Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/21kfAc6eBmdaPryQIBf3Tm3MCE0.roa
File: 21kfAc6eBmdaPryQIBf3Tm3MCE0.roa (raw, json)
Hash identifier: 9JC/CgvH0w20RDVK0DLhMLdFUoJKVGRIQMeEBrKIuYE=
Subject key identifier: DB:59:1F:01:CE:9E:06:67:5A:3E:BC:90:20:17:F7:4E:6D:CC:08:4D
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0190A1A61492652AD0C28183465EA721BC03
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/21kfAc6eBmdaPryQIBf3Tm3MCE0.roa
Signing time: Thu 11 Jul 2024 11:55:34 +0000
ROA not before: Thu 11 Jul 2024 11:55:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50053
IP address blocks: 188.240.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Oct 2024 15:14:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a1:a6:14:92:65:2a:d0:c2:81:83:46:5e:a7:21:bc:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 11 11:55:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db591f01ce9e06675a3ebc902017f74e6dcc084d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:3e:39:6c:d0:67:b2:b4:ba:4c:ed:cc:4c:12:
9a:0d:0b:ae:57:41:07:1e:2b:e5:56:dd:05:10:06:
7b:f0:bb:f3:8f:ec:70:a5:59:e4:c6:b8:a3:f6:1a:
ec:50:51:22:f2:89:a1:12:e4:15:31:01:71:09:ca:
80:10:4a:42:db:55:44:20:ae:e8:f4:2a:19:ad:f0:
ee:ab:1f:d4:d1:2f:de:f3:fb:2c:88:3b:fb:e0:f0:
c9:e6:7f:a0:19:02:63:24:9d:3c:59:4f:77:c5:cd:
bd:af:0a:ae:5a:2a:59:9e:82:07:e0:2b:29:ad:96:
0d:92:2d:fc:bb:83:f2:be:6c:ae:de:9e:e1:ff:a9:
f7:14:a8:44:e6:86:f0:b7:e7:09:df:93:0c:0f:eb:
8d:a4:0d:96:30:3b:be:c9:c5:ad:1e:1f:b3:80:e4:
16:72:f4:4c:d4:69:e1:0b:14:86:01:04:77:8f:ea:
20:55:b1:47:69:c3:bc:9d:26:6a:45:e1:86:00:d9:
e1:3c:db:3e:b2:b2:c3:52:9d:b0:fe:93:2f:d4:1f:
48:a8:4b:2f:c3:7e:b3:01:b9:5d:ea:f8:69:2b:6b:
b2:39:3a:50:9d:5a:df:1a:9c:67:0e:cd:dd:96:20:
03:34:7b:b7:f5:fd:14:20:8e:92:e2:79:73:dc:ee:
c1:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:59:1F:01:CE:9E:06:67:5A:3E:BC:90:20:17:F7:4E:6D:CC:08:4D
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/21kfAc6eBmdaPryQIBf3Tm3MCE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.240.213.0/24
Signature Algorithm: sha256WithRSAEncryption
97:24:82:ac:2d:1d:f6:44:40:cf:0f:71:f9:ad:69:b4:5a:23:
15:87:ab:f2:0b:77:a6:fb:cf:57:31:65:04:f2:76:d7:e3:8f:
28:e6:ba:b9:9a:f7:12:22:99:29:91:0b:94:1d:58:e6:03:f6:
7b:4f:51:5f:28:aa:bb:bb:46:06:74:17:4a:46:83:47:a0:92:
24:ce:25:9c:b4:78:47:2d:05:26:68:87:42:7b:2a:c9:a4:96:
72:bb:74:c7:1c:ac:1c:da:19:57:ed:00:ed:24:26:92:49:79:
34:9b:5d:56:5f:05:1b:6f:67:db:a8:de:78:dc:5f:0e:b1:4b:
2e:b8:40:9d:ab:92:c6:be:85:f5:c1:bb:90:54:ff:df:66:ed:
b1:6e:1d:4d:5e:db:cd:2e:6d:f1:aa:f1:60:b9:3c:c2:fb:f8:
a3:a4:e3:bf:56:d2:7b:d9:cc:ad:ee:c6:d5:19:2e:9a:ab:2e:
e8:64:de:57:26:b1:53:36:6b:17:93:52:3b:e4:2d:98:b1:0c:
03:8b:d9:80:a0:10:b4:63:38:c7:f3:62:84:d1:3c:3b:37:df:
8b:ff:92:82:7c:03:12:c6:0f:b0:de:61:a4:92:18:14:4c:04:
fb:47:69:e1:d1:b5:77:37:73:a4:a3:0f:a7:dd:2b:3e:39:61:
a3:d6:29:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 9 19:11:14 2024 by rpki-client on console-ams.rpki-client.org