Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/fhvQ5WiUyCbIgcKYWY5xlaQBZP8.roa
File: fhvQ5WiUyCbIgcKYWY5xlaQBZP8.roa (raw, json)
Hash identifier: 92OEWjc5fnd2fcqhlbbRGjAoOztKlQJeFMbCZhkFZmo=
Subject key identifier: 7E:1B:D0:E5:68:94:C8:26:C8:81:C2:98:59:8E:71:95:A4:01:64:FF
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 01936D4F8CD25C50E7A2886E89DFE552F0FE
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/fhvQ5WiUyCbIgcKYWY5xlaQBZP8.roa
Signing time: Wed 27 Nov 2024 11:09:10 +0000
ROA not before: Wed 27 Nov 2024 11:09:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215523
IP address blocks: 213.18.240.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Nov 2024 11:23:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6d:4f:8c:d2:5c:50:e7:a2:88:6e:89:df:e5:52:f0:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Nov 27 11:09:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e1bd0e56894c826c881c298598e7195a40164ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4b:6e:b6:67:de:06:0f:54:19:bf:e3:21:e7:
db:bf:a1:d0:f4:06:87:a9:a8:68:fb:35:aa:33:dd:
74:ee:e5:3c:e3:d1:21:dc:45:35:dc:92:70:1c:3f:
4d:d3:ee:a8:7f:52:a6:c6:11:11:65:11:95:05:16:
e8:f4:41:da:d3:d3:2c:83:09:ed:1b:42:8a:a3:05:
c3:4b:d5:5c:8c:1a:d5:7d:11:a5:f7:49:00:72:70:
a2:21:05:2a:6f:51:54:dd:35:85:e8:15:7a:bf:4b:
55:4c:98:1a:a4:0c:0b:19:d9:14:21:8f:db:cc:78:
37:95:6d:46:2f:ac:48:64:12:3a:fb:3f:c8:36:72:
15:e0:96:0a:e0:0d:70:ce:a4:93:86:4b:33:ff:02:
39:22:3c:f2:62:b6:de:f7:97:57:23:14:11:4b:61:
93:d7:07:f7:3b:f0:90:91:cf:46:3e:17:ba:51:0a:
7f:94:f0:20:c1:e5:32:36:f5:9d:3b:9a:0e:58:9b:
84:80:9c:b1:79:f0:5b:a6:86:d7:9b:64:d6:73:91:
dc:16:a2:48:ac:d3:bd:af:15:8f:85:6d:29:e3:b0:
5a:a2:86:89:cc:e8:2b:a0:29:c5:01:67:10:4b:6c:
37:eb:81:c4:2c:0f:73:5f:08:05:ca:95:89:b9:9a:
c6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:1B:D0:E5:68:94:C8:26:C8:81:C2:98:59:8E:71:95:A4:01:64:FF
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/fhvQ5WiUyCbIgcKYWY5xlaQBZP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.18.240.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:03:76:8d:ef:57:cd:80:a5:c5:c1:95:36:0b:08:0e:80:d5:
1b:4b:48:19:f8:12:9b:bb:e1:eb:dd:0b:e8:76:a6:c8:0a:5a:
d1:65:c6:32:d3:b1:69:16:3f:55:c9:68:5a:9e:de:af:c5:bf:
83:02:c3:02:62:f8:5e:90:55:dc:65:48:5b:6c:46:38:5f:84:
04:67:75:5f:1d:82:b5:d1:bd:be:fc:5e:c8:f2:cf:f7:2e:25:
63:a7:72:83:15:8d:26:36:29:63:92:ea:5d:19:68:1d:03:5c:
05:27:fb:7e:af:da:f2:2c:9f:36:a1:2b:26:49:e4:70:96:57:
41:1b:94:b4:ba:3e:d7:e6:c5:a2:2e:e9:a3:f1:57:59:10:b0:
57:34:03:00:03:04:99:1b:69:33:a6:ad:c5:bc:e2:6f:9c:b5:
11:12:6f:60:31:5b:63:39:8c:c0:79:11:07:ef:c7:6d:3b:03:
44:8b:c2:26:07:bb:2d:75:ea:12:ef:34:ce:d9:6c:46:6f:aa:
0e:15:05:fe:c5:1b:b5:2a:6c:c1:74:f7:fc:1a:69:22:5c:df:
3f:92:07:fc:12:bc:9c:93:19:2b:e9:e4:dd:3c:2a:d0:74:86:
9e:28:ee:bb:1e:6b:c9:39:5e:f9:05:79:5f:1b:df:73:f3:77:
7a:52:80:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:16:49 2025 by rpki-client