Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/ATPqY2mXP03vjCK25aawCVnLGSE.roa
File: ATPqY2mXP03vjCK25aawCVnLGSE.roa (raw, json)
Hash identifier: 21js2bO2IF70YgtugtNrWgsQ8qQ5IlTdbnEBbZu7gtI=
Subject key identifier: 01:33:EA:63:69:97:3F:4D:EF:8C:22:B6:E5:A6:B0:09:59:CB:19:21
Certificate issuer: /CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Certificate serial: 0185774B4D66C68DF46D2F781B0517E158CC
Authority key identifier: BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/ATPqY2mXP03vjCK25aawCVnLGSE.roa
Signing time: Tue 03 Jan 2023 11:01:41 +0000
ROA not before: Tue 03 Jan 2023 11:01:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43350
IP address blocks: 213.21.243.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:77:4b:4d:66:c6:8d:f4:6d:2f:78:1b:05:17:e1:58:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Validity
Not Before: Jan 3 11:01:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0133ea6369973f4def8c22b6e5a6b00959cb1921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ec:b8:1e:f4:ec:b7:55:e1:ba:7d:a2:43:c4:
ac:a5:15:f7:53:9e:31:11:25:2b:6a:07:5e:86:16:
3e:61:2a:7d:ac:aa:c3:90:34:a1:73:97:1a:cb:b9:
2f:56:d3:c8:d7:62:7c:03:e7:e1:30:09:10:f0:cc:
4e:9e:4b:9f:e5:13:3f:aa:b9:e5:50:f3:ef:3f:7f:
e0:12:7e:42:e4:01:d2:b7:f1:41:8f:97:cc:88:1c:
90:c9:5e:a5:8e:ad:a2:e2:99:73:e7:bd:df:09:e0:
e8:c6:88:d3:79:df:e8:84:a0:c4:71:ed:3d:c6:be:
4f:91:f6:75:84:ac:b2:80:08:85:34:db:ca:f5:00:
d0:36:96:74:fd:36:4f:87:8b:27:f3:74:1e:15:85:
8d:4f:33:37:3b:ea:12:17:cc:4a:a5:72:12:6f:3b:
94:27:63:00:be:7e:e6:57:75:84:99:89:49:25:ce:
35:b3:7e:bf:5b:97:22:80:16:52:0f:5a:73:d5:08:
36:4c:77:2a:94:f4:e7:43:e5:59:fa:c1:36:2b:08:
9d:20:fc:ae:94:ba:f4:90:da:09:93:ba:91:4a:61:
cb:50:1e:4e:9b:ca:67:00:d7:6b:3a:50:24:b9:81:
5d:a3:e5:cf:99:8f:93:b3:76:7b:2b:3f:28:c6:a8:
23:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:33:EA:63:69:97:3F:4D:EF:8C:22:B6:E5:A6:B0:09:59:CB:19:21
X509v3 Authority Key Identifier:
keyid:BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/ATPqY2mXP03vjCK25aawCVnLGSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.21.243.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:bf:bc:36:c6:e4:6b:87:47:55:f1:37:31:98:b5:e9:2a:ab:
64:6c:34:97:e7:06:a0:11:b6:65:76:cc:71:da:32:be:91:8c:
5b:d0:e7:b7:2c:fa:67:b3:da:16:95:9a:07:74:f1:28:f1:52:
16:73:8f:f9:cd:c1:56:ca:23:8e:80:0b:1d:d2:a2:fa:bb:f9:
d0:f4:d7:e4:d8:ee:8e:2b:67:e5:39:85:96:56:16:05:2d:8a:
d2:e5:21:2e:b7:7f:21:2b:81:2a:3d:20:e9:b9:4d:ea:f0:4b:
77:60:fa:8a:ea:48:8f:8f:21:9c:b2:22:7e:37:21:cd:d6:71:
dd:69:6c:5a:a7:38:4e:43:20:e3:8c:e2:7b:b7:cf:8c:cd:0a:
3e:f4:06:69:ec:d0:6a:2f:fe:05:77:c5:bd:7c:09:75:e3:33:
bf:b7:14:c2:6c:9a:1a:0a:43:b0:9c:fb:c2:87:18:51:61:03:
0e:ea:60:37:75:58:c8:db:c3:da:f7:a3:ca:d0:25:90:93:1e:
1c:62:3a:39:85:52:25:0a:f4:1c:1d:ac:2f:a1:23:b2:c7:b4:
28:43:9f:95:40:6b:b8:52:46:8c:34:5e:46:8b:54:fa:c1:ea:
c3:12:05:2c:55:cf:be:54:ec:5a:1e:c8:a3:d0:97:0c:b6:34:
47:a6:e2:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:42 2024 by rpki-client on console-fra.rpki-client.org