Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/vrdFYyH45qSYX3DoFJP7kaVPsmU.roa
File: vrdFYyH45qSYX3DoFJP7kaVPsmU.roa (raw, json)
Hash identifier: Mqth5OwoZC15a+BhL4k0nIqAskKLneIDoE7Mjv2wrUo=
Subject key identifier: BE:B7:45:63:21:F8:E6:A4:98:5F:70:E8:14:93:FB:91:A5:4F:B2:65
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 018885EBEFA0932E3F73CF38C1FD3B2AC7DA
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/vrdFYyH45qSYX3DoFJP7kaVPsmU.roa
Signing time: Sun 04 Jun 2023 10:20:12 +0000
ROA not before: Sun 04 Jun 2023 10:20:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 213.145.72.0/21 maxlen: 24
213.145.88.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Jun 2023 06:27:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:85:eb:ef:a0:93:2e:3f:73:cf:38:c1:fd:3b:2a:c7:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Jun 4 10:20:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=beb7456321f8e6a4985f70e81493fb91a54fb265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c7:9e:2f:b3:a9:73:2a:25:56:a1:1c:da:a9:
73:6d:ef:a1:9e:0e:a6:ec:cf:23:c1:3a:df:bb:48:
3c:46:f4:3e:83:7c:1c:4d:15:f6:f3:71:d1:61:9d:
47:f3:32:28:5c:cd:11:75:ec:8e:95:9e:b0:3a:2e:
2c:a7:29:1d:67:9b:fa:f3:77:87:8e:43:3f:ad:ce:
e9:e3:63:da:9f:cc:b4:fa:79:bc:9d:7b:94:a7:a7:
4c:eb:b7:06:6e:26:b9:ac:20:f9:94:1c:73:5f:27:
d5:60:8a:c9:b9:23:de:6e:21:d1:0c:16:86:ab:71:
5a:6e:e0:60:01:01:84:ce:2a:16:f1:cf:1e:4a:a4:
33:8d:ed:74:80:46:e4:19:d5:70:ea:3a:ff:13:bc:
38:5c:4f:95:37:9f:3e:d8:d3:6e:48:81:59:13:35:
01:22:b4:81:66:aa:88:3c:c3:04:7b:1a:df:f4:9e:
0d:37:0b:74:6d:01:53:16:08:89:a7:88:22:b4:2e:
21:91:9b:bc:60:0b:13:76:8b:23:02:1a:48:da:39:
0f:02:74:1e:0c:89:d1:10:1f:eb:5d:29:db:e6:79:
0a:1d:cc:14:3a:ac:9a:07:d3:63:80:b5:36:45:0e:
ed:a6:c2:54:df:e6:10:a2:e3:15:ff:41:b2:ab:de:
6d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:B7:45:63:21:F8:E6:A4:98:5F:70:E8:14:93:FB:91:A5:4F:B2:65
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/vrdFYyH45qSYX3DoFJP7kaVPsmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.72.0/21
213.145.88.0/21
Signature Algorithm: sha256WithRSAEncryption
85:ec:58:38:b0:5d:75:c2:fa:3a:09:85:6f:e7:4e:8b:e5:51:
2a:d8:0c:5e:08:5e:51:82:b8:c9:fc:c0:11:3f:7f:27:a1:90:
82:85:b8:47:8c:1e:b3:03:5d:e2:b3:3a:80:d2:89:26:45:7a:
50:31:c7:df:10:f3:05:18:cc:11:07:84:96:a4:4b:bd:f5:d0:
5e:35:ba:d2:fc:72:29:27:5e:d6:43:34:ce:b9:68:9c:93:e1:
62:74:88:d6:71:ac:79:9b:5b:8c:0b:98:31:bc:b1:91:ad:cf:
9e:c6:d8:56:95:df:d4:bc:4f:2a:64:8d:0a:70:2c:0a:2b:2f:
3b:80:d1:7a:b8:6a:c2:65:c3:70:3b:4f:1e:1f:68:93:68:04:
42:f1:c5:ad:23:58:f6:ad:61:95:c7:37:1c:18:4b:f0:64:4b:
05:b5:63:33:db:97:76:ef:70:6a:4a:37:15:b5:e6:09:d1:e0:
83:f8:94:c5:bb:af:fb:ab:ff:58:86:00:cd:e0:8f:e0:99:ee:
11:6f:86:f6:32:a7:6a:2e:d3:62:f4:b4:68:9c:e6:6d:23:76:
0f:64:82:be:aa:20:27:a8:49:5f:5b:a1:03:2d:c6:11:48:8d:
62:88:3b:3e:1b:5e:7f:91:b1:d2:a9:17:27:bc:08:99:95:3e:
05:36:a0:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:06 2024 by rpki-client on console-fra.rpki-client.org