Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/BffMZCxWEGZhEBjm8H-d3hNRCAA.roa
File: BffMZCxWEGZhEBjm8H-d3hNRCAA.roa (raw, json)
Hash identifier: I/SDW4G/6HCvG9ztAxwG+wO50QCOILVnH+WtSDgb8Jo=
Subject key identifier: 05:F7:CC:64:2C:56:10:66:61:10:18:E6:F0:7F:9D:DE:13:51:08:00
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 019011F172717298CC45190614DB3D822C03
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/BffMZCxWEGZhEBjm8H-d3hNRCAA.roa
Signing time: Thu 13 Jun 2024 14:12:34 +0000
ROA not before: Thu 13 Jun 2024 14:12:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209492
IP address blocks: 213.182.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Aug 2024 12:46:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:11:f1:72:71:72:98:cc:45:19:06:14:db:3d:82:2c:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Jun 13 14:12:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=05f7cc642c561066611018e6f07f9dde13510800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:88:72:5c:77:55:80:a4:98:5e:c3:27:6e:d0:
86:74:4e:e4:86:00:bc:5d:ef:28:1b:6e:df:17:70:
e2:f2:44:46:cf:b4:3e:4d:a8:0b:b8:93:06:22:6c:
1b:15:6a:cb:c6:ed:de:c1:7b:8a:2f:62:19:ca:a0:
4e:12:8f:3d:54:cd:f6:37:f3:a1:39:0d:c8:6e:ca:
95:69:a4:0c:5a:7c:cf:4a:15:cf:f2:2d:4e:ac:48:
c8:c2:45:d6:99:2c:75:5e:d8:c2:5a:0e:6a:aa:cf:
61:2b:86:2e:a6:52:7c:a7:bc:0c:bb:1e:07:f4:8b:
9d:f6:0e:ca:ff:e8:8a:66:31:3b:9a:f9:61:cf:ed:
e3:40:0f:81:12:8e:06:24:5d:0a:29:d3:45:47:b6:
f9:fb:52:bb:e6:90:90:d0:dd:d5:af:57:c9:57:b1:
43:41:ae:62:35:a0:ec:c1:90:89:80:00:d8:2b:6f:
c1:8e:33:7a:e3:43:d1:3c:4d:4a:ed:78:3b:0a:99:
be:7e:a8:77:e7:13:c7:6a:78:3b:d8:b0:1d:f0:3a:
8e:57:f5:db:5a:f3:b9:81:7d:8b:c6:54:f5:f0:58:
95:20:c6:9c:ba:85:99:a2:97:f2:64:30:77:67:f2:
6e:be:c6:e3:2a:9b:f4:66:d1:89:19:a5:1d:6d:ab:
1d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F7:CC:64:2C:56:10:66:61:10:18:E6:F0:7F:9D:DE:13:51:08:00
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/BffMZCxWEGZhEBjm8H-d3hNRCAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.182.192.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:6c:07:51:2b:b1:27:4d:85:98:b3:a6:d2:e8:fc:59:61:fc:
cf:ec:0e:b3:25:d4:eb:c0:78:68:9b:03:91:4e:eb:8f:ea:9c:
d1:89:52:fe:98:81:cf:fb:fc:9b:5b:70:df:51:1c:fa:e0:6d:
f4:84:ed:51:1a:be:1f:d7:62:f9:11:35:67:fe:6f:17:fd:b9:
4a:79:60:4d:5e:0e:16:c8:c0:b3:f8:e7:3a:c8:ab:eb:e3:2c:
fb:6c:42:42:43:37:01:df:9a:c8:54:73:f4:f6:e4:4b:f8:8d:
e9:11:31:f1:18:66:56:84:95:e7:26:15:1f:0a:0a:a5:2b:8b:
b1:38:7c:20:04:d2:22:ba:ea:37:24:44:30:60:d3:fa:1f:88:
b5:05:01:c6:31:cb:75:7c:76:70:c3:da:ea:4b:a2:b1:46:f5:
fb:59:b7:6a:34:ee:ea:f8:49:e4:ab:36:d6:f1:65:52:c9:44:
f0:5e:24:82:58:4b:94:2f:22:ce:0e:e5:bd:21:89:5f:68:3e:
5f:1b:78:ad:80:43:2b:dd:6b:5d:f2:16:a5:e3:1c:c0:a1:6d:
d2:16:19:95:0b:c6:c0:d3:44:89:9f:c4:a5:5e:31:3c:7e:b0:
86:21:95:c7:59:4a:df:b6:33:16:cc:5e:14:08:7b:9c:fc:9e:
e8:f9:6b:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 29 14:50:21 2024 by rpki-client on console-fra.rpki-client.org