Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/YCkFvbhk7q2fvAb1yr9tqcuUVeo.roa
File: YCkFvbhk7q2fvAb1yr9tqcuUVeo.roa (raw, json)
Hash identifier: tNbzimnkFwdxHwhki9Vwpkst0XmgTBLxTWr2v8TNOyA=
Subject key identifier: 60:29:05:BD:B8:64:EE:AD:9F:BC:06:F5:CA:BF:6D:A9:CB:94:55:EA
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 0191C5E7B88299DB84B2C57C28B7D091271C
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/YCkFvbhk7q2fvAb1yr9tqcuUVeo.roa
Signing time: Fri 06 Sep 2024 05:56:23 +0000
ROA not before: Fri 06 Sep 2024 05:56:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 213.145.70.0/23 maxlen: 23
213.145.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Oct 2024 22:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c5:e7:b8:82:99:db:84:b2:c5:7c:28:b7:d0:91:27:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Sep 6 05:56:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=602905bdb864eead9fbc06f5cabf6da9cb9455ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c1:3e:a2:b4:a0:6a:da:2b:4f:be:54:2f:aa:
76:f6:e3:54:4e:90:34:c2:81:3a:6d:d0:27:a7:7b:
0f:27:51:8b:d7:d6:c0:50:49:c7:14:0d:cf:1b:4f:
37:bd:a3:41:65:9d:4f:72:4d:09:9b:67:a4:2d:6d:
d2:e6:25:02:0a:4d:b9:0f:04:4f:2a:0b:1f:fc:e4:
62:2b:29:07:81:6b:71:39:62:8f:a9:f5:99:b0:bd:
35:ae:bb:84:fb:08:17:bb:4b:95:a7:0f:c0:2e:81:
89:9f:c1:ce:98:f6:36:2c:3c:6d:73:9a:59:ef:87:
4c:8a:ab:31:45:d4:27:03:bd:47:96:bb:d8:a4:65:
4b:fe:92:91:75:ec:0c:72:3a:e0:22:72:a1:ba:fd:
98:55:59:df:79:b3:5a:52:fa:4b:78:a7:54:5a:f8:
d9:c6:74:9d:c0:82:ee:d8:e6:98:8e:c4:57:01:06:
3e:2a:d4:3a:b4:bb:92:f6:1d:ee:5c:a7:c0:27:09:
dd:41:54:d0:ee:91:89:92:1a:8d:9d:3a:d5:4e:92:
c5:e8:0d:11:a8:8e:4a:ff:3c:51:69:35:b9:c7:6c:
dd:22:87:56:24:e4:6c:2d:22:97:16:82:fc:98:1e:
07:75:ae:fa:6f:6b:a5:7d:e7:6e:0c:88:bd:5f:e9:
a0:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:29:05:BD:B8:64:EE:AD:9F:BC:06:F5:CA:BF:6D:A9:CB:94:55:EA
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/YCkFvbhk7q2fvAb1yr9tqcuUVeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.70.0/23
213.145.89.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:78:68:51:f2:62:55:7a:a5:e9:be:a2:f7:cc:54:40:62:93:
5b:19:34:ba:62:e0:8c:bb:61:55:29:18:81:1d:1a:cd:09:f0:
18:17:dd:87:9b:b1:c6:c5:c2:b7:e1:59:ca:d7:00:73:b0:28:
2e:0d:d0:50:04:d7:ac:8a:78:f1:38:0d:3d:9e:6d:17:e1:b7:
10:86:01:b9:99:a3:99:4c:ff:4d:1c:ca:3f:71:94:91:5c:2a:
25:85:94:a0:26:6d:9f:91:be:1f:84:de:f5:d0:72:69:8e:a3:
a2:4b:fe:67:42:77:9e:af:7b:2c:73:1f:a5:99:14:f1:13:00:
1d:72:80:ac:d9:b8:91:c4:7e:6b:97:fe:db:92:2f:54:3b:79:
d6:cf:0f:e3:48:ff:4e:00:ee:7e:e7:f1:03:50:e4:52:8d:86:
5c:ca:6d:bf:41:4e:7d:78:df:ef:a2:c5:ec:1e:e9:27:4b:6e:
67:41:0e:e7:31:43:23:c7:86:13:44:a9:7d:96:cc:6b:f8:94:
60:a8:d9:e2:c6:ab:ca:63:54:11:4f:66:a2:9f:45:18:6c:0d:
00:83:31:2f:fd:2f:43:6c:23:c0:df:d5:56:b5:51:ae:a2:69:
3f:d4:96:25:e3:a8:1b:da:3b:af:d4:d1:40:61:df:b7:d2:ae:
14:18:9d:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 7 00:17:54 2024 by rpki-client on console-fra.rpki-client.org