Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/N_QguE-e99nsMbEmPCk9pFbWQUE.roa
File: N_QguE-e99nsMbEmPCk9pFbWQUE.roa (raw, json)
Hash identifier: bJbwaeaIm/SPDWKMKqFEKz27aOVWJkMaS4XXNOmWUYU=
Subject key identifier: 37:F4:20:B8:4F:9E:F7:D9:EC:31:B1:26:3C:29:3D:A4:56:D6:41:41
Certificate issuer: /CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Certificate serial: 01856ED4DE0A494C35F0CC7F82ADE1E15BEA
Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/N_QguE-e99nsMbEmPCk9pFbWQUE.roa
Signing time: Sun 01 Jan 2023 19:35:22 +0000
ROA not before: Sun 01 Jan 2023 19:35:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210223
IP address blocks: 212.113.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:de:0a:49:4c:35:f0:cc:7f:82:ad:e1:e1:5b:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Validity
Not Before: Jan 1 19:35:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37f420b84f9ef7d9ec31b1263c293da456d64141
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:11:09:89:7b:33:80:64:10:4f:30:53:53:1a:
0b:85:ef:b7:f6:bc:49:59:d3:ef:55:8c:f8:60:89:
0c:db:93:91:f7:4a:ea:e0:bf:d5:8e:9e:48:fe:8d:
a0:16:67:26:e1:af:cb:7c:72:8e:0f:71:b9:c7:eb:
a8:d8:eb:27:d7:6c:d1:35:92:82:27:62:18:fb:31:
8d:18:a5:4c:cb:1b:dd:cf:fd:5f:46:0a:c4:06:9d:
63:91:3e:81:47:8e:07:06:cf:63:21:63:c5:14:de:
0f:fe:34:4e:8c:28:4d:eb:e7:a8:b5:0d:e5:c5:35:
e2:a6:81:ec:80:aa:1b:d4:1c:af:31:ed:50:3d:0a:
a0:b9:e6:35:14:b5:4a:63:69:78:03:a7:3a:f9:f3:
a3:01:cf:8a:ea:67:78:5c:d4:a0:39:8f:96:1a:ad:
97:b0:10:57:56:55:eb:86:03:69:35:35:1c:9c:7b:
db:9e:b5:67:79:63:45:eb:e4:18:12:e1:6d:8b:69:
4f:53:78:d2:84:2b:4b:7d:3d:da:6d:ad:63:6c:9f:
83:d3:32:c5:f2:a5:ce:fc:40:99:2e:e2:5d:2c:54:
c7:b0:45:84:d5:ed:12:3c:02:fb:80:e8:3f:ca:0d:
19:9d:5f:82:09:be:f9:e8:b4:e3:78:89:98:b8:05:
0a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F4:20:B8:4F:9E:F7:D9:EC:31:B1:26:3C:29:3D:A4:56:D6:41:41
X509v3 Authority Key Identifier:
keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/N_QguE-e99nsMbEmPCk9pFbWQUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.113.111.0/24
Signature Algorithm: sha256WithRSAEncryption
36:79:d1:fb:3b:30:2b:24:a2:f5:c6:08:11:c6:cb:d9:21:04:
b4:9a:03:4e:51:8a:da:cd:d5:c6:dd:ff:66:6d:5a:1e:64:e8:
d9:9d:d1:46:7a:1c:86:3d:83:e3:d9:68:10:65:d2:c4:eb:75:
28:8d:d0:c6:36:8a:d2:ca:96:b5:31:70:0d:60:79:12:04:d1:
10:ea:60:c4:18:b7:d5:61:dc:d4:fd:01:79:84:14:c1:28:df:
9d:e8:d6:78:37:e1:00:36:fd:a1:f5:34:a9:48:15:0a:81:80:
a3:37:15:3f:ee:a8:d4:09:49:a6:6b:4e:71:7d:5b:a3:68:56:
29:18:79:dc:8e:76:90:5d:c8:48:6b:26:f2:78:91:c5:a0:96:
a3:af:ed:3a:89:23:9f:a2:5b:cd:d8:d8:71:42:b6:dd:fa:c9:
36:e8:9c:e2:c8:f6:da:fd:20:1e:72:a9:aa:ee:e1:30:99:df:
85:d6:a0:d6:28:07:11:85:17:c4:36:88:0f:9a:1e:7a:8a:86:
29:4c:12:71:ab:68:90:37:3f:34:ca:cd:bf:57:b0:6e:67:7b:
be:59:dc:cf:15:74:d9:7a:02:13:6c:db:b7:6a:2c:56:0d:1f:
a0:c6:30:68:d4:11:c3:eb:61:81:c3:25:d3:36:7f:3c:fb:c3:
6c:18:39:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:33 2024 by rpki-client on console-fra.rpki-client.org