Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/11df3c-c42a-49cc-956b-2a72176d0abf/1/xxTVZZ39Rr8kTAN4oR2BfSEK0Vw.roa
File: xxTVZZ39Rr8kTAN4oR2BfSEK0Vw.roa (raw, json)
Hash identifier: JW57d36OeUvr3l+uv3+zPYQInaB1zCqzPy9b8QSKIKs=
Subject key identifier: C7:14:D5:65:9D:FD:46:BF:24:4C:03:78:A1:1D:81:7D:21:0A:D1:5C
Certificate issuer: /CN=efd250f341ffcc3613b599ea96e0d19c2e6fe350
Certificate serial: 018ADB7BA1A34434922E40DED624594697CD
Authority key identifier: EF:D2:50:F3:41:FF:CC:36:13:B5:99:EA:96:E0:D1:9C:2E:6F:E3:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/79JQ80H_zDYTtZnqluDRnC5v41A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/11df3c-c42a-49cc-956b-2a72176d0abf/1/xxTVZZ39Rr8kTAN4oR2BfSEK0Vw.roa
Signing time: Thu 28 Sep 2023 11:10:27 +0000
ROA not before: Thu 28 Sep 2023 11:10:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 213.164.64.0/19 maxlen: 24
213.164.79.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:db:7b:a1:a3:44:34:92:2e:40:de:d6:24:59:46:97:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=efd250f341ffcc3613b599ea96e0d19c2e6fe350
Validity
Not Before: Sep 28 11:10:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c714d5659dfd46bf244c0378a11d817d210ad15c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:8b:cd:17:c9:61:e2:d1:2f:a5:e4:49:4c:ac:
e4:e6:b2:a2:7d:5e:06:30:40:a4:85:9e:3d:2c:cb:
2c:27:a4:bb:88:2f:20:bf:e9:11:b3:6f:ba:26:f5:
c0:3c:92:de:ef:3b:68:4d:36:da:58:72:aa:c5:bc:
07:1d:d0:6e:ec:47:bc:0e:1b:57:64:75:61:39:b4:
4a:cc:a8:53:83:74:59:4a:30:ce:6d:5b:04:a2:72:
08:b2:7b:12:6b:f3:05:bf:2a:7e:6a:53:df:a9:50:
e2:1e:ff:8f:86:bd:34:30:1e:67:33:24:28:d9:15:
cb:c6:a0:5c:71:4d:d3:b3:72:d1:1d:f7:07:33:53:
c5:73:4e:59:b7:0c:07:57:e5:24:b9:84:9a:2c:21:
e1:09:57:ea:93:55:b2:44:1b:84:4b:f3:7d:d4:e8:
ff:b8:83:2c:ff:31:86:03:2d:e8:9a:cc:fb:f5:e2:
31:be:f9:5e:3b:29:8f:d4:d1:aa:fe:e9:77:a8:37:
91:0b:ad:95:7d:d0:29:ad:9a:ee:1f:67:b0:1b:a1:
d3:17:6b:dd:e2:69:dc:08:aa:c1:5e:b2:61:dd:6c:
fc:c4:b8:47:82:31:a3:d8:15:ff:b8:78:5c:89:c9:
b7:5a:64:d0:91:8e:34:5b:8d:e1:63:73:5d:b5:65:
2a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:14:D5:65:9D:FD:46:BF:24:4C:03:78:A1:1D:81:7D:21:0A:D1:5C
X509v3 Authority Key Identifier:
keyid:EF:D2:50:F3:41:FF:CC:36:13:B5:99:EA:96:E0:D1:9C:2E:6F:E3:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/79JQ80H_zDYTtZnqluDRnC5v41A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/11df3c-c42a-49cc-956b-2a72176d0abf/1/xxTVZZ39Rr8kTAN4oR2BfSEK0Vw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/11df3c-c42a-49cc-956b-2a72176d0abf/1/79JQ80H_zDYTtZnqluDRnC5v41A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.164.64.0/19
Signature Algorithm: sha256WithRSAEncryption
06:0c:cd:1f:30:aa:1b:58:63:17:e4:c2:29:0f:45:89:4e:2b:
02:b6:f0:63:05:85:4f:55:f1:6a:33:df:cb:f2:df:fa:79:55:
cc:a4:bb:08:52:80:20:46:4f:5e:17:b0:44:66:90:77:51:a6:
1d:6b:2b:29:e4:15:9f:58:c1:0d:ea:1b:d3:20:ca:e1:bc:07:
b0:89:16:ed:1f:ef:59:ee:5d:cc:1e:95:d1:85:90:84:7f:22:
8c:59:a2:dc:38:34:19:b2:f5:30:70:a4:99:21:c4:2f:aa:4d:
f8:c5:f7:62:e9:72:90:5e:63:90:1f:23:4a:aa:78:fc:5e:cc:
cf:83:99:32:b9:1d:1f:de:00:ea:58:04:f9:53:33:8c:d6:48:
03:2c:50:a8:73:d5:42:6b:c7:c4:57:b7:a2:d2:34:ec:a9:b8:
98:80:5d:df:26:ed:df:10:5b:ce:07:b2:de:95:3e:f3:c8:91:
6c:f2:9b:e6:df:67:f7:fc:b2:19:8e:6b:54:80:62:e1:3c:00:
28:dc:54:45:5a:97:24:2f:94:3c:c8:e7:ee:e8:4c:b6:7c:fb:
55:23:c9:ea:e3:0b:a5:85:f8:de:68:c8:c8:86:82:8c:20:cb:
32:26:d2:ec:ef:86:37:70:20:52:79:77:5a:bf:94:f2:fd:02:
a8:98:88:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:59 2024 by rpki-client on console-fra.rpki-client.org