Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/Sz0zIR1X37_G5x7s8RQNkzvE7rE.roa
File: Sz0zIR1X37_G5x7s8RQNkzvE7rE.roa (raw, json)
Hash identifier: oxNbDVP6aFUWRoip73ka8EhoAFT7C9nNR3yDMqHul6E=
Subject key identifier: 4B:3D:33:21:1D:57:DF:BF:C6:E7:1E:EC:F1:14:0D:93:3B:C4:EE:B1
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 0192285716BF3C63A594980D7CA165D2EC9E
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/Sz0zIR1X37_G5x7s8RQNkzvE7rE.roa
Signing time: Wed 25 Sep 2024 08:40:48 +0000
ROA not before: Wed 25 Sep 2024 08:40:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 213.145.68.0/24 maxlen: 24
213.145.82.0/24 maxlen: 24
213.145.83.0/24 maxlen: 24
213.145.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 08:47:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:28:57:16:bf:3c:63:a5:94:98:0d:7c:a1:65:d2:ec:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Sep 25 08:40:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b3d33211d57dfbfc6e71eecf1140d933bc4eeb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:76:f4:49:7e:bb:c8:96:f6:34:27:bc:87:1e:
0b:b6:88:97:ad:af:7a:8c:d6:f5:aa:90:bb:38:66:
e3:00:4b:2f:0b:45:25:ce:63:e0:44:9f:2c:43:f5:
d2:5e:d5:e6:95:50:c5:2a:ea:1c:17:43:c2:48:6c:
31:a7:b4:04:d5:c4:2e:6d:a5:80:09:8d:77:76:ea:
c9:11:2a:24:9a:1b:06:cc:06:22:5a:75:8d:f0:36:
7c:a7:a1:e3:9e:c5:ae:3c:81:a1:c9:c9:9f:d1:bf:
93:64:02:1c:64:f2:73:58:ad:46:82:f0:68:30:97:
8e:96:2a:29:f4:06:02:5d:b7:f7:5c:2f:b4:64:16:
16:52:25:7b:af:6e:a6:b2:3d:7b:ee:ac:9e:de:dd:
42:26:5a:c4:1d:8a:40:d8:c1:a3:df:28:34:6e:de:
06:5d:92:1a:32:1d:73:b2:76:9f:38:d5:bb:84:2f:
21:0a:e5:e3:73:5b:bb:e7:6f:c7:e4:10:2b:5d:be:
4e:f6:c6:bb:72:d7:a2:33:a1:9a:24:9c:e3:24:77:
96:68:1c:2b:ad:7d:99:ac:61:ea:60:2e:92:d3:f2:
b3:4f:aa:bb:41:01:3a:32:3e:da:b5:28:d9:2e:08:
93:b5:96:0c:5a:58:5e:65:30:96:f8:5f:2d:e5:08:
94:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:3D:33:21:1D:57:DF:BF:C6:E7:1E:EC:F1:14:0D:93:3B:C4:EE:B1
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/Sz0zIR1X37_G5x7s8RQNkzvE7rE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.68.0/24
213.145.82.0/23
213.145.94.0/24
Signature Algorithm: sha256WithRSAEncryption
84:f7:69:a0:06:32:4f:ce:eb:6a:b5:64:d4:ad:9d:15:2b:11:
b3:ae:b2:ed:83:a8:4a:38:77:89:c6:a7:34:bc:8e:74:38:a9:
a9:09:9a:c8:d6:96:33:97:c7:68:f1:eb:5d:d2:4d:99:b7:61:
67:3b:cb:79:6f:d2:6a:9d:33:3a:aa:88:d9:b9:78:2c:bb:09:
a9:8a:52:26:e5:2e:9b:f2:a8:1a:dd:61:33:82:5a:bd:e9:6b:
29:ea:1d:6d:e3:4d:47:9f:31:01:2a:a8:a8:30:74:52:0d:9d:
c1:d2:2d:37:cc:c5:bc:28:78:31:be:56:a5:50:4b:86:92:9a:
c8:8f:1e:0b:5f:87:35:1f:f1:8a:a8:e3:ce:fe:d3:72:5b:23:
ac:23:e5:f8:7e:1d:02:b6:57:2c:9a:e5:7f:d0:94:60:60:75:
60:bf:75:a4:07:03:40:d2:0e:15:d3:04:2c:6b:0b:ae:a0:be:
86:6f:50:82:ac:27:bf:d5:f8:54:c4:66:1e:a3:24:52:f6:0e:
fd:d4:69:0c:1c:0b:06:f2:18:28:8f:22:97:78:1b:70:a9:0c:
7d:32:a6:4f:b4:88:28:db:36:06:93:ba:25:3d:ae:a6:72:18:
9a:43:99:6b:13:0d:a0:12:32:a2:13:a4:5a:a6:59:4a:73:44:
2e:9b:00:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 10:49:53 2024 by rpki-client on console-fra.rpki-client.org