Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/EMZaKL4VNayf1jQf-IM5bJFha3I.roa
File: EMZaKL4VNayf1jQf-IM5bJFha3I.roa (raw, json)
Hash identifier: Dpt+t+/hJTUCZk63TlEitWlVL1IhEY4j/pxdRVDAC1s=
Subject key identifier: 10:C6:5A:28:BE:15:35:AC:9F:D6:34:1F:F8:83:39:6C:91:61:6B:72
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 018572BA60CEAAE832F471BABC737F443F7D
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/EMZaKL4VNayf1jQf-IM5bJFha3I.roa
Signing time: Mon 02 Jan 2023 13:44:55 +0000
ROA not before: Mon 02 Jan 2023 13:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50256
IP address blocks: 213.252.240.0/24 maxlen: 24
213.252.241.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:60:ce:aa:e8:32:f4:71:ba:bc:73:7f:44:3f:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Jan 2 13:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10c65a28be1535ac9fd6341ff883396c91616b72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3a:36:3f:cd:5b:c7:80:2c:9a:25:fe:8c:47:
80:13:71:26:be:8b:9e:3e:cd:37:44:32:29:df:a9:
4f:86:3b:0d:ea:97:9c:75:3f:a3:e4:10:12:30:00:
6b:5a:28:41:61:8f:f5:4f:a7:1a:b9:af:f4:5e:6a:
99:d9:df:96:75:3e:a1:3f:29:89:46:21:e6:05:70:
13:97:e2:82:ba:82:44:b3:06:34:05:9c:5a:cb:15:
33:da:cb:47:0b:7e:af:fd:40:af:70:a5:3c:c6:18:
95:21:63:ce:b3:a8:45:71:90:69:5a:b9:36:b0:ab:
6f:af:32:ab:39:c1:a5:22:7d:85:b4:70:0c:2e:56:
c0:89:43:9d:69:0c:40:f4:02:c0:a7:51:e7:68:08:
6e:ef:98:95:2e:64:de:19:44:6e:1a:bf:06:ac:43:
62:49:e4:eb:e1:72:ac:73:d6:84:f7:b9:f6:2a:e0:
ee:d2:db:f1:86:92:4a:59:43:de:cd:ba:2a:12:9b:
81:3a:3c:f7:73:47:b3:6d:d7:81:05:94:22:ac:66:
cd:fc:a9:03:5e:f8:ef:34:7e:52:fa:f5:3b:04:b9:
a8:ee:9a:e2:46:fb:4c:f5:c5:8a:f9:7a:b7:78:f1:
02:36:b8:59:c6:eb:0b:89:f1:78:49:c5:e8:9b:08:
8b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:C6:5A:28:BE:15:35:AC:9F:D6:34:1F:F8:83:39:6C:91:61:6B:72
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/EMZaKL4VNayf1jQf-IM5bJFha3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.252.240.0/23
Signature Algorithm: sha256WithRSAEncryption
52:4b:6b:7a:91:c3:18:cf:52:c7:03:93:f6:31:98:be:c1:0e:
82:99:14:ee:a2:d1:b8:66:5d:0e:0a:81:0f:16:ab:fd:4c:8b:
e4:c2:c4:0b:44:ad:0c:03:29:aa:d3:dd:d8:da:24:24:9a:2a:
34:eb:f2:12:d4:8f:3c:01:16:f4:68:16:f1:a5:37:c5:5d:09:
8c:7c:68:a8:16:47:90:34:7c:a3:f8:ac:ff:87:fa:c4:e4:48:
21:a1:96:6b:f1:58:29:86:92:03:c3:64:20:fb:61:f3:6b:8a:
4e:25:b3:26:79:75:25:0a:02:95:93:d7:31:6d:d2:cf:43:cf:
57:82:be:7b:8a:01:48:35:3b:4c:25:7c:f2:0f:85:ad:5e:c0:
74:63:30:31:d5:02:cb:fb:f6:39:40:51:ed:61:d8:d7:db:87:
36:d4:af:7b:4a:2c:49:8d:9a:ca:37:39:4a:48:88:4a:e8:1f:
3b:5b:d2:77:94:27:af:33:97:2c:89:36:9e:4c:90:ba:ca:9c:
0c:9b:0d:e4:5b:d0:39:8c:da:31:1a:e0:78:7c:e4:ef:a6:15:
b8:99:fc:3c:e2:9d:1d:cb:fa:b3:55:46:7b:ea:4e:f3:d9:26:
81:9f:39:cc:97:cf:0e:24:06:8b:d7:4f:87:19:80:b0:cd:74:
bd:b5:13:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:19 2024 by rpki-client on console-ams.rpki-client.org