Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/99be80-152c-4b65-8b32-0718aa8dd9a7/1/8ROcWHYibNzUlTmVG9m6TgfIUWk.roa
File: 8ROcWHYibNzUlTmVG9m6TgfIUWk.roa (raw, json)
Hash identifier: 2E6xJv7Ep0AcizXElL00xjkB4+vFlms1nEwVLD5Z1L0=
Subject key identifier: F1:13:9C:58:76:22:6C:DC:D4:95:39:95:1B:D9:BA:4E:07:C8:51:69
Certificate issuer: /CN=af934ec694af68134b7514c10dcd13857b459e38
Certificate serial: 018571FA1BA0171A2D24B53CDEFDE4E1F08B
Authority key identifier: AF:93:4E:C6:94:AF:68:13:4B:75:14:C1:0D:CD:13:85:7B:45:9E:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5NOxpSvaBNLdRTBDc0ThXtFnjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/99be80-152c-4b65-8b32-0718aa8dd9a7/1/8ROcWHYibNzUlTmVG9m6TgfIUWk.roa
Signing time: Mon 02 Jan 2023 10:14:54 +0000
ROA not before: Mon 02 Jan 2023 10:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61193
IP address blocks: 213.232.198.0/24 maxlen: 24
2a10:dc00::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:1b:a0:17:1a:2d:24:b5:3c:de:fd:e4:e1:f0:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af934ec694af68134b7514c10dcd13857b459e38
Validity
Not Before: Jan 2 10:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1139c5876226cdcd49539951bd9ba4e07c85169
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:76:58:ef:3a:ce:d1:4c:86:1b:f3:cb:bd:0a:
d0:1e:db:63:11:86:30:b2:f8:de:51:02:17:c3:f6:
39:8a:36:04:29:c1:43:b2:fa:eb:80:60:8b:ec:09:
3e:6d:3f:21:3e:04:b2:36:a7:a4:25:08:76:02:95:
4c:a5:31:18:f3:38:c9:1a:28:a9:3b:9d:33:3a:42:
9f:e0:6a:15:77:c4:cf:02:b1:9c:bc:3d:97:c0:6d:
86:4e:28:b0:9a:b5:52:ba:79:38:1a:9f:4a:9e:84:
88:24:ac:12:db:55:e3:80:e8:53:24:06:a2:58:ce:
a7:5e:bb:99:ea:fc:80:4f:ad:0a:1e:58:03:12:1b:
b4:4f:b7:d6:1e:98:12:92:3b:e6:c2:5e:d3:41:f9:
ae:ad:8a:2f:17:ab:e9:11:ee:13:95:d8:8b:fe:f7:
81:68:6f:26:6e:ec:c5:03:ed:09:c4:d9:00:fc:93:
fb:1a:b7:17:67:c1:76:7e:8a:67:96:f1:4d:8a:53:
6d:2b:f4:b0:44:bb:0f:ba:3d:0f:c5:e3:34:15:14:
8d:93:4e:39:75:ba:97:fd:5d:3c:ed:d5:33:ef:3d:
7b:7a:6d:13:17:1c:bb:ca:00:b5:65:9b:e0:9d:bf:
b3:68:7e:81:19:b8:fa:5a:c2:26:d8:db:f3:22:d5:
fb:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:13:9C:58:76:22:6C:DC:D4:95:39:95:1B:D9:BA:4E:07:C8:51:69
X509v3 Authority Key Identifier:
keyid:AF:93:4E:C6:94:AF:68:13:4B:75:14:C1:0D:CD:13:85:7B:45:9E:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5NOxpSvaBNLdRTBDc0ThXtFnjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/99be80-152c-4b65-8b32-0718aa8dd9a7/1/8ROcWHYibNzUlTmVG9m6TgfIUWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/99be80-152c-4b65-8b32-0718aa8dd9a7/1/r5NOxpSvaBNLdRTBDc0ThXtFnjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.198.0/24
IPv6:
2a10:dc00::/29
Signature Algorithm: sha256WithRSAEncryption
55:76:90:f0:f8:21:7b:a0:30:c0:e6:ab:8b:45:22:4d:91:60:
35:87:3b:f0:64:d9:4e:ce:04:09:37:0e:5e:cd:83:de:e9:ce:
53:5d:75:3a:47:07:63:71:a7:a3:15:6d:ca:c0:52:6c:e5:70:
a7:ea:de:af:2f:d7:c3:30:4a:0b:a2:de:be:5d:f6:24:b3:2a:
02:34:2b:b9:b1:98:e4:80:48:fc:36:97:2c:9e:85:94:cb:7e:
74:a5:46:22:9e:cb:96:d1:a9:e1:bc:7c:ba:4c:29:1f:ab:09:
94:4a:8f:27:88:e0:99:ff:18:8a:3d:d9:2a:63:6e:b9:15:c7:
08:3e:ae:c5:8c:2b:af:c2:4e:8c:42:19:9c:99:cc:86:2f:58:
9a:3a:6c:b1:96:26:c3:51:a0:18:38:ee:d1:1e:54:87:0e:0b:
fc:b8:34:96:f0:94:e9:5a:ea:e5:0c:19:db:91:3d:87:ab:88:
f6:a0:4d:a7:83:ec:18:2c:f4:be:89:af:2d:21:1e:e3:5c:29:
fb:f3:22:ee:b5:8f:b1:3a:5a:8d:a4:d2:5d:db:65:d6:8e:2f:
5a:5b:03:7a:be:cd:d7:3d:54:8c:af:6a:57:29:ef:32:d0:30:
70:d3:16:fd:2a:5e:ac:ec:69:21:cf:57:19:a1:2a:c6:56:52:
bc:2d:1e:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:37 2024 by rpki-client on console-ams.rpki-client.org