Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/LQnLwZOa9NeN8yRgwCv4xMerg6E.roa
File: LQnLwZOa9NeN8yRgwCv4xMerg6E.roa (raw, json)
Hash identifier: 9ObysP9QN38yW0Tkg7oO2v+aPRTsH2wwlgzbY99V8YA=
Subject key identifier: 2D:09:CB:C1:93:9A:F4:D7:8D:F3:24:60:C0:2B:F8:C4:C7:AB:83:A1
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 019160280B5424B15D55D6FBF7670C3C7036
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/LQnLwZOa9NeN8yRgwCv4xMerg6E.roa
Signing time: Sat 17 Aug 2024 11:45:22 +0000
ROA not before: Sat 17 Aug 2024 11:45:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44620
IP address blocks: 213.182.196.0/24 maxlen: 24
213.182.197.0/24 maxlen: 24
213.182.198.0/24 maxlen: 24
213.182.200.0/24 maxlen: 24
213.182.203.0/24 maxlen: 24
213.182.205.0/24 maxlen: 24
213.182.206.0/24 maxlen: 24
213.182.208.0/24 maxlen: 24
213.182.209.0/24 maxlen: 24
213.182.212.0/24 maxlen: 24
213.182.214.0/24 maxlen: 24
213.182.217.0/24 maxlen: 24
213.182.219.0/24 maxlen: 24
213.182.220.0/24 maxlen: 24
213.182.222.0/24 maxlen: 24
213.182.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Aug 2024 09:46:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:60:28:0b:54:24:b1:5d:55:d6:fb:f7:67:0c:3c:70:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Aug 17 11:45:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d09cbc1939af4d78df32460c02bf8c4c7ab83a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:fb:ad:03:66:37:83:07:df:14:22:ad:f9:ea:
85:b2:47:e8:65:e6:f4:b6:b5:9c:7d:2c:66:bd:96:
f1:6f:a0:40:67:43:e8:19:96:46:47:4e:48:84:61:
17:76:33:46:de:67:2c:1a:c3:64:ac:2e:7e:f9:47:
4f:47:d7:8a:08:f4:c9:83:56:0c:48:f6:7c:c1:31:
47:0a:13:3c:f9:42:49:32:22:11:d0:09:14:94:0f:
ba:64:82:dd:b0:20:a7:33:d5:95:f8:4a:25:0c:54:
a9:7e:78:f9:02:7f:ee:9c:5d:3f:37:b4:58:df:21:
56:af:80:a8:2d:5a:e3:7f:a0:4e:8e:7f:aa:2a:64:
18:0a:a2:5e:00:5c:c5:55:9d:a9:5c:f6:c1:09:51:
ec:3a:5f:3d:e5:f9:68:2b:f0:2d:cc:6e:a9:e3:0c:
69:64:4d:10:3f:8d:bf:dd:e9:eb:e4:b6:fe:91:45:
c5:ec:c5:43:9e:58:84:eb:28:2d:f3:67:ff:e5:1f:
58:e5:15:9f:aa:da:d2:6f:31:2e:92:79:53:7f:b2:
c2:05:8d:48:69:00:1f:c3:6a:a3:95:ee:31:66:5e:
9f:66:56:be:b3:e7:85:c7:28:28:90:b7:bc:1e:0b:
e4:3f:93:5f:a6:88:54:bd:7f:bc:aa:d6:2c:b0:ca:
6f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:09:CB:C1:93:9A:F4:D7:8D:F3:24:60:C0:2B:F8:C4:C7:AB:83:A1
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/LQnLwZOa9NeN8yRgwCv4xMerg6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.182.196.0-213.182.198.255
213.182.200.0/24
213.182.203.0/24
213.182.205.0-213.182.206.255
213.182.208.0/23
213.182.212.0/24
213.182.214.0/24
213.182.217.0/24
213.182.219.0-213.182.220.255
213.182.222.0/23
Signature Algorithm: sha256WithRSAEncryption
08:a0:c8:3a:e4:b5:58:39:50:18:47:a6:c7:e4:b8:96:c1:ca:
13:ca:d9:e5:fa:51:95:50:db:f0:03:40:f9:43:b3:71:b2:8e:
79:56:6f:65:17:21:8f:45:b6:09:51:64:5d:2a:68:d3:0e:b5:
fb:54:89:b9:cf:47:1a:cb:ef:0f:9c:12:41:a8:09:78:c4:92:
e2:c3:b0:f0:d4:2a:02:32:9c:cc:41:9d:17:26:52:08:11:06:
6d:4f:55:99:cc:7b:e5:4d:cf:b2:3a:66:85:9e:26:0a:63:24:
73:c7:b0:55:57:a1:88:cf:90:3d:6a:96:e5:7d:dc:2f:0c:17:
b0:0c:50:37:b9:69:05:1b:ba:44:40:bb:34:37:51:0c:fd:f0:
cf:6b:93:b9:36:1c:98:11:e2:ec:3d:55:90:35:7a:a1:8d:ed:
ac:be:57:bc:bc:d0:00:9a:67:96:cd:3b:cb:6b:64:1d:00:13:
a9:f6:fd:e7:49:0f:21:0c:2f:2d:a3:db:00:ab:2e:01:cc:37:
08:89:c8:f1:7b:e9:16:aa:38:aa:bb:ee:c5:98:b1:31:92:c8:
9a:7c:28:dc:40:4b:ea:79:0b:30:18:f8:26:31:0a:74:50:83:
29:c4:44:6c:95:90:36:e2:1e:b5:84:34:70:a4:5e:6e:69:ae:
cb:e8:d4:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 19 14:03:26 2024 by rpki-client on console-fra.rpki-client.org