Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/4HnHR1KO1qXUb4MxxRU0aODhgwo.roa
File: 4HnHR1KO1qXUb4MxxRU0aODhgwo.roa (raw, json)
Hash identifier: OkbLbh7xTlezADozKhnkM0wh+wqt7daBRizvBVH+zEk=
Subject key identifier: E0:79:C7:47:52:8E:D6:A5:D4:6F:83:31:C5:15:34:68:E0:E1:83:0A
Certificate issuer: /CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Certificate serial: 018751E9DF471E4F13CE80212F3E7CA53639
Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/4HnHR1KO1qXUb4MxxRU0aODhgwo.roa
Signing time: Wed 05 Apr 2023 14:54:54 +0000
ROA not before: Wed 05 Apr 2023 14:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 212.113.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:51:e9:df:47:1e:4f:13:ce:80:21:2f:3e:7c:a5:36:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Validity
Not Before: Apr 5 14:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e079c747528ed6a5d46f8331c5153468e0e1830a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:69:e8:1f:7b:70:b8:12:29:a5:3a:67:23:9d:
7e:6a:10:46:32:28:b9:44:45:84:d1:31:03:58:b4:
da:1a:e4:31:54:79:fa:ee:c8:3c:7e:5b:40:95:32:
32:c0:ae:5a:1f:a6:db:9d:41:10:41:ff:c9:fc:12:
44:30:5c:ac:32:6a:dc:2b:8d:d4:cf:36:a0:d4:d9:
6e:57:8c:e8:6e:5e:a9:83:20:6b:b5:57:8c:58:eb:
c6:80:ba:00:8e:77:bc:4a:ff:8e:29:3e:2a:e8:5e:
9f:b3:75:d0:1e:41:f9:16:ca:74:6e:d4:16:69:40:
c2:62:d3:47:97:33:d4:55:7f:0c:41:24:9c:7e:f2:
d4:c4:ea:9c:7f:f3:d2:08:62:27:39:4c:f6:61:13:
0c:77:6d:fc:fe:5c:78:cd:fd:b6:e8:97:2c:04:e4:
c1:00:e9:af:20:00:98:d0:da:65:16:65:84:0d:dd:
8f:e8:00:8e:f3:3c:34:de:ec:b1:9f:33:39:49:e6:
05:37:5c:73:90:93:cc:b3:70:40:41:21:4f:ee:8c:
ce:07:47:9c:17:d4:25:ad:b5:6f:57:42:db:4b:7a:
05:22:04:43:05:29:1a:09:a9:c0:63:87:4c:6f:0c:
d1:90:08:38:94:9f:58:bd:33:c7:e5:02:e4:0c:43:
67:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:79:C7:47:52:8E:D6:A5:D4:6F:83:31:C5:15:34:68:E0:E1:83:0A
X509v3 Authority Key Identifier:
keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/4HnHR1KO1qXUb4MxxRU0aODhgwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.113.116.0/24
Signature Algorithm: sha256WithRSAEncryption
64:71:6a:c7:fc:6e:1d:19:7c:1d:e4:d1:c0:e4:76:3b:25:a1:
5d:a7:39:c7:ad:ec:d1:cb:ca:71:f3:22:d4:ae:51:53:94:ef:
aa:6c:ba:c5:3d:b4:a3:6f:fc:80:20:46:15:ad:1e:aa:8c:33:
8c:92:ff:d1:df:f0:25:9f:c4:07:46:56:f5:f8:c3:84:51:71:
03:df:f3:b7:73:ec:45:9d:23:03:28:4a:a9:13:22:b0:7e:8b:
96:c6:03:d7:ad:b7:38:5f:3c:c5:b1:0f:31:7e:f4:2f:b4:ea:
49:df:0c:97:88:87:4b:7f:ec:e1:e3:56:66:a2:9b:ec:e1:2d:
52:e1:3a:d4:24:aa:77:63:1d:2c:e0:ec:47:90:7b:a7:53:45:
34:b8:c5:2e:69:4e:7e:35:2e:1d:19:1a:e5:a8:70:9b:b1:3d:
1a:50:c5:fb:28:a9:88:8d:09:64:eb:6b:3b:c4:9e:d6:55:c8:
2f:c2:3b:2e:6f:95:c2:68:15:62:d7:b8:0b:82:a0:65:de:2a:
cc:62:68:1e:bf:39:d5:2a:0c:19:6b:a3:43:98:f5:df:75:07:
a3:a7:7d:56:fc:bc:c8:7b:c2:3b:4a:94:9c:92:cc:b7:6e:4d:
bc:99:e1:73:36:6e:89:99:db:d3:59:95:d3:2f:b2:f4:c4:70:
7b:d2:fd:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:33 2024 by rpki-client on console-fra.rpki-client.org