Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/OXZpLHQtKYUmBW3vlDAQLgBQNC4.roa
File: OXZpLHQtKYUmBW3vlDAQLgBQNC4.roa (raw, json)
Hash identifier: rMaChsZn1bxVUo3lI8kkBkRPFpMb5Lfc/7zVzvgigrU=
Subject key identifier: 39:76:69:2C:74:2D:29:85:26:05:6D:EF:94:30:10:2E:00:50:34:2E
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 01902547F405511BD1532CB3684FA10E951D
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/OXZpLHQtKYUmBW3vlDAQLgBQNC4.roa
Signing time: Mon 17 Jun 2024 08:19:50 +0000
ROA not before: Mon 17 Jun 2024 08:19:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400866
IP address blocks: 213.145.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 17 Aug 2024 09:19:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:25:47:f4:05:51:1b:d1:53:2c:b3:68:4f:a1:0e:95:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Jun 17 08:19:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3976692c742d298526056def9430102e0050342e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:50:09:66:56:45:d9:6f:c4:8e:83:31:c0:30:
1e:eb:57:f3:15:84:20:75:aa:28:59:e5:17:a7:35:
0c:68:d2:28:9a:4b:59:2e:d5:da:c0:36:76:f1:f6:
cc:af:3c:1f:36:34:cf:a9:3c:fd:de:83:b6:17:83:
77:e9:01:43:b7:34:83:51:74:0b:7c:2a:2d:d8:f4:
95:ab:ce:6b:aa:74:43:7c:94:e8:2a:ef:20:9a:aa:
3b:97:8f:37:23:7d:54:52:26:d9:f3:8b:69:5c:d4:
c1:9e:24:e4:06:d4:6a:a5:e6:34:6a:15:18:a3:28:
e5:2e:e9:a0:a6:90:16:c1:2f:69:77:a5:7c:1f:fe:
41:13:65:07:fd:69:81:ec:af:18:ff:e7:e1:ab:62:
85:bb:40:b5:3d:29:8a:16:fe:7b:15:d4:cd:61:eb:
d1:07:85:86:13:90:f4:c0:79:69:6a:4b:7d:41:d2:
65:c6:9d:55:b5:9d:ec:20:7c:14:50:80:c7:86:df:
0f:99:01:75:7b:dc:fd:96:25:20:cd:2e:8a:eb:ce:
71:2b:d9:98:e5:7e:16:44:4d:fa:78:a8:6d:0e:b0:
4e:4a:99:49:9d:c9:d6:ec:d5:13:f8:bf:7f:86:c4:
d6:16:fb:e3:75:bf:be:69:7e:07:18:b1:47:79:21:
d1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:76:69:2C:74:2D:29:85:26:05:6D:EF:94:30:10:2E:00:50:34:2E
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/OXZpLHQtKYUmBW3vlDAQLgBQNC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.89.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:0e:d9:0a:88:a2:55:e0:8c:1a:fa:c2:3c:6b:3b:c9:d2:db:
c0:89:2c:b6:c3:88:46:f0:8e:43:c3:93:d6:f1:64:3b:0d:4d:
81:88:d1:49:b4:d4:62:b4:2c:f3:0a:a8:ca:59:5a:bb:c2:83:
eb:cf:b2:7a:c7:e5:bc:ff:bb:8e:f9:b6:5a:48:b5:16:bd:70:
27:b7:21:f6:ac:20:50:bb:20:cc:26:8a:96:0d:40:aa:6e:04:
b9:03:c4:d2:14:a1:eb:64:b3:d2:61:c8:e4:e1:80:ad:7a:56:
9e:69:32:21:89:39:d6:12:cb:ea:c0:0e:72:8c:f3:49:26:15:
8b:80:61:9b:62:33:f7:a4:d0:80:54:b4:ef:83:06:61:08:ab:
28:ae:db:cc:64:eb:a1:2b:f3:04:9e:11:32:ae:7b:a8:5b:b3:
7a:1b:46:2d:ee:8c:ed:22:12:43:ea:01:58:b4:fd:85:12:5b:
1a:06:8b:c0:36:5c:40:87:0b:d7:78:e9:29:ef:dd:83:8c:af:
8d:45:0e:7c:bd:ee:8b:f6:a0:79:16:e7:d9:1f:6b:7d:9f:bb:
f0:19:fd:88:2d:cd:5e:89:86:44:58:de:89:bc:2c:d0:04:ba:
31:9f:ac:89:b9:d2:30:79:48:6c:f9:c0:a8:14:87:97:77:1e:
6c:48:d6:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 17 10:30:18 2024 by rpki-client on console-fra.rpki-client.org