Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/9vvn4tBCe4ixAOjgIW019VKAn8A.roa
File: 9vvn4tBCe4ixAOjgIW019VKAn8A.roa (raw, json)
Hash identifier: hGEGGF+0BbILfBlyL1MKCsN8fdlHaD30uPdRBzMasiQ=
Subject key identifier: F6:FB:E7:E2:D0:42:7B:88:B1:00:E8:E0:21:6D:35:F5:52:80:9F:C0
Certificate issuer: /CN=c755702467770ed69b367b77bbe640bc6db4153e
Certificate serial: 0185C546F30E7A093BADE6BD6819BD865F99
Authority key identifier: C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/9vvn4tBCe4ixAOjgIW019VKAn8A.roa
Signing time: Wed 18 Jan 2023 14:27:19 +0000
ROA not before: Wed 18 Jan 2023 14:27:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40306
IP address blocks: 213.209.181.128/26 maxlen: 26
Validation: Failed, certificate revoked on Mon 18 Dec 2023 15:19:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c5:46:f3:0e:7a:09:3b:ad:e6:bd:68:19:bd:86:5f:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c755702467770ed69b367b77bbe640bc6db4153e
Validity
Not Before: Jan 18 14:27:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6fbe7e2d0427b88b100e8e0216d35f552809fc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f6:1a:34:31:57:85:79:64:c0:d3:63:a0:3f:
76:f9:8f:60:5e:31:95:7c:74:c6:bb:d9:e4:05:6a:
a5:31:4d:7b:5a:49:32:ac:a5:2c:1d:b2:03:79:34:
38:3c:13:56:17:d1:41:3b:8f:43:96:3b:ca:5a:d4:
3e:4a:0b:0e:23:9a:ea:0c:7b:67:46:39:82:36:4a:
7a:f3:64:77:58:57:46:b6:6e:b2:cb:22:ec:95:38:
50:75:bc:dc:98:c8:4f:f0:78:15:37:a8:12:1d:a0:
c6:4a:da:50:45:d6:0a:81:ca:69:ac:44:35:65:46:
61:66:9b:87:12:ec:3d:31:20:9e:37:ee:ef:d6:92:
f0:40:41:67:b1:5c:69:62:0c:3d:c9:74:9f:46:ea:
85:8f:d7:22:cb:22:88:36:d3:ae:3d:49:81:c1:e8:
1d:5a:d4:e2:4c:3d:6d:12:77:ea:9f:bf:09:5d:ab:
fa:63:52:c0:e1:9d:6c:31:df:20:30:56:b7:ce:81:
dc:4c:cf:21:33:c8:35:66:2b:12:2b:37:cc:06:79:
36:d8:ae:44:8d:8d:26:7b:d5:c8:60:4b:ed:28:e7:
32:a4:35:6b:63:e8:63:db:42:10:d4:5c:c3:b8:57:
7b:ac:0d:e9:78:c0:08:1c:7e:0a:08:b0:c7:72:7b:
55:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:FB:E7:E2:D0:42:7B:88:B1:00:E8:E0:21:6D:35:F5:52:80:9F:C0
X509v3 Authority Key Identifier:
keyid:C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/9vvn4tBCe4ixAOjgIW019VKAn8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/x1VwJGd3DtabNnt3u-ZAvG20FT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.209.181.128/26
Signature Algorithm: sha256WithRSAEncryption
48:98:b5:64:6a:ae:36:3c:4d:8c:c8:6e:3f:e6:e3:20:6a:93:
3b:17:91:05:a2:35:3b:b8:2b:ec:0e:19:c0:71:4a:9c:52:4f:
67:e1:f9:e1:d5:09:ce:ed:8b:56:1e:7d:3d:0d:55:77:a1:ba:
bb:aa:68:db:86:07:3c:3b:7d:6a:52:20:f9:20:7a:a5:d3:c8:
0f:84:69:31:a4:9c:14:a5:01:ac:26:e9:44:c7:07:e9:be:80:
14:70:68:3d:4a:0d:1b:65:c5:bb:9c:52:6a:83:fd:73:02:9a:
c8:00:80:4e:d8:c7:23:2e:d1:26:55:f9:c8:47:26:4e:66:19:
0b:3f:3f:79:16:32:7d:00:75:f7:0a:74:e6:18:fe:fb:b6:40:
f5:b9:e5:96:97:21:be:e1:d9:4d:6c:68:b1:7b:6a:12:36:88:
77:62:8f:95:93:5a:4e:a1:e8:ed:3e:56:ba:ba:9a:a0:39:a6:
96:ff:fe:4a:19:9f:6a:10:ac:63:7c:2b:90:f6:ed:2c:92:71:
6e:03:93:d5:c2:57:68:fa:f5:c4:18:aa:42:b0:a6:f5:87:73:
f6:85:5b:84:88:2a:1c:83:0f:92:d6:48:b4:9d:b4:9f:ea:12:
80:4d:e8:c0:f2:eb:4b:1a:23:cb:a3:6b:aa:36:bc:34:3f:30:
92:17:3a:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:19 2024 by rpki-client on console-fra.rpki-client.org