Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/LzbQ6ltA96dVWC1iSIT6PVVgwM8.roa
File: LzbQ6ltA96dVWC1iSIT6PVVgwM8.roa (raw, json)
Hash identifier: AtKWKi273vUzqds5K1ubfwe8y64wfVJdGS1iDCg5Q0c=
Subject key identifier: 2F:36:D0:EA:5B:40:F7:A7:55:58:2D:62:48:84:FA:3D:55:60:C0:CF
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 01872CF8177886F84E7A0773521B73287769
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/LzbQ6ltA96dVWC1iSIT6PVVgwM8.roa
Signing time: Wed 29 Mar 2023 10:44:29 +0000
ROA not before: Wed 29 Mar 2023 10:44:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212230
IP address blocks: 213.0.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2c:f8:17:78:86:f8:4e:7a:07:73:52:1b:73:28:77:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Mar 29 10:44:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f36d0ea5b40f7a755582d624884fa3d5560c0cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fa:8b:06:fd:cb:bb:66:16:61:81:6c:99:4d:
3c:05:a9:08:cb:af:f8:07:a4:19:07:ea:8c:a9:29:
e3:b9:b8:2b:71:d7:51:b4:0d:a3:20:7c:20:f6:e6:
35:e4:21:77:79:5e:63:14:03:cd:ef:47:2d:1f:60:
03:d5:36:ca:ad:cb:c6:e9:00:b9:52:e4:2b:0d:de:
39:2d:fa:56:06:a3:07:9b:e9:ff:05:21:bc:e7:4e:
e7:35:f6:45:3b:3f:8d:c4:87:15:14:13:d2:37:e4:
b2:4f:ce:48:59:70:21:76:31:3b:41:5b:a3:48:37:
72:a8:05:93:23:b1:07:36:3e:a3:10:9e:af:3f:30:
a4:e8:ac:ca:cb:47:6a:71:4a:54:9c:f0:95:f9:37:
32:77:0f:98:e3:5c:4b:5e:81:d2:73:6b:31:c2:35:
1e:0b:1e:65:3a:8d:59:bb:db:50:57:07:07:a3:7d:
6a:58:3e:06:b3:54:b1:a1:17:29:b0:f5:a3:42:31:
9f:53:2a:a5:54:6e:e8:47:6f:b0:61:9f:20:ca:a8:
46:d4:71:17:4f:32:1e:fe:ab:1f:08:98:a5:cf:80:
be:e3:29:6e:23:93:c0:bb:0e:d5:11:86:cd:7b:f1:
1a:b1:71:63:a7:ee:a4:f2:6d:27:c8:52:cf:d4:b3:
20:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:36:D0:EA:5B:40:F7:A7:55:58:2D:62:48:84:FA:3D:55:60:C0:CF
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/LzbQ6ltA96dVWC1iSIT6PVVgwM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.0.21.0/24
Signature Algorithm: sha256WithRSAEncryption
20:91:76:02:76:18:3b:8c:71:bd:6a:5c:28:ee:f5:c1:c9:99:
d6:6b:b3:b1:37:d3:fb:46:98:3b:4d:91:26:3e:3e:e3:21:3d:
8c:85:c8:18:eb:24:1d:c2:a2:26:1a:e4:fb:0c:49:12:68:ad:
bc:ea:30:d4:97:0c:7a:61:6e:f5:cc:57:b7:a9:68:45:5b:a8:
93:4d:30:fe:49:7a:8f:14:6b:12:35:68:e0:9a:00:75:7d:7d:
4e:30:7f:ac:98:17:99:0e:b9:66:b3:61:fa:05:63:63:57:04:
5f:f3:11:d4:9e:88:92:53:5d:59:65:6c:66:cf:d4:e6:c3:e9:
0b:2e:4d:fc:a0:37:c8:92:3d:d7:c5:83:49:b0:d8:2c:0b:3d:
20:98:f2:69:4b:de:c3:3a:35:ee:b2:53:a7:e9:a8:e3:76:0e:
39:15:db:e9:96:fc:8d:d9:d6:f8:86:83:91:78:6e:a5:11:76:
66:e5:46:5c:cc:5d:57:0a:2d:bc:e1:74:2f:3e:79:3f:bb:67:
d3:b0:4a:7c:a8:84:f5:1b:d0:32:b8:7f:c2:59:f1:4d:2c:75:
cc:0e:f0:a8:52:7a:29:34:21:aa:99:ee:a3:27:01:2c:90:a6:
fa:86:03:f5:c5:5d:d6:31:7c:9a:12:8f:27:30:78:4a:82:f8:
cf:8f:b5:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:13 2024 by rpki-client on console-ams.rpki-client.org