Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/iu2rkIpWpXtEGMjoUTPmDNRkXEM.roa
File: iu2rkIpWpXtEGMjoUTPmDNRkXEM.roa (raw, json)
Hash identifier: z8cNaV8W8Xyi/QzPLOI/H2mS0oFYfgsyUYYF09yleBE=
Subject key identifier: 8A:ED:AB:90:8A:56:A5:7B:44:18:C8:E8:51:33:E6:0C:D4:64:5C:43
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DCC3C3EEDD4B65B32020C0E3FE90F
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/iu2rkIpWpXtEGMjoUTPmDNRkXEM.roa
Signing time: Sun 01 Jan 2023 23:14:50 +0000
ROA not before: Sun 01 Jan 2023 23:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203445
IP address blocks: 213.14.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:cc:3c:3e:ed:d4:b6:5b:32:02:0c:0e:3f:e9:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8aedab908a56a57b4418c8e85133e60cd4645c43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ea:b1:05:f1:ac:69:16:2d:d8:b5:7a:1e:76:
26:df:0d:65:1f:a4:d5:b0:98:c1:dd:21:89:1a:f7:
c0:04:de:02:1e:8c:e9:81:05:51:3d:8e:d4:90:ca:
e2:07:1d:6c:56:64:2e:04:c7:f2:8b:b8:d7:8d:7e:
ea:8c:a7:43:10:35:8c:9c:2a:ce:39:98:87:cd:84:
07:ee:8d:1a:c3:cf:85:54:1c:08:4a:19:4e:ad:33:
d5:9b:1e:ff:33:4d:ca:42:bb:bd:64:6a:a7:39:bc:
64:78:f8:ab:89:59:56:b9:49:f9:1f:41:8d:94:04:
1a:b7:47:88:34:1c:f0:c7:43:6c:e6:36:51:b0:f7:
b2:0e:65:a4:7d:a3:2a:69:9a:82:80:c9:65:3d:51:
76:7e:a4:b2:2e:fd:22:f2:ce:9e:3e:9c:3f:e6:39:
73:70:74:6a:0c:70:cb:40:f4:5d:0a:d7:e5:c0:09:
45:d9:fb:f6:7c:5a:0a:19:98:1a:29:6d:c7:09:ed:
8a:af:3c:d5:7e:33:f4:b8:50:5c:75:58:41:48:b7:
c8:e3:ba:00:d9:44:44:d7:bf:ee:78:e4:dd:19:11:
b6:54:11:57:97:36:50:b1:ca:48:8b:e1:cb:b8:53:
59:58:1d:7e:4d:5d:35:fc:9d:36:db:e4:80:b7:2a:
62:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:ED:AB:90:8A:56:A5:7B:44:18:C8:E8:51:33:E6:0C:D4:64:5C:43
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/iu2rkIpWpXtEGMjoUTPmDNRkXEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.14.248.0/24
Signature Algorithm: sha256WithRSAEncryption
51:bd:89:17:9b:7a:8b:81:20:5c:5d:a2:69:8c:ce:19:46:3d:
21:be:6b:5b:01:a2:76:b9:fd:22:06:1e:f5:75:d4:62:6d:9a:
a9:6b:57:42:26:7a:df:c3:f8:11:39:00:47:3c:17:28:9f:1a:
6f:8a:f6:f7:c1:d4:e7:98:15:25:fe:81:b5:a8:6b:95:df:2b:
b1:a3:a7:cb:37:3a:ce:aa:1f:cf:79:c0:c2:6f:63:2e:97:a0:
ff:7c:d5:d2:fa:2f:1e:81:4a:a2:33:e8:0a:e9:7f:32:e5:b3:
03:a6:41:3f:51:28:fc:88:f0:1a:33:18:03:70:c4:f4:52:f2:
75:37:95:ad:e5:cf:e5:fd:18:73:da:95:a8:59:62:40:14:98:
fe:8f:8a:96:7c:93:e0:0c:8c:c7:e6:33:5f:88:b4:74:fb:a8:
4c:09:59:5f:d5:24:b4:53:68:af:71:d3:81:8d:62:d3:3c:0e:
4a:0b:f1:b2:9b:1b:45:6e:fc:4c:57:7f:c1:5b:88:84:ae:b8:
15:f8:6f:6f:57:98:31:4c:ed:01:9e:b0:25:7e:63:c8:18:86:
6f:31:4d:3d:3d:59:15:c1:6f:12:a3:09:ba:63:ff:e2:57:bc:
d7:bf:91:b0:44:c9:e7:53:42:62:2a:e1:67:b2:43:ea:02:91:
fc:d3:83:fe
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvncw8Pu3UtlsyAgwOP+kPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkNTljNDMyM2Y3NjdjZTRmZmM4NWRhYWQyMDhiOTBjMDRm
YmQzZTkwHhcNMjMwMTAxMjMxNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YWVkYWI5MDhhNTZhNTdiNDQxOGM4ZTg1MTMzZTYwY2Q0NjQ1YzQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhOqxBfGsaRYt2LV6HnYm3w1lH6TV
sJjB3SGJGvfABN4CHozpgQVRPY7UkMriBx1sVmQuBMfyi7jXjX7qjKdDEDWMnCrO
OZiHzYQH7o0aw8+FVBwIShlOrTPVmx7/M03KQru9ZGqnObxkePiriVlWuUn5H0GN
lAQat0eINBzwx0Ns5jZRsPeyDmWkfaMqaZqCgMllPVF2fqSyLv0i8s6ePpw/5jlz
cHRqDHDLQPRdCtflwAlF2fv2fFoKGZgaKW3HCe2KrzzVfjP0uFBcdVhBSLfI47oA
2URE17/ueOTdGRG2VBFXlzZQscpIi+HLuFNZWB1+TV01/J022+SAtypiFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIrtq5CKVqV7RBjI6FEz5gzUZFxDMB8GA1UdIwQY
MBaAFI1ZxDI/dnzk/8hdqtIIuQwE+9PpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalZuRU1qOTJmT1RfeUYycTBnaTVEQVQ3MC1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mMDllY2YtZTgwNS00MTU4LWIzMTUt
ZjJiZTlmNmM2NjRjLzEvaXUycmtJcFdwWHRFR01qb1VUUG1ETlJrWEVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9mMDllY2YtZTgwNS00MTU4LWIzMTUtZjJiZTlmNmM2NjRj
LzEvalZuRU1qOTJmT1RfeUYycTBnaTVEQVQ3MC1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1Q74MA0G
CSqGSIb3DQEBCwUAA4IBAQBRvYkXm3qLgSBcXaJpjM4ZRj0hvmtbAaJ2uf0iBh71
ddRibZqpa1dCJnrfw/gROQBHPBconxpvivb3wdTnmBUl/oG1qGuV3yuxo6fLNzrO
qh/PecDCb2Mul6D/fNXS+i8egUqiM+gK6X8y5bMDpkE/USj8iPAaMxgDcMT0UvJ1
N5Wt5c/l/Rhz2pWoWWJAFJj+j4qWfJPgDIzH5jNfiLR0+6hMCVlf1SS0U2ivcdOB
jWLTPA5KC/GymxtFbvxMV3/BW4iErrgV+G9vV5gxTO0BnrAlfmPIGIZvMU09PVkV
wW8Sowm6Y//iV7zXv5GwRMnnU0JiKuFnskPqApH804P+
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org