Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/Rh-7L5bgk2maWPsm2l-2lAMz1Pc.roa
File: Rh-7L5bgk2maWPsm2l-2lAMz1Pc.roa (raw, json)
Hash identifier: 4977Fr5Hnqhoha0r1dIuA+c3i+58Kt654dLcGcZu70k=
Subject key identifier: 46:1F:BB:2F:96:E0:93:69:9A:58:FB:26:DA:5F:B6:94:03:33:D4:F7
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 018882AD8E5284710C073D02CD48C85078A2
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/Rh-7L5bgk2maWPsm2l-2lAMz1Pc.roa
Signing time: Sat 03 Jun 2023 19:13:12 +0000
ROA not before: Sat 03 Jun 2023 19:13:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13115
IP address blocks: 213.145.64.0/21 maxlen: 24
213.145.80.0/21 maxlen: 24
2001:41f8::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 04 Jun 2023 10:19:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:82:ad:8e:52:84:71:0c:07:3d:02:cd:48:c8:50:78:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Jun 3 19:13:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=461fbb2f96e093699a58fb26da5fb6940333d4f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:85:b6:3b:5c:88:b3:a0:55:a7:1a:32:be:24:
a9:ed:68:c0:d8:e8:85:72:63:0a:db:c4:83:32:12:
b9:b8:fc:93:96:d8:cb:9a:9c:33:a6:0e:7f:4a:23:
68:33:10:e7:98:e9:11:98:20:3b:b7:85:16:93:b7:
d3:35:bf:e6:be:f9:4e:7f:c9:46:72:e3:75:b2:71:
1e:35:67:b3:0a:66:38:b5:3d:9e:ee:a5:a1:e8:6b:
2a:c7:12:57:e2:0d:2b:38:57:17:39:ad:1a:a3:2e:
b7:8f:32:90:51:73:03:41:39:16:f7:c6:56:ee:63:
d4:5b:fb:16:cc:16:ee:2c:11:cd:c3:b8:b1:c7:21:
2d:f6:15:17:89:68:4b:4a:6b:18:e4:ff:47:47:b6:
66:0d:27:ac:d7:32:23:b9:e2:80:af:c0:39:97:ac:
5d:11:21:51:f5:f3:05:a7:5e:85:8f:2e:9e:a5:90:
6d:18:f8:2e:93:81:d4:36:30:03:2b:a6:cc:14:ec:
4b:23:32:a6:5d:d6:3d:61:e5:cd:07:ef:a9:36:5d:
52:52:57:64:d2:ca:ca:98:e0:a9:3c:d6:f7:62:c0:
b3:6f:f1:c2:00:4e:7d:27:23:74:9e:ef:be:f1:3a:
c0:cf:5b:fc:5c:f5:c0:42:af:c9:aa:49:75:d4:ae:
75:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:1F:BB:2F:96:E0:93:69:9A:58:FB:26:DA:5F:B6:94:03:33:D4:F7
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/Rh-7L5bgk2maWPsm2l-2lAMz1Pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.64.0/21
213.145.80.0/21
IPv6:
2001:41f8::/32
Signature Algorithm: sha256WithRSAEncryption
d8:af:18:17:e4:e4:7c:a1:51:1e:6c:d2:db:fe:3f:04:7d:53:
3c:8e:51:97:f9:84:1b:9c:a6:9f:b8:48:57:66:1c:06:1d:f9:
b8:ed:ac:79:5c:01:ef:c2:3c:95:ee:ef:87:01:be:5b:9b:dd:
ef:60:6a:80:1b:a6:b1:6b:0f:a5:33:42:64:41:1e:1c:5b:bc:
5f:a8:75:a9:6d:69:c9:4d:90:47:8b:57:e1:92:5e:4c:36:81:
93:cb:cf:d5:5f:6c:47:f1:72:cf:e1:ac:63:f6:3c:62:f5:39:
39:f4:a3:59:2c:40:ff:73:fe:9f:58:89:4b:f3:8d:d3:62:ce:
d5:26:9c:2e:b3:66:41:48:dc:39:21:8e:67:1f:5b:3f:2d:51:
68:60:0e:b5:3d:85:0f:0b:be:c1:dd:2e:60:b3:f1:57:10:d0:
1b:66:46:7b:d0:1f:19:7a:20:c6:e1:bc:e1:29:9c:e3:95:88:
35:ea:76:ee:85:a7:05:91:1e:07:47:db:bb:52:15:bd:07:ab:
ea:d8:94:c8:ff:87:53:4f:d0:85:1e:92:d5:90:47:23:1f:e7:
eb:0f:99:15:06:55:76:9d:b8:ce:28:0b:23:c8:a2:e0:e2:df:
a1:af:f8:97:b0:7d:9b:1c:c3:3b:e0:cd:64:97:eb:25:6b:40:
76:38:56:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:06 2024 by rpki-client on console-fra.rpki-client.org