Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/5B7kgvwgCIjrwmvVE8IkLksSpgM.roa
File: 5B7kgvwgCIjrwmvVE8IkLksSpgM.roa (raw, json)
Hash identifier: /M85zSGkovhK+upABkZ/9nhyzKjVTj9s8TgyXOQzwaE=
Subject key identifier: E4:1E:E4:82:FC:20:08:88:EB:C2:6B:D5:13:C2:24:2E:4B:12:A6:03
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DCB23C9242C27F92AB38FD03221DE
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/5B7kgvwgCIjrwmvVE8IkLksSpgM.roa
Signing time: Sun 01 Jan 2023 23:14:50 +0000
ROA not before: Sun 01 Jan 2023 23:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200967
IP address blocks: 213.14.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:cb:23:c9:24:2c:27:f9:2a:b3:8f:d0:32:21:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e41ee482fc200888ebc26bd513c2242e4b12a603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:99:78:c9:92:9e:6d:04:69:d5:b0:ac:c1:a3:
19:55:cb:9a:e6:a9:76:c9:e7:09:ed:39:d9:92:b6:
67:b3:29:a2:b9:a8:25:33:cd:da:08:19:be:c0:57:
73:9d:fa:89:dd:75:02:84:a5:e0:d2:99:5a:78:7f:
bf:7d:10:a4:71:bd:ed:94:86:ce:2b:a7:a1:19:4f:
89:d9:b1:be:b4:59:19:e7:91:54:73:dd:f9:4a:e4:
10:bf:be:55:38:a2:e7:8b:0e:18:ac:fa:0b:e4:ac:
9c:3c:58:df:b7:9d:1e:fd:d0:58:24:0c:25:ee:d7:
3f:ab:b5:10:39:aa:4e:34:6e:71:c3:58:f7:5e:08:
0a:e6:a1:93:0d:0d:1a:91:05:3f:0a:1f:b2:b6:63:
90:66:74:a2:e7:80:0a:ad:71:6a:6e:17:40:aa:87:
a0:53:80:c8:34:89:08:9a:cc:f5:72:a6:28:fe:bf:
4d:30:eb:c9:fe:da:12:04:2d:31:91:43:69:5b:4e:
f9:24:75:b1:97:0a:4f:91:6b:b6:1f:6f:e5:18:94:
49:44:fa:e0:ae:5d:44:25:6c:fe:ce:c0:05:47:dc:
98:71:3d:6d:16:0f:57:5d:09:52:4d:3c:3f:a2:b3:
00:1b:6a:b6:d8:0f:98:18:a2:64:75:f2:69:1b:b9:
5d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:1E:E4:82:FC:20:08:88:EB:C2:6B:D5:13:C2:24:2E:4B:12:A6:03
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/5B7kgvwgCIjrwmvVE8IkLksSpgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.14.227.0/24
Signature Algorithm: sha256WithRSAEncryption
63:b9:93:79:ef:4e:14:98:24:f1:b5:76:ec:12:54:60:b0:df:
e7:47:74:12:60:b1:e4:79:c3:a6:4e:ee:97:7d:80:7c:41:9e:
15:f8:25:b1:f8:06:98:f3:d6:5c:90:24:f0:5d:c9:e0:b1:1c:
38:d4:a1:dd:36:39:57:ac:bb:3f:42:f4:34:1c:7a:65:20:dd:
87:1b:47:9f:f5:79:07:0e:e6:07:2a:25:29:df:31:35:9e:b4:
6a:c0:4a:51:81:95:a8:dc:80:6d:ff:0c:14:f8:87:28:b8:7a:
f1:ab:ad:df:c5:ea:72:27:a3:b2:67:80:8c:4f:7d:35:60:56:
e8:2c:09:12:b3:70:8e:90:37:97:cd:1a:ba:4e:90:f2:16:6c:
1c:dc:c0:ac:16:d6:91:4d:7c:d1:8c:15:15:ea:58:be:6e:b6:
2b:7d:c4:37:17:2f:e8:cf:8e:c8:0e:5a:c3:d2:f1:90:45:0d:
0f:f9:f9:77:29:6c:da:ac:10:02:53:eb:0c:d5:2d:28:c3:d2:
a7:a9:f4:dd:58:ab:86:0b:71:89:c1:79:90:ba:d8:a0:ae:2f:
5c:1a:c7:52:8b:d6:39:f8:7f:4c:e8:e2:9a:5e:22:e1:a4:54:
22:93:31:01:98:63:88:29:e2:97:7f:d7:9c:ec:ba:2a:31:15:
e3:58:f8:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org