Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/Xkfu6Mc4ElC42_AKdNhJI1adZmQ.roa
File: Xkfu6Mc4ElC42_AKdNhJI1adZmQ.roa (raw, json)
Hash identifier: uspan8H/6WBqbR3/dtqkKjMvXDELvX/1k5M31cJ9KKo=
Subject key identifier: 5E:47:EE:E8:C7:38:12:50:B8:DB:F0:0A:74:D8:49:23:56:9D:66:64
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DCF63703FBF74D4BB32488DBAD84E
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/Xkfu6Mc4ElC42_AKdNhJI1adZmQ.roa
Signing time: Sun 01 Jan 2023 23:14:51 +0000
ROA not before: Sun 01 Jan 2023 23:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205935
IP address blocks: 213.14.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:cf:63:70:3f:bf:74:d4:bb:32:48:8d:ba:d8:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e47eee8c7381250b8dbf00a74d84923569d6664
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:14:b6:c6:6e:a7:32:9d:e1:1a:c8:6e:ef:7e:
1a:b9:e4:00:3d:29:5d:67:a1:3f:9a:37:93:9c:ef:
4c:86:d4:34:3a:ea:6b:b3:04:14:fa:08:a6:bd:dd:
78:50:fc:ff:77:66:56:c1:98:bc:73:62:98:fb:d2:
38:4e:00:1e:ef:62:a0:57:33:1f:3b:52:45:e5:13:
b8:e1:1a:b7:a6:a8:82:38:35:85:16:3b:f5:fc:14:
e8:cd:cc:c4:ac:6c:c7:8c:54:a6:bb:71:9b:9a:89:
f8:fb:12:48:88:1e:87:1e:b7:f5:2e:2a:ed:22:c7:
65:bc:1c:31:9b:c6:fd:d8:db:8f:5a:7b:70:e6:32:
2b:05:41:ad:e1:1d:76:b1:02:14:53:83:6e:ca:2d:
41:e4:35:12:36:00:c9:2e:19:2a:af:0a:02:46:c0:
e9:e2:9e:f4:c9:42:ea:f8:90:b1:83:58:a9:e8:b1:
78:18:b6:6b:61:c8:03:95:84:15:e9:51:e9:c1:34:
ea:8b:3f:db:b3:c1:39:f9:98:53:bd:9f:18:ee:bb:
8a:7e:2f:8d:4e:56:40:07:4e:a1:68:74:7b:d6:c3:
00:23:ae:f7:ac:5a:7d:a0:42:2f:15:09:17:91:0b:
da:b4:ca:a6:f2:44:01:85:50:a0:21:cb:60:f8:9a:
04:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:47:EE:E8:C7:38:12:50:B8:DB:F0:0A:74:D8:49:23:56:9D:66:64
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/Xkfu6Mc4ElC42_AKdNhJI1adZmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.14.244.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:18:f5:43:41:f9:f0:2c:b9:9a:d2:8c:b1:51:08:8e:1d:cc:
d0:ca:1a:92:7c:c8:2b:7c:84:ad:da:68:4d:49:da:29:6e:e3:
d8:76:9d:56:6a:c7:f9:58:ed:58:32:c6:1a:f4:85:2b:b3:d0:
a7:62:4f:99:bf:c1:15:e2:9a:14:2b:31:ec:9d:b9:4d:5f:e6:
60:7e:17:ab:74:af:e0:26:f5:33:d8:29:71:1d:bd:63:fd:22:
05:9d:d0:52:d6:27:c0:7b:54:a3:85:10:ee:ca:18:98:c7:54:
85:02:40:13:c2:a0:ea:9e:4b:75:22:03:25:6b:a9:4f:7a:0f:
b5:15:17:0c:79:d2:29:40:e2:70:9f:44:8a:6e:13:3f:85:82:
1e:bb:65:4e:16:33:14:82:bd:fd:02:9d:65:47:f7:eb:6e:8f:
40:f8:01:49:78:06:52:79:34:18:df:c3:1c:12:36:04:03:39:
77:f7:a1:9a:44:bf:42:c3:5d:fa:90:21:d5:90:65:1d:0e:61:
81:38:c8:f5:32:cd:06:cf:44:1d:af:64:57:34:80:d7:3d:68:
d1:95:62:0b:83:a7:0f:71:a4:93:bd:b6:b2:e3:f5:14:23:b5:
99:c2:15:51:1a:e0:38:61:8f:27:b3:f8:6c:a3:fd:67:66:50:
f3:18:75:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org