Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/ukTCkYFJNMqQu8yL_Rcd6EbAULA.roa
File: ukTCkYFJNMqQu8yL_Rcd6EbAULA.roa (raw, json)
Hash identifier: 2bCUZ5aa04eNwENsQlTjMDICjIubVbM7O1eNWT43ZC4=
Subject key identifier: BA:44:C2:91:81:49:34:CA:90:BB:CC:8B:FD:17:1D:E8:46:C0:50:B0
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 0192640DA5C01CE7ED9DF4447FD8D2BC424C
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/ukTCkYFJNMqQu8yL_Rcd6EbAULA.roa
Signing time: Sun 06 Oct 2024 22:57:48 +0000
ROA not before: Sun 06 Oct 2024 22:57:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 213.145.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Nov 2024 16:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:64:0d:a5:c0:1c:e7:ed:9d:f4:44:7f:d8:d2:bc:42:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Oct 6 22:57:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba44c291814934ca90bbcc8bfd171de846c050b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d8:a1:5e:be:a8:97:8f:45:d6:35:2a:80:8b:
f9:4e:3d:10:18:a9:c8:7e:cd:f0:a8:05:71:bf:aa:
55:75:34:d3:ac:9c:b6:40:ca:c5:fd:0b:0f:67:9f:
96:3c:6a:e6:41:2c:d0:74:6a:2a:25:c7:ae:ff:94:
de:db:a3:e4:97:ef:70:ac:19:e4:ff:a1:3d:0f:f3:
86:1b:5a:a1:81:98:be:cb:87:63:38:39:12:24:8e:
f8:63:2e:b5:ae:e2:e1:0a:7d:4a:6f:66:e9:64:2d:
2e:16:6c:b6:83:17:12:87:79:a1:4b:39:e2:38:93:
8d:58:95:15:de:e5:07:87:2b:dc:c1:13:2c:46:ee:
e7:6f:17:38:a2:85:be:b5:f8:30:a7:32:46:99:5b:
16:88:bd:b4:7e:99:8f:58:ad:ba:11:fe:4a:42:81:
c1:eb:c9:ee:70:13:3c:0b:84:48:7f:06:1d:49:b9:
38:8e:03:52:c9:98:47:3a:e7:5d:12:d4:f7:f3:f4:
c5:c8:aa:b5:07:c5:a1:0e:48:42:a4:0d:a5:db:c0:
3a:0b:39:43:e4:10:d7:f6:09:98:f6:ab:1d:e9:ad:
04:55:54:c9:43:9c:84:ae:16:ba:cb:7a:16:02:c2:
8c:52:12:5b:66:89:d6:69:f7:65:4b:f1:33:2d:2c:
aa:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:44:C2:91:81:49:34:CA:90:BB:CC:8B:FD:17:1D:E8:46:C0:50:B0
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/ukTCkYFJNMqQu8yL_Rcd6EbAULA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.89.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:43:4e:67:c2:eb:20:0a:06:34:ec:6a:bc:a3:8a:45:dd:09:
29:86:85:b4:c5:93:77:25:6a:8f:7f:86:f1:cd:3b:26:e1:8f:
12:60:4c:ec:1c:94:28:83:b5:0b:ad:69:72:18:a9:3e:dd:f4:
62:8f:cf:8e:c0:47:f6:c4:ea:62:f3:89:d3:68:b8:bc:74:95:
08:59:58:86:4c:dc:79:f9:b3:e4:11:42:22:22:54:f4:09:b1:
a8:58:88:3e:7d:fd:d7:db:6a:c0:9d:85:69:da:89:f4:b4:ac:
c5:52:24:fc:6b:e4:e1:ce:bd:ea:c3:d4:83:a1:cf:19:10:a7:
df:38:dd:6a:3e:4f:44:ba:34:ff:e0:5d:f7:32:12:9d:eb:76:
92:a9:d9:2c:88:14:dc:7d:bb:8a:71:15:a5:8b:a6:b0:2d:2c:
c2:3d:26:8d:bb:d6:fb:ce:6f:69:5f:90:bd:4c:4f:f6:09:65:
89:3a:8d:41:15:df:95:a2:16:57:20:5b:f1:23:9a:4e:c0:ba:
98:07:b9:64:28:ea:3a:7d:89:0c:b7:dd:70:62:b2:a5:c0:ce:
1e:a7:20:b9:a4:1f:80:fd:91:76:e2:dc:ad:30:cd:c0:15:00:
3f:01:19:c9:7b:7b:66:25:09:8d:69:6a:b1:7b:07:80:ba:6a:
69:85:1f:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 18 18:41:02 2024 by rpki-client on console-fra.rpki-client.org