:83:f2:94:83:45:2a:2b:94:ba:b0:27:f4:13:
43:56:2f:68:84:20:a1:ed:07:4e:e0:ee:e9:1b:b5:a8:03:4f:
50:6b:88:f7:53:bc:bf:9c:52:d5:59:8b:f3:80:0c:92:40:81:
cb:1e:3e:f4:d4:76:33:c9:19:62:97:b7:e0:b7:cb:c8:84:d2:
b3:d7:c6:9e:2b:ea:a1:8a:62:5c:e7:d4:e9:b3:33:a7:57:ab:
2b:1c:85:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:38 2024 by rpki-client on console-ams.rpki-client.org