Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/AaiMoBLg_INkQfREJLTtLr70ud4.roa
File: AaiMoBLg_INkQfREJLTtLr70ud4.roa (raw, json)
Hash identifier: fOuiUSss8ap3g6/BuMcfpDL6z/36kRb39kcKKByaaO8=
Subject key identifier: 01:A8:8C:A0:12:E0:FC:83:64:41:F4:44:24:B4:ED:2E:BE:F4:B9:DE
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 0191A395666F98F5E69E8FA4A7C6E8CB4B3E
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/AaiMoBLg_INkQfREJLTtLr70ud4.roa
Signing time: Fri 30 Aug 2024 13:59:22 +0000
ROA not before: Fri 30 Aug 2024 13:59:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 213.182.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 31 Aug 2024 15:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a3:95:66:6f:98:f5:e6:9e:8f:a4:a7:c6:e8:cb:4b:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Aug 30 13:59:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01a88ca012e0fc836441f44424b4ed2ebef4b9de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:67:77:64:6c:62:88:7a:31:ac:ec:09:1e:31:
a0:c2:53:11:f2:e0:84:88:6f:3d:d2:b8:7a:7a:a7:
50:b0:a4:c4:f5:3a:0d:32:27:cb:19:33:b0:11:3f:
c5:8d:b0:33:4a:d3:65:aa:17:82:7b:4f:90:1f:6b:
8f:e0:e4:79:86:3c:e0:68:0c:3e:6e:16:84:b0:58:
53:d0:71:90:ab:89:bb:0a:80:03:0b:c4:d3:61:05:
64:74:a9:5f:a8:3a:ad:99:c6:b3:7a:40:67:ca:61:
c5:ac:35:d8:e9:ae:4c:91:82:90:be:03:a3:95:71:
cd:72:31:77:d4:ce:f9:e5:b3:07:a3:cd:c7:6d:9b:
97:be:48:12:46:00:28:2e:ad:29:9a:7c:1d:28:56:
1f:3c:54:d9:e4:aa:ee:53:59:a2:ef:91:95:1d:20:
a5:4b:6a:97:60:06:55:22:f7:bf:e5:ca:e6:3a:ca:
8f:85:c2:62:3d:5c:49:eb:63:2f:91:09:46:fb:0f:
f6:a2:9c:dc:d7:71:5e:de:74:30:1f:27:46:c0:20:
52:66:04:2e:21:ed:de:4a:5f:b4:69:c1:0d:0c:5f:
49:71:5d:72:c4:65:f5:6a:43:05:ab:17:21:15:02:
db:11:57:bc:42:58:37:3e:7f:82:a4:27:4d:a0:ed:
1e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A8:8C:A0:12:E0:FC:83:64:41:F4:44:24:B4:ED:2E:BE:F4:B9:DE
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/AaiMoBLg_INkQfREJLTtLr70ud4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.182.207.0/24
Signature Algorithm: sha256WithRSAEncryption
59:4e:ff:6b:86:6d:f3:d7:a6:9a:02:48:3d:55:4f:a7:04:7e:
1a:c7:d7:84:51:d4:36:5f:cd:a7:b6:01:47:57:29:0a:59:4b:
80:9d:7c:df:50:5a:c2:b2:af:3e:4b:fd:5e:83:c7:64:ef:9e:
7d:16:01:eb:de:05:94:3e:3d:37:62:ed:de:41:59:9e:78:96:
23:c6:d8:7c:5c:28:bb:e7:e7:08:8a:fd:ae:12:52:51:3c:51:
81:db:b7:2a:7e:70:e0:c7:a8:2d:26:9b:60:c1:04:31:0e:37:
ed:37:23:b5:74:0a:a1:88:17:c0:97:4d:1d:bb:d9:e1:2b:42:
49:33:99:85:33:6d:1f:1d:6f:b9:71:ef:f3:eb:bd:60:19:dd:
b5:de:b1:07:90:81:07:57:4f:2e:85:ce:12:e4:d7:8b:19:10:
e9:aa:6e:be:68:0b:57:e6:55:5e:c8:1c:b2:c7:71:19:43:89:
ea:8e:34:88:01:7d:a8:1c:e1:9f:ea:34:f7:9f:1a:b3:d7:e5:
24:42:9c:87:c7:00:7b:6b:7b:15:6a:4a:f4:7c:31:6f:bc:09:
42:82:5a:8f:ff:7a:ae:fb:0c:29:2d:18:0e:13:e0:21:a3:2e:
10:1b:2e:62:11:2e:6b:f4:4d:02:17:4e:0b:f9:8c:a1:27:6d:
73:b4:7d:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 31 16:28:24 2024 by rpki-client on console-ams.rpki-client.org