Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/29e166-98d2-49f2-8497-0503749adea0/1/t9vhWbQBSAElTCFNxReDuGeV6Zc.roa
File: t9vhWbQBSAElTCFNxReDuGeV6Zc.roa (raw, json)
Hash identifier: GI/9QA7uiLe1HXACDENvK+awHUfPi7usU6oE6LVXVyU=
Subject key identifier: B7:DB:E1:59:B4:01:48:01:25:4C:21:4D:C5:17:83:B8:67:95:E9:97
Certificate issuer: /CN=468b592f3110bc6c35249a8271a0dac1a9acb0ce
Certificate serial: 018D1822357D7B6CF0D8BDD30D516441DA21
Authority key identifier: 46:8B:59:2F:31:10:BC:6C:35:24:9A:82:71:A0:DA:C1:A9:AC:B0:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RotZLzEQvGw1JJqCcaDawamssM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/29e166-98d2-49f2-8497-0503749adea0/1/t9vhWbQBSAElTCFNxReDuGeV6Zc.roa
Signing time: Wed 17 Jan 2024 15:55:11 +0000
ROA not before: Wed 17 Jan 2024 15:55:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206623
IP address blocks: 213.134.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jul 2024 13:18:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:18:22:35:7d:7b:6c:f0:d8:bd:d3:0d:51:64:41:da:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=468b592f3110bc6c35249a8271a0dac1a9acb0ce
Validity
Not Before: Jan 17 15:55:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b7dbe159b4014801254c214dc51783b86795e997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:70:2e:2a:c3:6e:d1:d3:81:51:d5:11:80:24:
28:bc:8e:e6:05:51:98:f7:3a:7a:41:0e:12:57:8e:
65:8c:22:a2:97:c5:7f:de:90:fe:23:ba:9b:25:d7:
4e:ee:ca:8e:05:b0:f1:c8:52:78:78:f2:44:f4:6d:
2b:13:d3:ea:95:60:de:7e:d4:15:c1:0b:f4:d6:17:
0f:a0:0a:df:ca:bd:32:4c:3d:ae:b9:de:fc:e2:09:
91:eb:f3:d6:f6:1c:36:d2:6d:76:05:d3:5d:78:62:
87:bc:8a:66:5c:a2:7a:f2:f0:c3:64:db:04:8f:69:
8a:7d:f8:9a:00:58:0e:4c:8c:3f:e3:51:51:7e:ab:
05:59:97:a6:9b:c3:8b:33:4b:dd:65:9c:b4:90:b3:
00:e8:ef:17:83:bb:98:e6:31:cf:0a:9c:20:6b:5e:
85:4c:0e:17:fd:9b:95:ec:6f:c5:5f:c1:f9:51:bc:
02:be:bd:5e:38:59:7e:4d:78:dc:f0:f4:11:c7:c0:
11:a6:20:cf:8f:9c:c7:ea:c4:88:34:12:47:39:fd:
b5:86:d3:2d:df:77:fb:d3:d7:9c:23:c1:b6:18:0f:
16:64:aa:e5:ff:b4:95:9a:e8:81:e0:81:10:eb:2f:
ed:bf:98:94:31:ce:b6:d1:31:3f:6d:f5:0f:1c:d3:
4c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:DB:E1:59:B4:01:48:01:25:4C:21:4D:C5:17:83:B8:67:95:E9:97
X509v3 Authority Key Identifier:
keyid:46:8B:59:2F:31:10:BC:6C:35:24:9A:82:71:A0:DA:C1:A9:AC:B0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RotZLzEQvGw1JJqCcaDawamssM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/29e166-98d2-49f2-8497-0503749adea0/1/t9vhWbQBSAElTCFNxReDuGeV6Zc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/29e166-98d2-49f2-8497-0503749adea0/1/RotZLzEQvGw1JJqCcaDawamssM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.134.25.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:20:a5:8d:db:58:c2:dd:6d:a6:35:f6:70:ca:63:a4:bb:d2:
f4:6f:85:cd:08:d7:7c:f7:7b:55:e4:56:68:b5:ec:42:7b:b8:
0f:76:82:b1:6a:3c:37:c1:97:13:25:fb:83:bf:71:c7:d9:9e:
c5:e3:84:82:a3:34:74:04:a3:12:a8:2b:1b:a7:eb:37:03:fd:
f6:37:a0:7e:37:db:0c:a4:b8:8c:13:d2:34:a5:94:25:bb:74:
95:57:f3:b7:bb:f8:1e:bc:9f:f3:fe:02:b6:ad:96:90:66:9e:
d1:60:a0:85:a8:25:48:3d:a2:f9:0e:92:d6:d7:41:a4:fd:ce:
0b:ff:c4:7f:5a:9a:a2:c5:f6:ce:c8:23:26:3b:ec:07:cc:bb:
a2:2e:69:f7:7f:da:c9:40:30:b7:19:09:50:bf:4d:ba:bc:f4:
48:9f:23:57:48:19:b0:d1:77:5f:d3:33:b8:68:f7:90:0c:e3:
33:17:62:04:d2:00:d4:cd:0f:d9:64:ed:9b:3f:89:13:cc:fd:
7b:6b:c7:e7:5f:6f:6e:b7:84:b5:af:ac:83:51:df:fd:20:72:
12:3e:b6:10:90:92:d9:7f:10:b0:fa:8e:ea:cd:d0:5d:16:d3:
e3:58:6f:6a:4a:cd:9b:46:8c:38:8f:08:c0:d9:a3:a5:3d:58:
aa:a5:5c:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 16:21:27 2024 by rpki-client on console-ams.rpki-client.org