Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/diU2mVgLd7uNdC9RdNWsVHvym4g.roa
File: diU2mVgLd7uNdC9RdNWsVHvym4g.roa (raw, json)
Hash identifier: aAbFN7NxUHS4Fp6alJlQrpOrE3lWTM7g4L1nk2rGCXY=
Subject key identifier: 76:25:36:99:58:0B:77:BB:8D:74:2F:51:74:D5:AC:54:7B:F2:9B:88
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 018B6C1D377B00DC96A3F35BC8D94281DB17
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/diU2mVgLd7uNdC9RdNWsVHvym4g.roa
Signing time: Thu 26 Oct 2023 13:12:15 +0000
ROA not before: Thu 26 Oct 2023 13:12:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9087
IP address blocks: 213.145.76.0/23 maxlen: 23
213.145.72.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 31 Oct 2023 09:10:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6c:1d:37:7b:00:dc:96:a3:f3:5b:c8:d9:42:81:db:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Oct 26 13:12:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76253699580b77bb8d742f5174d5ac547bf29b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:50:f8:41:da:9b:ee:cc:8f:3d:ce:a8:8c:3e:
65:7c:47:62:b2:b4:00:d6:1d:37:ab:f9:67:5b:bc:
84:dc:1b:d1:a6:4c:07:b9:d9:dc:f8:a2:74:dd:e5:
30:39:6f:8f:85:f1:38:13:1a:b5:9c:bf:06:7f:85:
2a:26:ee:8f:2e:ef:94:a5:8a:3f:f3:dc:29:93:bc:
d3:9f:f1:db:97:2e:35:b8:de:db:d2:84:11:38:a1:
d3:80:59:29:55:7c:dd:b7:7d:80:df:ea:f9:5d:b1:
73:99:52:4f:2d:d6:78:b5:bc:3a:8c:a4:7d:c3:a3:
ce:64:a5:b8:34:76:2f:21:08:52:d4:f7:f3:60:c9:
c9:ea:5e:80:a6:73:01:be:e6:ed:dc:53:ed:5f:58:
94:a3:88:f3:24:5a:a6:13:a1:ff:ce:18:0c:e3:89:
33:e1:8e:5f:2e:d0:e2:76:d7:ab:33:b6:df:e9:87:
9b:74:c0:08:31:6f:88:bc:01:ba:97:5a:a4:a1:a6:
76:6a:54:d3:f4:90:8c:09:cc:e9:9e:56:7d:c7:26:
11:86:b4:93:14:8c:59:b2:7a:df:64:62:94:f9:65:
03:d6:fd:36:f6:fe:8b:d2:33:9f:91:be:9e:5d:64:
51:d9:6b:4d:0c:6b:b4:41:6e:73:93:8e:78:93:8c:
f3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:25:36:99:58:0B:77:BB:8D:74:2F:51:74:D5:AC:54:7B:F2:9B:88
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/diU2mVgLd7uNdC9RdNWsVHvym4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.72.0/23
213.145.76.0/23
Signature Algorithm: sha256WithRSAEncryption
d1:25:0a:d0:5c:3f:ff:0d:55:90:e3:16:3a:e2:96:a1:f6:88:
73:ce:8c:5b:21:01:a5:09:66:17:23:3b:72:56:f9:fb:c0:a0:
24:54:ba:e1:88:2b:a8:c7:08:af:ee:bc:37:ff:7a:89:a1:a3:
1d:31:39:fd:d3:dc:c0:aa:bb:92:ab:20:a2:c6:8e:98:34:73:
d2:c7:45:5b:71:ad:73:8c:a7:c9:d1:6b:97:86:89:3e:18:f5:
53:2f:cc:2d:b5:c3:7e:2e:e5:c7:f3:76:c0:13:b3:92:d1:57:
ad:80:e8:a0:bc:f4:a2:a9:86:b6:17:12:03:68:df:1c:c6:44:
4d:ba:99:8b:da:e8:98:f1:b8:59:47:ee:6e:de:8c:01:38:bb:
f5:2d:c3:58:96:67:e4:4a:17:ce:dd:1b:29:a2:e0:84:e0:da:
ec:76:8a:37:f5:c7:03:84:45:e0:7f:30:f6:dd:1e:36:95:4c:
01:61:4a:77:04:45:8c:7c:d5:23:2e:48:25:ed:f3:57:ad:06:
ca:04:55:db:9c:69:33:61:7a:f0:27:b5:2d:d3:b9:21:c3:d3:
0d:c7:f8:c3:91:f9:7e:1c:c8:d1:39:dd:b0:be:87:32:13:43:
0d:b3:39:a8:55:a8:b4:90:20:59:74:b9:4c:7a:b5:ad:c0:ff:
fa:c5:53:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:12 2024 by rpki-client on console-ams.rpki-client.org