Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/U_zo2tvOE3XBuh3HKCRwQ1rL4UA.roa
File: U_zo2tvOE3XBuh3HKCRwQ1rL4UA.roa (raw, json)
Hash identifier: hpK4fS6paau6VnFfppqvoSR2xEzlipz3B2KZdH8Pq4M=
Subject key identifier: 53:FC:E8:DA:DB:CE:13:75:C1:BA:1D:C7:28:24:70:43:5A:CB:E1:40
Certificate issuer: /CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Certificate serial: 0192909C3F907DD6F35211158E10FF33C623
Authority key identifier: BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/U_zo2tvOE3XBuh3HKCRwQ1rL4UA.roa
Signing time: Tue 15 Oct 2024 14:36:51 +0000
ROA not before: Tue 15 Oct 2024 14:36:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 139660
IP address blocks: 213.21.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Nov 2024 10:59:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:90:9c:3f:90:7d:d6:f3:52:11:15:8e:10:ff:33:c6:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Validity
Not Before: Oct 15 14:36:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53fce8dadbce1375c1ba1dc7282470435acbe140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:7e:89:20:26:b3:2b:15:ba:fe:2d:e5:c3:22:
20:76:a0:75:62:64:82:eb:de:d0:33:db:62:31:d7:
04:35:13:00:42:c6:c9:de:7f:34:c0:81:4a:78:48:
1b:6e:30:60:f7:72:89:3c:4b:49:6d:41:85:99:82:
16:9e:19:b6:4d:11:76:91:7a:10:5b:f2:c3:18:7f:
8a:26:9e:6b:e6:23:04:74:1d:37:a0:95:ae:89:71:
92:f8:8e:92:31:10:3d:ca:4a:b0:e6:55:23:13:2a:
93:d2:71:7a:99:12:26:b7:58:cc:e0:53:3b:48:62:
10:39:3c:6e:0b:d7:c7:9f:76:6f:e5:48:a8:dd:2a:
11:dd:92:f4:dd:95:c9:0b:36:cb:76:b6:e5:46:04:
4c:59:77:d9:e1:48:02:e2:90:ac:de:1c:08:fd:d7:
83:fb:bc:4e:cf:e5:56:f5:1a:a1:73:c9:8e:c5:cc:
78:98:a4:02:b5:ed:4e:f1:ca:b5:d9:d3:34:29:dd:
df:17:0a:9e:f5:cd:5b:27:fa:df:e4:79:fa:87:26:
14:ad:7a:d6:a0:2a:b3:2a:13:82:77:16:b9:21:7b:
65:f0:49:a7:5a:f4:98:b2:30:5f:92:f1:32:46:4a:
44:96:fe:8f:02:f2:cb:b4:a2:fd:7d:0f:5f:6b:2b:
3d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:FC:E8:DA:DB:CE:13:75:C1:BA:1D:C7:28:24:70:43:5A:CB:E1:40
X509v3 Authority Key Identifier:
keyid:BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/U_zo2tvOE3XBuh3HKCRwQ1rL4UA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.21.253.0/24
Signature Algorithm: sha256WithRSAEncryption
80:d9:e7:e6:f9:e9:da:a8:44:ff:68:2b:e8:ae:ff:af:1d:93:
2c:cb:23:79:1d:e1:14:99:2a:e3:fc:ea:ef:ab:24:ac:da:2b:
16:79:f7:1e:35:e4:b5:e6:9b:60:d1:90:96:dd:11:3b:1e:32:
4a:f4:d1:19:77:c1:17:76:fb:4e:a2:ea:4c:ff:3a:d1:d6:40:
46:e6:9f:e5:25:e9:1d:82:20:0c:00:10:4d:2a:23:77:ca:4e:
91:b7:0e:b6:b2:61:d4:96:04:68:4d:82:8d:4d:bc:c3:14:18:
79:5e:85:aa:0b:36:20:2b:a7:a8:d7:37:10:7e:9a:fe:86:60:
fd:01:c8:9d:a6:11:af:16:84:c8:bb:2c:6b:9a:39:c3:98:15:
e3:d0:1e:b3:90:95:e2:fa:4d:e8:95:b1:69:78:5b:e3:dd:c1:
af:3e:fc:cc:73:e9:8e:5a:30:1d:b2:45:fa:30:74:2a:21:67:
24:ca:e1:ba:52:1e:04:59:82:30:17:d9:8b:13:b2:82:41:71:
e6:4c:40:df:12:4a:ec:1b:77:22:ab:d4:6c:70:af:3f:3f:78:
9e:24:2e:c5:47:28:f1:b2:18:90:e1:8a:c4:7b:a9:25:10:a8:
d2:cd:64:a6:d6:17:2b:b3:98:93:e9:e5:4f:10:26:eb:e4:56:
ea:4a:fa:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 6 14:01:46 2024 by rpki-client on console-ams.rpki-client.org