Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/zBrxdMwA6bekvMG6xW7IzoITV34.roa
File: zBrxdMwA6bekvMG6xW7IzoITV34.roa (raw, json)
Hash identifier: rfJXeuWRZTQoICGl+52wMsLVFaExP1VIvBAmr81BOCQ=
Subject key identifier: CC:1A:F1:74:CC:00:E9:B7:A4:BC:C1:BA:C5:6E:C8:CE:82:13:57:7E
Certificate issuer: /CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Certificate serial: 0191B775E567F0EF492453614F5CFBDE62DC
Authority key identifier: BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/zBrxdMwA6bekvMG6xW7IzoITV34.roa
Signing time: Tue 03 Sep 2024 10:37:22 +0000
ROA not before: Tue 03 Sep 2024 10:37:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215176
IP address blocks: 213.21.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 13:17:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b7:75:e5:67:f0:ef:49:24:53:61:4f:5c:fb:de:62:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Validity
Not Before: Sep 3 10:37:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cc1af174cc00e9b7a4bcc1bac56ec8ce8213577e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a1:59:73:b5:28:c4:1e:81:60:b2:1b:3c:5c:
a4:2c:35:5f:37:85:c1:c7:63:22:51:2b:f4:e2:05:
a0:da:c1:00:ba:eb:3e:87:aa:86:6a:f3:26:e8:b4:
d7:83:1b:e8:66:ad:21:69:91:77:2f:ca:ea:4b:6e:
8b:7c:a4:3e:64:2f:29:80:a6:26:77:b3:47:b8:6a:
21:e5:42:ee:92:b6:e5:13:4e:75:4a:c5:b8:88:e2:
cc:ef:b4:2e:49:c8:e1:fa:b0:50:ce:e9:73:f7:a4:
83:c9:e2:be:26:d4:5a:b8:8f:5e:ea:7b:8d:fe:94:
08:d6:06:a6:e6:32:b1:e1:01:c4:7a:b4:1b:1d:35:
b1:95:bb:6c:30:a4:2a:8d:33:db:50:c0:ad:b7:e2:
43:40:4e:4a:75:ac:d9:ee:7e:dd:d5:35:77:09:d3:
ba:60:cf:eb:76:57:5b:31:1f:08:cb:9b:5c:6c:38:
f8:e3:1c:ea:4e:a3:c8:61:55:7d:36:7e:38:cd:06:
2b:8c:30:f9:06:4f:87:50:82:9f:4f:01:45:c0:60:
0f:c3:8a:3a:27:a4:1e:19:3e:86:e7:06:c7:f4:3d:
48:a9:2d:e8:71:a8:e0:2b:67:53:f9:e2:f4:42:31:
98:42:d6:ba:1e:c8:c9:71:df:7d:60:59:7a:a8:58:
f2:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:1A:F1:74:CC:00:E9:B7:A4:BC:C1:BA:C5:6E:C8:CE:82:13:57:7E
X509v3 Authority Key Identifier:
keyid:BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/zBrxdMwA6bekvMG6xW7IzoITV34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.21.232.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:3a:25:37:96:ab:8e:a0:89:43:ce:1c:ca:58:f1:ea:dc:c1:
67:f0:86:73:73:7c:d8:00:a6:4a:9c:9b:74:40:6a:39:74:df:
32:65:94:f8:c4:23:22:34:41:01:57:20:d0:d1:0d:69:6b:fe:
58:88:22:9e:6b:15:95:23:46:10:af:a7:d0:87:8e:a0:5c:ec:
27:fe:ab:ae:3c:9a:8c:da:65:af:81:3e:6b:37:87:e9:08:dc:
13:c8:86:33:a4:10:b4:54:3f:60:4f:50:89:91:cd:8f:33:42:
e5:22:51:c9:d6:5b:ee:6e:a9:60:d1:14:2d:50:85:6a:78:35:
af:86:ca:74:f8:08:b9:85:07:3d:af:d9:47:39:73:5b:4d:1f:
d4:ab:61:ae:2e:b0:17:21:5c:ba:af:72:1c:7b:46:64:a3:ca:
bf:f4:f8:7a:39:40:3e:ab:0d:a7:5f:41:73:6e:bb:b2:d6:6a:
c0:9a:73:8f:aa:27:3c:0f:df:3c:09:a7:ec:75:dd:78:f5:11:
fd:d6:f5:75:ab:bb:d9:10:09:9d:db:e4:dd:3a:a8:06:0f:6d:
05:ef:e8:80:78:69:a3:b4:f9:18:d6:7b:3c:d1:39:b1:50:da:
2a:bf:57:2d:c6:2a:be:ec:a9:e9:ed:8a:ef:66:3a:7d:0d:e5:
6f:a1:1a:49
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZG3deVn8O9JJFNhT1z73mLcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjZmRmZTZkY2E4YWM3YmZhMWE5NDUwZWY5OWZkMzE1ZWQw
MmFjZDkwHhcNMjQwOTAzMTAzNzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzFhZjE3NGNjMDBlOWI3YTRiY2MxYmFjNTZlYzhjZTgyMTM1NzdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo6FZc7UoxB6BYLIbPFykLDVfN4XB
x2MiUSv04gWg2sEAuus+h6qGavMm6LTXgxvoZq0haZF3L8rqS26LfKQ+ZC8pgKYm
d7NHuGoh5ULukrblE051SsW4iOLM77QuScjh+rBQzulz96SDyeK+JtRauI9e6nuN
/pQI1gam5jKx4QHEerQbHTWxlbtsMKQqjTPbUMCtt+JDQE5KdazZ7n7d1TV3CdO6
YM/rdldbMR8Iy5tcbDj44xzqTqPIYVV9Nn44zQYrjDD5Bk+HUIKfTwFFwGAPw4o6
J6QeGT6G5wbH9D1IqS3ocajgK2dT+eL0QjGYQta6HsjJcd99YFl6qFjywwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMwa8XTMAOm3pLzBusVuyM6CE1d+MB8GA1UdIwQY
MBaAFLz9/m3Kise/oalFDvmf0xXtAqzZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlAzLWJjcUt4Ny1ocVVVTy1aX1RGZTBDck5rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9jOWRlMTMtNWI3NC00MTNkLWIyZmIt
MWFmMjQ2NWE4ZWVjLzEvekJyeGRNd0E2YmVrdk1HNnhXN0l6b0lUVjM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC9jOWRlMTMtNWI3NC00MTNkLWIyZmItMWFmMjQ2NWE4ZWVj
LzEvdlAzLWJjcUt4Ny1ocVVVTy1aX1RGZTBDck5rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1RXoMA0G
CSqGSIb3DQEBCwUAA4IBAQA+OiU3lquOoIlDzhzKWPHq3MFn8IZzc3zYAKZKnJt0
QGo5dN8yZZT4xCMiNEEBVyDQ0Q1pa/5YiCKeaxWVI0YQr6fQh46gXOwn/quuPJqM
2mWvgT5rN4fpCNwTyIYzpBC0VD9gT1CJkc2PM0LlIlHJ1lvubqlg0RQtUIVqeDWv
hsp0+Ai5hQc9r9lHOXNbTR/Uq2GuLrAXIVy6r3Ice0Zko8q/9Ph6OUA+qw2nX0Fz
bruy1mrAmnOPqic8D988Cafsdd149RH91vV1q7vZEAmd2+TdOqgGD20F7+iAeGmj
tPkY1ns80TmxUNoqv1ctxiq+7Knp7YrvZjp9DeVvoRpJ
-----END CERTIFICATE-----
Generated at Wed Sep 11 15:34:14 2024 by rpki-client on console-fra.rpki-client.org