Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/pyllXxCTbQz6G2y_D-4zdBrt4xc.roa
File: pyllXxCTbQz6G2y_D-4zdBrt4xc.roa (raw, json)
Hash identifier: 01vMxuxpD4O7Cbe8eapifzptn9qlmYSBS88GJCFGDDs=
Subject key identifier: A7:29:65:5F:10:93:6D:0C:FA:1B:6C:BF:0F:EE:33:74:1A:ED:E3:17
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 018BCE60E1B94209AF086E7826549280398E
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/pyllXxCTbQz6G2y_D-4zdBrt4xc.roa
Signing time: Tue 14 Nov 2023 15:08:57 +0000
ROA not before: Tue 14 Nov 2023 15:08:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 213.145.72.0/21 maxlen: 24
85.115.208.0/23 maxlen: 24
213.145.88.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sun 24 Dec 2023 11:40:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ce:60:e1:b9:42:09:af:08:6e:78:26:54:92:80:39:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Nov 14 15:08:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a729655f10936d0cfa1b6cbf0fee33741aede317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:03:25:9d:05:72:8c:73:38:77:da:37:e7:b1:
41:f0:ac:e6:38:53:6c:29:b2:40:81:e2:a9:38:1b:
94:54:ea:f3:50:5f:a8:f4:d3:b5:c1:c5:a9:32:c5:
90:08:13:cd:01:8f:50:93:b2:26:c1:d2:30:63:b4:
41:04:30:46:19:b7:7c:91:f0:5a:ee:c4:76:52:ab:
8b:e2:4b:70:33:c3:0d:d9:00:49:4a:b7:bc:16:4b:
d3:df:06:38:d8:b3:6d:b0:02:f4:2c:5c:16:f3:dc:
ac:01:ec:09:37:53:22:fa:69:9b:66:39:ae:87:28:
93:d3:b8:0f:df:ac:f2:24:d7:f3:2e:60:85:e5:4d:
a7:ee:0e:dd:30:54:d7:66:e7:b7:c7:82:e5:e3:97:
e1:0c:fa:b1:c6:72:2f:38:a1:fb:d7:ab:11:d9:9e:
b0:63:9f:1d:58:83:cf:6a:2d:40:07:55:f9:4f:c3:
b1:bb:a7:1e:9e:47:bd:3d:e9:36:99:9b:8b:db:51:
e6:75:ec:ca:15:92:b5:2a:7c:98:27:bb:dd:8e:72:
47:ee:53:2e:db:a9:e2:6d:35:19:72:a9:f4:2c:ef:
09:91:2f:46:ff:cd:38:89:45:6d:b4:90:c2:78:12:
19:6e:51:b4:d1:93:a5:3f:23:7a:13:ae:65:af:93:
96:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:29:65:5F:10:93:6D:0C:FA:1B:6C:BF:0F:EE:33:74:1A:ED:E3:17
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/pyllXxCTbQz6G2y_D-4zdBrt4xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.208.0/23
213.145.72.0/21
213.145.88.0/21
Signature Algorithm: sha256WithRSAEncryption
92:24:91:d5:c0:35:ff:02:fe:aa:e2:85:2b:27:40:ae:8d:65:
d3:07:35:ed:4b:a8:35:cc:85:2b:b6:81:c9:ae:1a:44:ad:13:
d7:4d:e4:96:6e:2b:2a:7a:1d:12:ec:28:b3:57:27:59:9a:ab:
92:04:b7:92:63:97:f1:58:e3:e8:97:25:f2:a1:89:6f:ff:1a:
40:4f:6c:3c:56:d4:9c:52:40:71:52:7a:5f:f0:5c:fd:0e:69:
19:0e:b2:67:42:6a:bb:25:24:a3:c0:6c:a4:05:24:9e:01:de:
4f:d3:69:71:3d:7c:2a:d7:da:38:97:bb:f3:b1:a2:5f:a1:a8:
74:14:e8:cf:6c:58:d3:2f:46:58:1e:17:7d:f8:ae:5c:61:a8:
17:f6:68:28:1a:57:fe:9a:23:36:9a:83:52:98:d6:41:85:2f:
17:34:6a:dd:54:9d:bf:65:b9:dc:ee:43:23:c5:36:91:71:98:
2a:fc:5d:74:08:c7:0e:58:a5:cf:18:ee:91:50:9e:31:a0:d5:
d1:41:d8:f0:53:b9:fd:10:98:f5:4d:aa:e0:9e:d8:e6:e1:37:
70:8d:7a:c8:a9:7b:f4:b2:2e:11:b1:53:2d:3a:2f:8e:1a:11:
b9:bc:e8:1a:db:96:75:82:59:d9:7e:4e:0c:1e:42:b6:f7:cb:
51:16:5d:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:06 2024 by rpki-client on console-fra.rpki-client.org