Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/Lp7N70oyzVD6n_T1ngTWqte8Vrg.roa
File: Lp7N70oyzVD6n_T1ngTWqte8Vrg.roa (raw, json)
Hash identifier: UmfyDHgWoBLf+UXg0MAl0cfBpvVXqKrEmTlmPk2jPyM=
Subject key identifier: 2E:9E:CD:EF:4A:32:CD:50:FA:9F:F4:F5:9E:04:D6:AA:D7:BC:56:B8
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 019108075953CB9ECCB2EE41AB6A4479FD71
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/Lp7N70oyzVD6n_T1ngTWqte8Vrg.roa
Signing time: Wed 31 Jul 2024 09:03:04 +0000
ROA not before: Wed 31 Jul 2024 09:03:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44620
IP address blocks: 213.182.196.0/24 maxlen: 24
213.182.200.0/24 maxlen: 24
213.182.203.0/24 maxlen: 24
213.182.204.0/24 maxlen: 24
213.182.206.0/24 maxlen: 24
213.182.208.0/24 maxlen: 24
213.182.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 Aug 2024 11:04:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:08:07:59:53:cb:9e:cc:b2:ee:41:ab:6a:44:79:fd:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Jul 31 09:03:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e9ecdef4a32cd50fa9ff4f59e04d6aad7bc56b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:42:46:17:68:7d:c7:a6:54:26:20:3c:5d:ee:
7a:27:6c:ca:e6:05:20:d9:dd:24:38:1b:a9:f2:e4:
b8:3f:fa:8c:c5:1d:dd:74:bb:73:6e:92:64:98:07:
c1:b4:7f:ff:92:b4:5a:60:da:51:55:07:a1:1d:56:
10:9a:c3:9a:b2:44:45:b7:f9:77:8e:bd:f8:f8:57:
4c:b1:fc:ac:d1:fc:02:1c:c1:2a:b5:1d:81:de:1d:
24:69:00:46:97:48:98:8d:cc:51:cc:d5:a1:8c:d2:
40:c9:1c:84:db:f4:4c:69:06:b8:33:67:ca:da:95:
f3:63:30:5a:1d:48:ed:d9:2c:d4:2b:0e:9c:5e:11:
18:66:52:26:17:9c:b0:e8:72:28:f4:9b:51:e7:36:
cd:30:bd:c8:d2:01:41:b4:61:9a:58:07:10:ee:6b:
8b:6e:57:cc:37:08:74:9b:eb:99:f8:4e:c2:80:27:
fe:02:21:5d:af:36:6f:46:39:98:f1:1b:2e:0a:86:
da:b4:4a:d7:74:cc:23:f5:7e:73:e6:28:60:af:a0:
f6:62:27:39:da:d1:6e:2a:28:73:b8:ef:26:4f:98:
ce:d0:4a:18:89:cf:7b:3e:42:d8:a1:3f:91:a3:b3:
c3:f2:04:f4:02:0f:c9:9b:9e:c4:59:2e:6c:ac:2d:
8b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:9E:CD:EF:4A:32:CD:50:FA:9F:F4:F5:9E:04:D6:AA:D7:BC:56:B8
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/Lp7N70oyzVD6n_T1ngTWqte8Vrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.182.196.0/24
213.182.200.0/24
213.182.203.0-213.182.204.255
213.182.206.0/24
213.182.208.0/23
Signature Algorithm: sha256WithRSAEncryption
93:12:3b:29:9f:68:e8:f6:3a:57:df:55:6a:df:4a:04:32:fa:
8b:b3:ff:a4:c9:8d:27:13:1c:0d:b8:a3:53:b1:b4:36:7c:26:
57:c9:c8:4a:ea:d4:ca:a2:0c:de:b0:78:f9:e3:db:b4:1c:01:
f4:de:e5:f6:f4:e3:4c:8d:48:b5:25:d2:cf:d8:dd:19:e6:35:
6f:3a:16:ee:73:62:10:08:ed:7f:4e:0a:aa:84:12:5f:f0:bc:
73:a2:e1:d2:dd:6b:16:81:49:1f:ad:33:5c:0f:8b:64:e3:7e:
b0:e0:e5:eb:95:f2:a7:f9:e0:b0:fe:dc:af:4c:09:d8:0f:82:
96:f4:6d:07:da:08:f1:f3:7b:d0:d1:09:f0:57:21:7c:72:65:
f6:58:9f:62:55:86:b5:e7:27:e2:4d:fb:75:62:62:13:21:82:
45:fc:d6:2f:6e:ed:ca:f3:2f:31:bd:c6:c1:4b:ca:a0:32:38:
6b:fb:ce:1d:f9:e4:29:c2:ea:bc:5a:41:d3:f6:ed:f2:47:cf:
93:db:8e:4f:2b:a7:d5:7d:1c:a0:73:a9:43:59:0f:e5:8d:15:
60:39:67:8d:80:ed:6c:88:db:91:1b:c6:6c:b7:b3:cd:ec:22:
ca:52:4e:3c:70:12:c9:3b:48:5d:8f:93:c9:f9:d1:90:68:3e:
ef:04:f4:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 3 13:29:01 2024 by rpki-client on console-fra.rpki-client.org