Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/N2TnUwgs5cT_ObgrJGxjQZskGhg.roa
File: N2TnUwgs5cT_ObgrJGxjQZskGhg.roa (raw, json)
Hash identifier: Sa3ifpwLd4TkzBhApoH0u5K9RhB7EGyt23XNDx+myK8=
Subject key identifier: 37:64:E7:53:08:2C:E5:C4:FF:39:B8:2B:24:6C:63:41:9B:24:1A:18
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE64D9A062E2C6D5CCE85ADBD495EFC
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/N2TnUwgs5cT_ObgrJGxjQZskGhg.roa
Signing time: Sun 01 Jan 2023 10:35:10 +0000
ROA not before: Sun 01 Jan 2023 10:35:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21337
IP address blocks: 213.91.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:4d:9a:06:2e:2c:6d:5c:ce:85:ad:bd:49:5e:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3764e753082ce5c4ff39b82b246c63419b241a18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:59:78:33:24:08:d7:74:70:6d:31:3a:d1:f3:
1d:f5:70:0c:04:5b:2b:80:25:c9:89:d9:6a:f5:2f:
b0:37:1e:6c:bf:c1:f1:6d:e8:d5:da:9c:74:2e:9f:
2c:cf:7d:bb:b3:8f:4a:05:9c:54:44:ae:0b:b6:62:
b9:44:bc:26:63:3d:68:85:05:a0:e7:8e:5b:60:3e:
8b:14:6f:10:01:90:40:14:43:03:eb:e1:9b:0d:9c:
b3:de:37:48:f3:9d:1b:38:c0:da:53:56:3b:d3:5b:
aa:50:66:98:64:6b:ea:5d:5e:52:75:7a:91:a4:01:
41:af:eb:e4:15:91:f9:aa:dd:e5:1c:a0:f2:54:1f:
65:ea:f0:69:38:44:2b:42:d3:88:79:a7:7d:34:4d:
24:4b:97:b2:c0:ad:0c:a1:9d:b7:83:e9:6c:50:4c:
a9:b2:6b:4e:7e:c5:a6:6f:1d:ee:81:80:5e:61:77:
12:12:d5:c4:b8:1e:23:1d:34:6d:b3:3b:8d:8e:9b:
1d:69:bb:4f:98:c4:3a:ef:98:fd:7d:67:04:c6:6f:
2e:2f:36:19:15:81:47:fd:90:63:af:81:c0:e5:be:
da:80:73:38:3d:6a:43:04:8b:06:8b:99:d9:99:e6:
c3:4a:51:5d:14:dc:1d:73:bf:2b:48:fa:84:d6:48:
df:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:64:E7:53:08:2C:E5:C4:FF:39:B8:2B:24:6C:63:41:9B:24:1A:18
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/N2TnUwgs5cT_ObgrJGxjQZskGhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.91.196.0/24
Signature Algorithm: sha256WithRSAEncryption
54:b4:7d:14:81:a8:17:f2:50:65:4d:10:69:00:8b:4d:c1:eb:
9e:b6:5f:7e:2f:cc:a7:53:d3:a5:28:64:de:ff:6b:e7:8d:8e:
0b:8c:cd:75:b4:e2:4e:c9:46:58:c9:c8:be:22:79:59:48:33:
12:17:50:40:25:2f:79:98:cf:6a:d2:32:b5:8a:0d:e4:a9:e8:
ab:da:6c:46:28:02:7c:d3:e2:c8:66:25:c4:10:01:32:ab:85:
2c:ce:7b:5b:cf:cc:81:4d:60:bc:5e:74:c6:18:46:fa:77:34:
cc:32:2f:85:b9:49:1f:35:d1:61:a5:bd:4c:b7:9b:68:49:17:
de:2a:51:be:24:71:53:c6:5f:bb:80:d6:34:59:3f:58:28:00:
1e:42:51:c4:98:b9:f4:a7:81:fc:f0:12:90:7b:86:8b:88:d5:
f5:bb:18:1f:1b:10:54:99:dd:39:8c:b0:2e:b5:73:98:a8:bd:
f5:b1:69:74:fd:2e:30:25:16:9e:f9:34:dc:15:43:29:9e:7a:
a7:11:47:f2:d7:75:87:f2:49:b6:1a:28:ca:34:e7:9e:aa:7d:
a8:03:a4:75:a8:90:e4:ce:92:75:aa:00:76:0b:65:00:c4:0c:
21:45:35:01:a3:bd:15:20:83:9c:50:39:15:02:9d:4c:30:4a:
91:bf:35:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org