Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/xFLLNyVa7wnbRW_wxfeVE3epaec.roa
File: xFLLNyVa7wnbRW_wxfeVE3epaec.roa (raw, json)
Hash identifier: gfJBGe11PdjGLFFGXAbXpAnjGaQ5Qk2FlRN0yWLYxkY=
Subject key identifier: C4:52:CB:37:25:5A:EF:09:DB:45:6F:F0:C5:F7:95:13:77:A9:69:E7
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DCD3D86A3A8B3C98BD05505C1E1FF
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/xFLLNyVa7wnbRW_wxfeVE3epaec.roa
Signing time: Sun 01 Jan 2023 23:14:50 +0000
ROA not before: Sun 01 Jan 2023 23:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203611
IP address blocks: 213.14.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:cd:3d:86:a3:a8:b3:c9:8b:d0:55:05:c1:e1:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c452cb37255aef09db456ff0c5f7951377a969e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:36:ac:d4:6f:7c:1a:85:5d:5b:39:e3:10:72:
9f:71:64:c5:3d:22:04:49:30:26:ed:e2:94:fb:a4:
9f:96:d0:b7:86:d0:70:24:ab:e0:8e:fb:f3:26:a9:
90:eb:51:79:d7:db:54:ea:9d:e9:2c:91:b4:4d:dc:
2c:60:44:a5:5e:c6:8c:e8:04:47:50:26:25:94:c4:
76:f0:da:56:ee:f6:f2:c9:a4:0b:5d:1c:85:fd:41:
c4:46:a4:ec:3b:4b:41:53:b0:d5:fa:4d:92:a3:6b:
07:c8:97:57:7f:e2:b6:7d:8c:1f:fa:b9:75:66:ee:
d9:20:16:ae:e4:35:71:c8:7a:65:3a:f3:4f:ca:a7:
9d:07:cd:03:8f:6f:6c:73:4c:c1:79:24:f0:74:87:
7d:66:37:6e:d2:b0:4c:65:4e:0b:55:98:e2:f9:62:
1c:81:5b:03:41:5a:12:69:e8:9b:3a:5a:0e:3a:6a:
0f:02:8e:bc:e0:a0:9d:e1:4b:13:3e:1f:02:e0:91:
a9:8c:62:46:e7:57:68:ae:46:90:04:91:75:af:81:
a5:98:41:e1:ab:73:6d:36:f1:88:cb:62:d5:29:a1:
c1:23:39:0a:d9:6b:85:9d:34:d5:b8:91:4a:4b:f4:
72:07:86:a8:51:bc:21:91:98:ee:ec:14:e6:e9:f3:
75:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:52:CB:37:25:5A:EF:09:DB:45:6F:F0:C5:F7:95:13:77:A9:69:E7
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/xFLLNyVa7wnbRW_wxfeVE3epaec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.14.243.0/24
Signature Algorithm: sha256WithRSAEncryption
31:2e:3f:7f:19:98:89:97:57:5b:02:f9:e5:da:fa:44:41:42:
cd:bd:c0:01:32:15:a0:17:d1:51:18:e7:a6:5c:90:72:67:b5:
0c:21:7e:e8:0d:b1:2e:20:ea:8d:21:3e:b0:4b:dd:9b:dc:11:
9f:a6:d4:76:41:f4:ea:bc:ad:4e:b0:f5:6c:23:a3:7b:79:87:
72:c0:c3:11:a6:22:ef:b0:dc:77:a6:dc:ab:4b:9b:27:88:d1:
29:71:e0:97:a2:0a:9f:34:ea:6a:39:76:f8:f6:ac:55:99:ba:
bf:65:df:a1:20:b7:47:41:b8:23:48:95:23:b8:98:4b:9b:30:
b6:d3:96:d9:4a:01:66:9c:da:8d:c9:c4:31:c0:24:24:76:83:
bb:ab:8e:30:98:41:ca:1e:aa:60:25:5c:85:82:e7:48:8e:f6:
00:25:2a:21:21:0e:5a:02:c1:17:d3:7d:9b:b9:71:e1:40:da:
d9:47:7f:75:48:c8:4f:d7:01:00:5f:b1:64:32:77:2f:7a:44:
21:09:18:df:3b:da:a2:26:fd:4c:44:70:0b:05:82:02:17:18:
df:3d:50:8e:03:46:4d:99:09:e3:38:fb:1a:7c:e4:8c:17:9c:
d3:b5:66:4f:5a:37:79:de:a9:2f:db:13:bf:4a:93:dd:75:8a:
d5:03:e0:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org