Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e1b84b-39a6-4ac8-be63-30fee27e84cb/1/rAVyw2kezYQj1nDvU-SbhmYGjFo.roa
File: rAVyw2kezYQj1nDvU-SbhmYGjFo.roa (raw, json)
Hash identifier: R0ox4B/bVJJu3bU2SMA4DVW4C2nhb4R5w/jzu7kk/zs=
Subject key identifier: AC:05:72:C3:69:1E:CD:84:23:D6:70:EF:53:E4:9B:86:66:06:8C:5A
Certificate issuer: /CN=27f5180f9b93ae7573c08a894bd452bd77ce56cd
Certificate serial: 018572FA5D71C386C3D27517BFF4D39A0568
Authority key identifier: 27:F5:18:0F:9B:93:AE:75:73:C0:8A:89:4B:D4:52:BD:77:CE:56:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J_UYD5uTrnVzwIqJS9RSvXfOVs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e1b84b-39a6-4ac8-be63-30fee27e84cb/1/rAVyw2kezYQj1nDvU-SbhmYGjFo.roa
Signing time: Mon 02 Jan 2023 14:54:48 +0000
ROA not before: Mon 02 Jan 2023 14:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20546
IP address blocks: 213.189.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:fa:5d:71:c3:86:c3:d2:75:17:bf:f4:d3:9a:05:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27f5180f9b93ae7573c08a894bd452bd77ce56cd
Validity
Not Before: Jan 2 14:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac0572c3691ecd8423d670ef53e49b8666068c5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d9:66:98:4c:75:bb:f9:bc:19:65:87:d0:95:
fc:84:07:4f:9d:d3:c5:56:6d:49:59:7f:7d:7c:52:
1e:84:da:0e:ba:23:fb:cf:ab:03:45:91:09:dd:b9:
66:de:0f:67:57:ea:6a:fb:74:7d:81:7b:32:4a:b8:
75:fb:b2:71:06:9c:57:33:ba:c3:ba:3d:d7:54:1f:
24:4f:d0:c5:ea:db:55:d3:db:1d:05:5d:79:63:21:
e2:2f:57:a2:5a:47:df:2a:20:5b:b0:5b:d8:4f:4e:
5d:6b:d2:46:61:07:54:ac:e9:b3:75:d7:7c:8c:5e:
8f:74:59:3e:9f:69:8f:4a:41:fc:b5:51:d7:d2:dd:
9b:9e:cf:f4:a8:a9:68:a0:48:0b:79:1c:15:3c:cd:
b4:14:95:e6:5d:c4:89:40:9e:4a:8a:3a:d5:31:d5:
38:5a:92:5a:ba:ec:d3:2e:df:91:90:3b:18:78:00:
ae:27:83:88:c0:37:a8:43:65:28:19:c3:d1:43:13:
57:b4:53:6b:2b:94:0f:34:c2:fa:e4:d8:0d:7e:01:
8e:65:4a:a2:a6:a0:97:d9:09:b0:16:fd:d1:3e:e8:
f6:1a:66:93:cb:cd:8e:58:ec:23:23:46:d6:34:7f:
7c:2e:fe:01:55:18:7d:d3:95:96:8a:7a:aa:dc:ba:
f6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:05:72:C3:69:1E:CD:84:23:D6:70:EF:53:E4:9B:86:66:06:8C:5A
X509v3 Authority Key Identifier:
keyid:27:F5:18:0F:9B:93:AE:75:73:C0:8A:89:4B:D4:52:BD:77:CE:56:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J_UYD5uTrnVzwIqJS9RSvXfOVs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e1b84b-39a6-4ac8-be63-30fee27e84cb/1/rAVyw2kezYQj1nDvU-SbhmYGjFo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e1b84b-39a6-4ac8-be63-30fee27e84cb/1/J_UYD5uTrnVzwIqJS9RSvXfOVs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.189.147.0/24
Signature Algorithm: sha256WithRSAEncryption
64:c5:68:4c:26:b6:98:51:db:d4:61:8c:1d:91:0a:e8:d0:fa:
ca:4d:8a:b2:30:e9:e1:eb:73:05:e0:16:da:e6:41:c8:2d:c5:
4a:ad:da:fc:a6:2d:ee:40:b5:a6:ca:56:e2:cb:13:9c:b7:df:
0e:1e:dd:79:7b:71:14:76:7c:31:40:85:40:c9:75:46:29:25:
ff:85:1f:cf:0f:62:58:0f:b3:2d:13:9b:b0:0d:93:40:16:b9:
7f:bb:fe:72:df:72:a8:44:45:90:f5:d7:b0:c2:54:8d:da:50:
7b:9c:de:c1:80:b2:38:5d:39:26:91:95:03:9b:40:29:d5:93:
2b:e1:95:39:c4:2b:28:32:91:8e:a5:a8:e6:e8:20:7f:e6:2e:
23:69:f8:22:1b:38:fc:87:ac:15:6e:ee:da:8b:18:eb:79:71:
da:78:df:93:fc:40:56:9d:2f:66:87:4d:21:e1:ba:e5:3e:c8:
b0:ca:de:be:04:9e:d6:a2:9d:86:b8:be:9a:db:14:bb:0c:6e:
c2:7a:d9:fc:18:f1:fe:01:27:84:95:b4:5b:56:59:09:5b:08:
53:61:d7:3d:f7:d9:74:ac:ef:34:08:4a:6b:d2:f3:01:26:bd:
b4:75:81:26:bb:27:0b:7a:e1:6a:8c:b2:ce:65:15:77:44:c8:
3b:dc:23:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:05 2024 by rpki-client on console-fra.rpki-client.org