Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/P2VkP16PHE1qf2gR2zOWMqwaEBk.roa
File: P2VkP16PHE1qf2gR2zOWMqwaEBk.roa (raw, json)
Hash identifier: YzYubVZ3P80wjGoEuNxHXc6SxOvmeX/oqBWKK4qxY9w=
Subject key identifier: 3F:65:64:3F:5E:8F:1C:4D:6A:7F:68:11:DB:33:96:32:AC:1A:10:19
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 0190ACCD9C63EC0D018EAD893A9DE11685FB
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/P2VkP16PHE1qf2gR2zOWMqwaEBk.roa
Signing time: Sat 13 Jul 2024 15:54:34 +0000
ROA not before: Sat 13 Jul 2024 15:54:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44620
IP address blocks: 213.182.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Jul 2024 12:33:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ac:cd:9c:63:ec:0d:01:8e:ad:89:3a:9d:e1:16:85:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Jul 13 15:54:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f65643f5e8f1c4d6a7f6811db339632ac1a1019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:61:19:5c:cd:47:4b:85:6e:ce:aa:df:c4:8f:
c1:45:11:34:f4:e1:92:2b:d9:30:44:30:5b:cd:67:
4b:8f:ac:e2:0c:c5:79:69:8b:b4:4e:27:30:50:94:
fa:ab:e3:47:bb:1c:7e:3d:ec:bc:17:99:9b:2c:8f:
b7:76:c7:68:df:09:e5:f9:01:6e:eb:51:4c:39:d0:
0d:c9:64:8c:23:20:66:8a:77:3f:cb:91:99:31:38:
fa:48:11:b0:1b:dd:d6:5d:f5:9a:04:5d:ec:13:a5:
57:71:52:0c:9d:3b:6d:1a:33:e1:65:ed:c6:59:cc:
45:35:12:f3:62:6b:64:b0:32:dd:ab:4d:38:33:12:
93:c9:5c:de:58:1c:12:e5:39:f3:77:02:2e:03:b1:
f2:d6:16:76:94:d7:7f:49:30:21:70:26:30:8f:24:
d1:f7:aa:c2:89:24:9b:b4:ee:a4:b9:16:7a:d5:50:
45:ba:82:f3:66:74:10:b1:81:fb:1d:cb:53:4b:1e:
14:cb:75:fc:42:e2:17:77:a8:01:42:d3:ab:28:74:
e0:b8:20:b1:0f:db:8c:79:08:6b:37:25:7b:fa:dd:
69:76:8d:4d:a2:9a:45:ac:ec:ad:98:ba:5a:8c:b4:
d8:64:bf:25:77:aa:c8:79:17:24:10:1d:d4:65:4f:
d4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:65:64:3F:5E:8F:1C:4D:6A:7F:68:11:DB:33:96:32:AC:1A:10:19
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/P2VkP16PHE1qf2gR2zOWMqwaEBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.182.204.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:97:14:b3:3c:d4:39:04:d4:7b:e9:1e:1d:76:69:36:f6:65:
c6:e6:2b:dc:1d:4c:22:b9:83:ae:45:89:b8:f5:f2:61:f4:a7:
31:13:a1:57:c6:f8:58:3c:e6:73:13:2a:38:f6:77:c4:c7:c8:
d8:36:86:e8:a5:3b:02:da:fb:3b:3e:36:3d:d3:7f:1e:fa:96:
9c:be:f4:cb:14:6e:44:ed:19:c5:fe:70:04:40:1f:89:e8:73:
97:94:dc:4d:ef:29:f2:2a:bc:ae:2a:cd:ac:95:2a:ed:f1:6a:
f3:ba:50:53:d8:fc:16:1e:e9:00:17:64:31:b5:78:a7:e6:27:
09:75:5d:78:be:55:c9:19:6b:51:62:c0:62:0b:67:2b:63:92:
35:48:00:71:13:04:e8:2c:fc:22:d6:d2:5e:6d:7f:8b:ad:2e:
aa:d4:05:2c:2e:82:e5:3e:3b:8c:4c:59:d2:6f:a8:c4:3e:fd:
db:2d:6e:49:37:f7:e8:0d:c4:87:c9:cb:6b:17:b8:46:1a:be:
1e:86:8c:44:62:11:98:ac:b3:d5:d6:4e:d1:d0:86:27:81:38:
5a:45:a6:e5:84:c3:a2:14:f0:55:a5:87:a1:c9:ba:18:a3:76:
53:3a:a7:7c:23:51:63:c4:28:3c:e3:3a:e1:1b:ed:98:f9:51:
53:9d:bb:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 19 15:54:57 2024 by rpki-client on console-fra.rpki-client.org