Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/nxwHsl3gE7IW3K-kD-4k-kzLp2Q.roa
File: nxwHsl3gE7IW3K-kD-4k-kzLp2Q.roa (raw, json)
Hash identifier: dfOAMOFgWZK+ohxjECOwsVUcSNupmXi+gIs5F08OjPw=
Subject key identifier: 9F:1C:07:B2:5D:E0:13:B2:16:DC:AF:A4:0F:EE:24:FA:4C:CB:A7:64
Certificate issuer: /CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Certificate serial: 0190E3BABDF9DB83364BBCF02DAC1A54CA37
Authority key identifier: BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/nxwHsl3gE7IW3K-kD-4k-kzLp2Q.roa
Signing time: Wed 24 Jul 2024 07:53:04 +0000
ROA not before: Wed 24 Jul 2024 07:53:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198231
IP address blocks: 213.21.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Jul 2024 08:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e3:ba:bd:f9:db:83:36:4b:bc:f0:2d:ac:1a:54:ca:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Validity
Not Before: Jul 24 07:53:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9f1c07b25de013b216dcafa40fee24fa4ccba764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:70:c7:d6:0e:8d:cb:20:80:0e:9f:ad:28:7a:
9d:6b:2f:70:d5:42:09:36:69:e9:2a:3b:65:86:67:
a6:86:83:59:5e:5a:01:f7:ac:ba:a4:c5:81:49:61:
62:85:ff:b9:b6:e2:56:a5:9b:33:67:ca:e4:db:fa:
d1:fb:ed:bb:17:ca:3c:b7:23:3b:66:3c:5e:f7:91:
2d:83:29:55:60:62:d0:8a:f2:74:aa:22:82:ee:94:
c0:bb:73:5d:dd:0b:7b:40:9a:ba:8c:88:1a:97:89:
e0:6c:e1:52:aa:83:c9:89:85:11:8a:f1:a0:a9:25:
6d:8c:7d:67:55:b3:80:5a:3e:14:3a:fd:8e:68:cb:
67:62:c7:3a:60:51:d2:b8:b6:09:c3:90:5e:9a:b1:
e2:55:65:c7:29:7a:6e:49:f1:a6:51:f0:1e:7d:a1:
9d:94:e1:bd:31:7e:7a:5f:e8:cd:1d:ca:eb:b1:33:
7b:30:d6:c9:65:d9:b2:00:19:58:e2:bb:60:f4:4c:
43:12:f7:1a:44:28:d9:10:ff:bb:65:6b:40:c1:24:
86:45:a3:3f:97:10:ff:ac:59:cd:85:a7:af:d1:cd:
55:11:4e:c9:f6:ba:74:ae:e9:f3:a5:a2:5b:ea:6e:
56:89:ce:d3:8b:89:5d:cd:e1:3a:32:e9:6e:9d:39:
83:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:1C:07:B2:5D:E0:13:B2:16:DC:AF:A4:0F:EE:24:FA:4C:CB:A7:64
X509v3 Authority Key Identifier:
keyid:BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/nxwHsl3gE7IW3K-kD-4k-kzLp2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.21.232.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:16:15:31:4d:03:34:a2:98:9e:16:95:c9:9a:b0:7c:e4:cc:
ae:27:56:48:af:1f:a7:4f:5d:5a:5b:fa:26:39:dc:0b:75:30:
d4:67:dc:5b:ae:5c:74:eb:d5:21:e6:19:30:95:f7:5d:f6:53:
73:8b:ed:8b:8d:4b:b8:a9:7a:55:02:dd:72:3f:b2:da:c7:05:
11:f5:28:7a:9f:f9:e1:12:58:cb:90:79:8c:b8:27:33:e7:7c:
16:eb:8b:97:41:cb:49:5a:63:85:c8:8c:16:14:ec:7c:55:0e:
cf:1b:a2:45:26:f2:53:b0:c8:63:5b:72:7d:12:c2:6d:84:55:
6d:a0:63:1d:5c:ea:8d:c8:bf:df:bf:19:04:f5:29:8c:c3:a7:
76:7e:a9:23:0a:b5:c1:d4:8f:b9:b1:07:e7:73:1a:9e:d5:92:
08:eb:52:6f:a6:96:3e:41:55:66:57:ac:c8:1f:99:98:ea:f0:
7b:33:46:ad:02:f7:7e:a2:1d:5a:39:36:b8:1b:d8:70:92:1d:
70:58:16:23:60:25:65:92:27:ae:85:df:56:06:bc:97:45:fc:
59:4c:b8:e3:97:a9:4c:77:39:b0:ff:40:09:92:18:1e:a3:af:
d0:da:dd:b0:4d:07:9d:6a:c0:79:82:7b:ae:e4:36:97:c2:2d:
ae:60:12:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 24 12:11:37 2024 by rpki-client on console-fra.rpki-client.org