Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/RfxYXaCUBerL4KH03krs2YvcTbw.roa
File: RfxYXaCUBerL4KH03krs2YvcTbw.roa (raw, json)
Hash identifier: UVvNpJq5ziWYlSMWTKggwa1P+XcgqcWkgTFWDrnbfbk=
Subject key identifier: 45:FC:58:5D:A0:94:05:EA:CB:E0:A1:F4:DE:4A:EC:D9:8B:DC:4D:BC
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 01914D21159EDAFFB8E0C55B89F4C57368B5
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/RfxYXaCUBerL4KH03krs2YvcTbw.roa
Signing time: Tue 13 Aug 2024 19:04:59 +0000
ROA not before: Tue 13 Aug 2024 19:04:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214368
IP address blocks: 213.182.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Aug 2024 14:21:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4d:21:15:9e:da:ff:b8:e0:c5:5b:89:f4:c5:73:68:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Aug 13 19:04:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45fc585da09405eacbe0a1f4de4aecd98bdc4dbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d4:d9:be:b9:d7:e5:6c:24:8a:eb:cb:8b:e8:
2e:b5:72:a9:f1:69:05:b5:27:15:54:1a:bc:e3:27:
b4:dc:14:bd:81:55:32:df:73:e1:ac:6b:71:0d:1b:
60:17:61:4f:24:d0:a4:ef:49:7f:4a:94:41:e1:3b:
a9:4e:9b:2d:fe:bd:8c:c8:0e:cf:b1:a1:aa:82:51:
8b:eb:6a:a4:44:e1:1a:da:79:e6:e9:fb:b2:79:1b:
6a:22:80:24:e3:78:11:a6:c2:db:a0:ea:4d:6c:69:
55:59:bf:0a:ab:07:e2:9c:85:cf:ce:21:29:77:ba:
fa:52:7e:6e:1c:72:07:a8:57:74:5a:16:f7:56:a0:
f0:4e:da:01:2b:8a:ad:0c:00:46:19:50:33:0e:81:
fc:58:12:2e:0e:fd:96:98:db:44:7e:64:1e:4d:34:
97:a5:79:a3:be:b5:3e:b4:c2:c5:5e:b5:07:ad:97:
6f:0b:69:d3:16:43:f4:f0:56:c2:04:56:96:c9:ad:
f1:07:ff:dd:a3:3b:d0:3a:62:98:76:62:e5:9d:4e:
62:e0:1b:b8:5d:24:17:d3:2b:b2:b2:13:d9:1c:35:
00:38:15:18:ca:bf:4c:51:3f:e0:d6:78:27:7e:90:
a7:68:ff:bf:c7:4a:53:b7:05:e5:8b:70:f1:37:47:
45:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:FC:58:5D:A0:94:05:EA:CB:E0:A1:F4:DE:4A:EC:D9:8B:DC:4D:BC
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/RfxYXaCUBerL4KH03krs2YvcTbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.182.202.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:6d:7f:52:be:3a:66:78:49:73:e1:89:7f:c2:87:ff:7b:1d:
13:ec:36:10:60:df:11:1f:cb:2e:57:59:fe:0f:e4:f4:4e:34:
4f:2e:9e:4a:a6:2e:ba:fc:30:54:27:52:9b:95:57:d3:e1:34:
64:e7:ee:a8:30:0c:ac:6d:02:69:a2:4c:f1:5f:cf:0d:3d:88:
f4:01:3f:f3:0c:30:66:ba:c0:2d:12:32:6a:99:99:23:b0:c4:
16:f8:03:66:a5:f6:e4:71:fd:87:8a:99:9e:7e:99:a6:76:41:
73:66:9d:b8:4f:63:9c:9e:5d:e9:ea:d0:53:fd:fb:89:60:ed:
07:38:e4:22:77:5f:3f:30:14:f6:61:4c:fa:b2:0f:06:70:fe:
ec:c5:a0:24:29:b8:30:95:41:d2:8e:c0:3a:4f:cf:b6:e9:14:
14:26:89:52:35:18:93:de:6d:37:53:a1:58:cc:f4:dd:a7:04:
60:2c:71:b4:91:54:ad:3e:f2:8c:d3:81:be:89:06:c2:e4:f3:
92:4a:42:80:c0:8d:45:a6:66:39:8b:16:4e:c7:af:0b:76:64:
17:37:eb:b8:2c:c5:b2:22:1d:53:9f:14:6f:e3:78:a3:a1:59:
be:db:ed:4b:f2:2f:0c:4a:83:17:cd:e2:fe:28:6e:0e:12:5f:
c8:57:1f:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 27 18:20:06 2024 by rpki-client on console-fra.rpki-client.org