Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/Ajh0At6cmGCjqLwN-drN3DeZpmY.roa
File: Ajh0At6cmGCjqLwN-drN3DeZpmY.roa (raw, json)
Hash identifier: 9lxqbhr+rp7PQy5dcufUOqOVR8sb+DuNSXc4ePI05Tg=
Subject key identifier: 02:38:74:02:DE:9C:98:60:A3:A8:BC:0D:F9:DA:CD:DC:37:99:A6:66
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 01887B507B40E220EC9C33767BE5EBD7F8D4
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/Ajh0At6cmGCjqLwN-drN3DeZpmY.roa
Signing time: Fri 02 Jun 2023 08:54:11 +0000
ROA not before: Fri 02 Jun 2023 08:54:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13115
IP address blocks: 213.145.64.0/19 maxlen: 24
2001:41f8::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 02 Jun 2023 14:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:7b:50:7b:40:e2:20:ec:9c:33:76:7b:e5:eb:d7:f8:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Jun 2 08:54:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02387402de9c9860a3a8bc0df9dacddc3799a666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:95:a6:77:7b:2e:af:ac:4b:08:a3:a0:f6:5b:
2a:2c:86:dc:be:f0:25:ef:f9:75:d2:0d:83:5e:5d:
cf:bc:a0:41:73:75:34:33:f0:e2:45:e2:77:45:71:
45:f0:6a:21:47:28:ce:72:4a:36:52:92:31:6c:19:
87:d0:f5:92:3f:b5:61:2b:07:5c:04:a5:56:28:51:
bc:76:11:d8:99:77:7f:a7:22:12:87:bc:78:cd:63:
98:0e:c5:fd:35:61:10:c8:92:a4:6a:a3:5c:97:56:
c2:f9:1a:d4:8e:99:1d:25:56:f7:6f:66:19:c6:fc:
04:1c:7a:b3:09:e4:fb:93:06:2b:06:3a:a8:2d:d7:
e1:57:a2:23:b6:16:70:dd:5b:cb:04:00:78:7f:3e:
1f:6e:c5:dc:bf:8b:d9:5c:8e:68:e7:b1:d9:26:fe:
d7:b7:1e:e1:68:5f:30:83:6f:8c:ee:c9:3f:d1:85:
2f:df:7c:e5:f0:2f:41:b8:9f:43:3b:39:48:d8:51:
81:4d:f9:03:3e:3e:96:ea:6c:3a:ef:07:31:47:8a:
c1:a8:46:7f:61:f0:b0:78:67:a0:15:3d:b4:0a:95:
14:f5:66:ce:db:3c:9e:bd:0d:8c:a4:70:18:0e:5c:
48:a5:f1:50:11:84:2b:4a:23:35:8b:9f:4a:a0:1f:
d8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:38:74:02:DE:9C:98:60:A3:A8:BC:0D:F9:DA:CD:DC:37:99:A6:66
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/Ajh0At6cmGCjqLwN-drN3DeZpmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.64.0/19
IPv6:
2001:41f8::/32
Signature Algorithm: sha256WithRSAEncryption
93:6e:a5:b8:28:63:9b:5b:0e:3d:95:24:fc:4f:41:87:53:1c:
d4:0d:2d:93:0d:a4:88:ce:48:89:bf:b3:02:ad:f1:b2:d2:55:
28:f2:2f:b1:11:ed:66:97:c6:bc:7b:f5:e0:10:a1:78:b2:b2:
18:72:13:42:c9:a8:ca:a1:c7:2c:c8:8d:d0:06:03:9f:f3:ed:
02:33:bc:93:87:47:76:0c:79:22:2d:ed:4b:70:cd:07:2d:ba:
30:e8:cf:cb:9a:35:33:a0:72:1b:30:de:70:f1:a2:0d:34:78:
7f:d0:2e:ad:8e:49:3f:ff:fd:a7:be:ee:cd:51:25:6a:6e:c5:
67:f6:b8:c4:04:4d:7e:87:57:11:e2:61:d4:f6:55:18:75:a0:
7b:05:ba:d0:8e:a7:2b:ce:09:ff:37:be:73:7b:77:5c:11:2b:
e0:48:10:6f:93:b9:fe:4b:32:9e:bf:70:e4:a9:44:82:ee:eb:
8b:f7:f6:2d:2e:e9:b6:71:a4:a8:41:46:da:7b:fa:5f:c8:d2:
c3:6d:26:3f:6b:28:f5:1a:86:25:d3:41:39:34:e4:9b:dc:81:
01:b2:85:f3:2b:86:b5:a8:89:6e:c5:89:95:26:35:87:90:54:
8e:62:f2:e7:be:6a:3d:71:3b:4d:82:66:42:98:c3:88:dd:36:
b8:cd:5c:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:06 2024 by rpki-client on console-fra.rpki-client.org