Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/aygwEXaKtqhjBz1XKUlzGiTwufE.roa
File: aygwEXaKtqhjBz1XKUlzGiTwufE.roa (raw, json)
Hash identifier: B3T+TrLgz+4dkKeO5oe5jCjSEhY4W6laDddxbOeJjH8=
Subject key identifier: 6B:28:30:11:76:8A:B6:A8:63:07:3D:57:29:49:73:1A:24:F0:B9:F1
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DCE3B650BBDA2A35A24DC7A267864
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/aygwEXaKtqhjBz1XKUlzGiTwufE.roa
Signing time: Sun 01 Jan 2023 23:14:50 +0000
ROA not before: Sun 01 Jan 2023 23:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203925
IP address blocks: 213.14.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:ce:3b:65:0b:bd:a2:a3:5a:24:dc:7a:26:78:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b283011768ab6a863073d572949731a24f0b9f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:8a:b0:e9:06:ed:fe:e5:b3:a0:8c:8c:16:32:
43:c5:b8:fe:b1:02:0c:02:86:07:8e:1e:40:a8:ed:
6f:dc:8e:a9:67:e2:2e:04:8c:11:05:77:2a:76:4e:
a5:ed:89:a3:83:00:de:d1:12:5c:70:25:7c:0b:e6:
97:e8:1e:70:51:3b:36:09:66:88:a0:26:0e:ca:71:
da:a6:0c:dc:f3:73:ed:67:d6:10:18:d8:26:bb:e4:
33:37:2c:4b:b1:aa:b8:b3:15:0b:0c:40:45:04:55:
6c:03:47:2e:0e:da:f1:65:5d:18:e9:24:f3:7b:41:
51:08:a3:f9:eb:c0:5e:be:95:99:37:d1:be:4d:9f:
aa:ad:70:d8:2a:ca:a5:8c:94:e6:40:6b:d4:6d:3e:
cc:78:01:c9:71:7d:f3:2e:32:51:53:27:51:10:d4:
b5:d0:73:9b:ae:f2:5a:88:63:1a:92:1b:59:31:ec:
11:07:3a:ba:6b:47:cd:aa:6b:72:4e:9f:04:1b:2c:
c9:82:e3:d5:0d:d7:c8:22:f0:ed:5e:c5:2c:1b:5b:
26:7f:7d:9d:b4:0b:8a:b7:a6:e2:9a:39:68:f6:49:
9f:e8:7c:31:64:04:47:41:b3:a7:ba:0c:20:16:57:
1a:ad:1a:8d:0c:32:11:f2:24:75:53:20:e3:a4:e3:
7d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:28:30:11:76:8A:B6:A8:63:07:3D:57:29:49:73:1A:24:F0:B9:F1
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/aygwEXaKtqhjBz1XKUlzGiTwufE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.14.224.0/24
Signature Algorithm: sha256WithRSAEncryption
02:2d:bc:04:c1:d0:9d:de:27:c2:a6:92:2c:2e:12:25:69:ad:
38:0d:3f:74:61:6c:5e:ba:92:8a:7a:d2:ae:40:a2:9f:a8:28:
d4:97:cb:d9:14:7f:1d:77:ef:b9:ec:97:d7:09:25:9e:5b:4e:
bc:48:56:ca:1b:0a:45:ab:78:fc:86:c6:de:77:a8:07:44:26:
85:bf:e6:4b:28:22:ca:75:09:a6:e6:6f:e4:b3:7c:02:52:b1:
94:5a:97:ab:37:b7:58:a5:d3:9f:f0:2b:90:23:7c:9a:b0:bc:
31:45:26:ee:ba:78:be:53:e9:35:14:98:0a:ec:b4:39:53:2e:
87:d8:1d:24:59:f8:b1:d9:92:b5:19:b9:04:8b:d2:a3:68:36:
a6:91:23:ca:76:5e:29:3b:30:05:78:37:ef:21:4d:b3:83:25:
76:f5:7b:b5:62:05:eb:f1:3a:55:0e:df:a0:14:8c:64:ad:81:
7a:36:57:96:f1:11:6d:06:48:6f:b7:c0:c0:5c:09:2c:46:3c:
95:64:ff:22:56:a3:59:0d:3f:18:52:8d:55:60:4a:91:bc:19:
dc:f2:24:44:29:c0:7c:19:02:f7:65:0d:4e:7d:db:39:c3:6d:
9d:30:39:a2:10:be:ed:44:1d:12:9a:46:ad:d4:64:39:92:ff:
8a:e3:07:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org