Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/E0ssHgkHtUu8TfKN6LbKVawnfoc.roa
File: E0ssHgkHtUu8TfKN6LbKVawnfoc.roa (raw, json)
Hash identifier: d8oU+7vdqaESQ210PVAXeY4orE+IvYcm85HIGLjdJ24=
Subject key identifier: 13:4B:2C:1E:09:07:B5:4B:BC:4D:F2:8D:E8:B6:CA:55:AC:27:7E:87
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C213363949DAB811460285C916799
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/E0ssHgkHtUu8TfKN6LbKVawnfoc.roa
Signing time: Mon 02 Jan 2023 05:54:58 +0000
ROA not before: Mon 02 Jan 2023 05:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50040
IP address blocks: 213.108.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:21:33:63:94:9d:ab:81:14:60:28:5c:91:67:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=134b2c1e0907b54bbc4df28de8b6ca55ac277e87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:9a:66:57:a7:94:af:ae:8b:3e:e9:55:96:14:
64:5b:ec:97:06:dc:c1:c6:6f:36:80:82:d8:1f:d1:
51:25:35:7e:48:6f:5b:4d:43:34:37:a9:42:42:fe:
6f:c1:de:ec:67:f3:62:82:e4:cd:98:fb:e4:54:e1:
8f:92:df:3f:01:97:c7:8d:20:22:91:bd:3d:db:05:
97:f1:d1:10:f3:ea:84:2c:b7:8a:23:4a:9f:fb:5a:
93:83:4d:40:cc:da:89:27:4c:53:68:bf:5a:e6:3d:
25:91:f6:d9:25:61:e4:5e:33:15:14:80:6e:63:b1:
99:8e:c9:10:d3:9e:ed:be:e8:31:60:f3:cf:35:a6:
32:d3:a7:af:7d:c6:29:02:22:f2:e1:3f:2b:56:d7:
93:c1:fe:28:38:c4:d1:b0:6b:79:10:eb:d9:c0:47:
24:44:3f:90:c3:75:7c:44:4c:45:c9:d6:ce:1c:91:
17:aa:8c:78:f6:d7:34:d8:aa:15:10:a9:6b:86:a7:
ae:a6:b6:11:11:f6:d6:0e:89:f3:6f:0f:bb:0a:ef:
00:46:b0:a5:4c:5d:ab:c0:cb:0b:04:1e:dc:65:e4:
9b:a1:a3:86:c5:d1:32:fb:8e:b0:3c:4f:4f:3f:b0:
b0:a4:9e:f6:d2:8a:2e:0a:5a:44:0e:f7:02:e2:32:
60:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:4B:2C:1E:09:07:B5:4B:BC:4D:F2:8D:E8:B6:CA:55:AC:27:7E:87
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/E0ssHgkHtUu8TfKN6LbKVawnfoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.108.197.0/24
Signature Algorithm: sha256WithRSAEncryption
60:51:a0:52:c4:1e:53:fc:1a:d8:9a:02:27:ef:e7:b8:64:95:
d2:97:8f:7d:8a:00:a5:84:11:ae:10:ec:1e:ec:80:a5:a4:b5:
11:77:41:32:d0:71:53:ab:0c:29:0e:0d:80:ab:25:ce:08:79:
05:b6:37:f6:6c:fd:20:e7:88:94:f5:22:5e:22:9f:aa:b3:6d:
33:a0:06:4f:cc:7c:bf:19:b3:a4:bc:73:72:11:d3:d0:fb:a3:
f6:da:41:d1:29:90:8d:53:57:8b:37:cb:3e:f0:78:ef:0d:b1:
8d:ef:88:b5:85:9d:c0:2b:42:0b:e9:ca:34:3b:59:b2:88:01:
5f:eb:b0:a7:10:70:ad:16:f2:f9:70:5b:4a:a6:cc:96:06:b4:
72:3c:a4:11:85:17:fa:9a:2c:3f:a9:a0:a3:b5:7a:28:b2:2f:
31:99:34:17:5e:e2:25:e7:84:f8:c4:ec:e5:08:8d:17:9e:ea:
aa:02:45:26:59:08:03:d4:7d:9b:72:fd:62:9d:3e:8e:15:a7:
84:20:5b:37:35:bc:7e:16:18:31:9e:bb:05:bf:4d:b1:af:ab:
3a:df:23:42:18:8c:e2:03:d1:88:81:43:03:27:db:b0:12:6b:
dd:29:aa:67:96:9a:9c:7e:60:da:2f:37:98:04:03:77:00:0e:
06:d2:ef:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org