Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/6ba39c-ef1d-4d48-982b-cf4b900997a0/1/t43qTXHYP2znhQ9rEgkNgyCIq08.roa
File: t43qTXHYP2znhQ9rEgkNgyCIq08.roa (raw, json)
Hash identifier: z6Adrw1+fnO+A/XF260qTHYxtxQiEH8ybvoxHQJNsBQ=
Subject key identifier: B7:8D:EA:4D:71:D8:3F:6C:E7:85:0F:6B:12:09:0D:83:20:88:AB:4F
Certificate issuer: /CN=ab71e9b13f5c339a58692eeabe72eaa406bbbd7d
Certificate serial: 01912086B585A96764E1AF0735A57FED53FC
Authority key identifier: AB:71:E9:B1:3F:5C:33:9A:58:69:2E:EA:BE:72:EA:A4:06:BB:BD:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q3HpsT9cM5pYaS7qvnLqpAa7vX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/6ba39c-ef1d-4d48-982b-cf4b900997a0/1/t43qTXHYP2znhQ9rEgkNgyCIq08.roa
Signing time: Mon 05 Aug 2024 03:13:04 +0000
ROA not before: Mon 05 Aug 2024 03:13:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207508
IP address blocks: 213.142.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Aug 2024 16:17:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:20:86:b5:85:a9:67:64:e1:af:07:35:a5:7f:ed:53:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab71e9b13f5c339a58692eeabe72eaa406bbbd7d
Validity
Not Before: Aug 5 03:13:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b78dea4d71d83f6ce7850f6b12090d832088ab4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ac:22:d1:76:54:b5:6e:ca:05:87:59:70:b8:
2e:52:4b:ce:dd:b5:c5:df:0e:dc:02:b0:e1:cf:32:
7e:07:ef:d7:16:cd:bb:70:05:44:0d:68:82:17:16:
d9:40:a1:3e:87:2d:fd:eb:6e:1b:e8:b3:04:b4:84:
04:97:6f:80:d8:b2:97:e7:a5:5e:4e:b4:11:bc:9c:
bc:c7:97:91:b1:7a:94:c7:db:a8:f0:5c:45:ae:f4:
d5:54:e9:1c:4e:56:ef:c5:2a:b6:96:4f:9a:fd:27:
5a:99:d3:b3:dc:24:11:7c:9c:e1:1f:0b:74:c6:7a:
39:5a:4f:b8:61:2a:e0:a7:a5:ac:dd:25:3d:9c:65:
1f:a9:55:5d:c3:0c:f5:6a:05:0f:9c:8f:81:09:06:
56:1f:6c:0f:80:b2:57:18:27:a0:dd:c6:ad:3c:7f:
a6:93:96:e9:16:42:e9:49:b5:15:c0:ef:c1:8a:82:
14:9a:64:a9:a6:aa:db:91:6b:29:43:67:b0:74:1a:
46:4c:d1:0e:58:d7:f6:67:48:26:00:58:ad:bc:50:
6c:3d:da:0e:5a:6d:a1:0f:c0:81:73:53:f9:ff:37:
6b:d9:3c:a7:c7:ab:f5:ab:b8:c6:ec:a8:3b:a3:84:
59:4e:1e:75:00:aa:9e:82:f5:1a:4c:d9:40:30:d5:
bb:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:8D:EA:4D:71:D8:3F:6C:E7:85:0F:6B:12:09:0D:83:20:88:AB:4F
X509v3 Authority Key Identifier:
keyid:AB:71:E9:B1:3F:5C:33:9A:58:69:2E:EA:BE:72:EA:A4:06:BB:BD:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q3HpsT9cM5pYaS7qvnLqpAa7vX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/6ba39c-ef1d-4d48-982b-cf4b900997a0/1/t43qTXHYP2znhQ9rEgkNgyCIq08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/6ba39c-ef1d-4d48-982b-cf4b900997a0/1/q3HpsT9cM5pYaS7qvnLqpAa7vX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.142.134.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:9a:17:6f:0c:c8:6d:c5:64:0d:02:ea:18:8f:9a:6e:77:49:
22:ff:2b:7c:c4:17:65:2f:f3:92:73:9e:98:da:df:d5:b9:be:
f6:7c:55:4c:79:e4:eb:5b:5d:30:71:ce:81:a3:b9:4a:33:a2:
17:57:ad:06:59:b4:7f:dd:cf:7b:29:d6:d5:3d:b6:ac:72:13:
86:bb:ae:85:fc:52:ed:21:d3:59:6c:b3:39:2b:da:61:10:b4:
1b:04:f2:a3:36:83:8b:bb:de:a4:8d:40:88:c7:f7:0f:a3:8f:
b2:1e:e0:9a:d3:d1:d9:2d:23:71:20:56:a3:e3:3a:6e:d2:ae:
f5:0f:81:3e:ea:b8:3f:44:0f:75:04:ac:71:d5:84:2c:6b:c3:
82:e0:16:d1:cd:13:0b:67:2b:6c:47:3a:20:2e:1c:f2:c0:9c:
45:bf:b6:a6:ad:5e:05:a5:26:c3:6a:b3:cc:83:2c:51:68:e7:
7f:14:b9:53:41:ab:1a:1a:75:f1:a4:a5:95:33:d9:60:76:14:
4c:c4:6b:bf:2a:58:7b:9b:79:41:cd:ea:d0:e0:c2:9d:ef:25:
62:87:89:02:e6:94:f0:ab:f6:22:eb:c4:09:09:3c:a1:01:1d:
57:23:22:ad:41:49:b4:a8:90:24:b3:27:31:53:05:d2:8c:6d:
1f:db:bb:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 17:43:46 2024 by rpki-client on console-fra.rpki-client.org