Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/KlZ0ird0eh9Au2vsslcyEbFD4t8.roa
File: KlZ0ird0eh9Au2vsslcyEbFD4t8.roa (raw, json)
Hash identifier: ixKEtJM/4fwe6EIWDLq01tLh7qPh3LJI7ESOlyUW/HA=
Subject key identifier: 2A:56:74:8A:B7:74:7A:1F:40:BB:6B:EC:B2:57:32:11:B1:43:E2:DF
Certificate issuer: /CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Certificate serial: 018995BEA8FC88D04FD8B008DD03E902BC4B
Authority key identifier: BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/KlZ0ird0eh9Au2vsslcyEbFD4t8.roa
Signing time: Thu 27 Jul 2023 05:07:27 +0000
ROA not before: Thu 27 Jul 2023 05:07:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12695
IP address blocks: 213.21.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Aug 2023 12:11:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:95:be:a8:fc:88:d0:4f:d8:b0:08:dd:03:e9:02:bc:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Validity
Not Before: Jul 27 05:07:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a56748ab7747a1f40bb6becb2573211b143e2df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:03:aa:a8:62:9f:23:75:b2:3e:be:d6:9b:85:
be:a1:43:f6:5c:1a:6a:32:39:a1:46:bb:b0:c7:46:
da:1a:2a:62:0b:fe:20:f0:68:9f:da:0a:f0:3e:4c:
e4:17:c6:bd:86:d9:ee:d0:80:de:d7:4b:2b:01:53:
bd:d6:a9:a2:56:62:9b:95:9e:44:5d:f1:d2:2d:f7:
8f:b2:82:db:99:87:da:e2:4c:b5:70:56:66:f1:e8:
f5:38:ce:e0:73:ef:e4:19:ba:0f:1f:26:9a:04:00:
8b:11:c1:eb:6c:92:81:a1:82:62:00:02:97:8d:d2:
e1:ff:9e:4c:ef:96:87:ad:64:b2:c5:56:bc:b3:a1:
d6:37:11:b8:70:36:cd:f4:60:e6:e1:6d:60:3d:da:
9e:89:ba:69:6d:10:7f:32:45:8d:2c:20:cf:2e:45:
2e:97:46:f0:c3:a4:ee:58:fa:81:b1:ba:b9:89:3c:
54:f6:0d:12:f6:47:be:26:06:93:23:28:0e:72:65:
a7:72:78:8b:2c:ed:7c:92:af:e4:eb:81:83:b8:0a:
d8:c9:d7:71:8e:ae:32:57:77:b3:51:73:99:b4:ef:
05:67:15:8d:c1:ac:55:50:2f:24:b5:0e:bb:5d:0e:
9d:45:b0:c4:82:a5:5d:60:e2:ab:69:14:44:8d:eb:
0e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:56:74:8A:B7:74:7A:1F:40:BB:6B:EC:B2:57:32:11:B1:43:E2:DF
X509v3 Authority Key Identifier:
keyid:BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/KlZ0ird0eh9Au2vsslcyEbFD4t8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.21.232.0/24
Signature Algorithm: sha256WithRSAEncryption
57:d7:4a:b2:0f:28:39:83:7c:4b:90:1d:cf:a7:17:c2:6e:06:
b7:a1:b3:94:2e:d6:bc:f6:a8:1b:d4:e5:61:e8:9b:7b:bc:f0:
6a:61:b4:ad:1b:5a:36:d1:ca:52:9a:87:9c:88:97:3f:3a:c9:
fd:82:0e:32:38:3b:70:ad:c6:d1:e3:5f:65:e9:36:49:7f:c3:
67:00:a3:20:71:8d:5d:e2:16:b2:0d:59:71:00:42:fe:74:33:
d9:7b:27:3a:eb:a1:e1:e2:c3:bf:81:d9:ad:65:82:35:20:b8:
ef:83:a4:45:e6:68:d0:ac:f5:79:df:b6:09:84:40:43:4d:cd:
9b:19:21:5a:34:56:77:c2:24:bf:7d:53:23:8a:d7:41:6a:08:
a0:14:b2:85:74:f7:e0:4a:16:7a:c9:64:9f:e0:aa:6e:6f:0d:
86:f2:07:ee:98:df:68:30:1d:ff:63:cf:0c:cf:fb:3c:21:b9:
5a:ce:2d:c7:84:2d:f1:5a:d2:05:be:7a:65:4c:bc:44:f6:fb:
bf:10:6a:2c:0f:04:f1:53:83:6d:76:25:fa:07:cf:a7:84:5f:
9f:c1:71:f1:cc:57:58:4d:a0:f6:04:d0:a7:60:4d:ab:3a:35:
ea:f5:1e:85:96:62:80:f5:8d:2e:da:15:8b:63:0d:81:d4:f1:
c3:07:72:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:49 2024 by rpki-client on console-fra.rpki-client.org