Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/pMdeu82D-s72UizXVfFjZ5WinVQ.roa
File: pMdeu82D-s72UizXVfFjZ5WinVQ.roa (raw, json)
Hash identifier: 3ykK9nfuhZD7ksaELnMOAwxjCl52Gb0Z9pvXvH0PIc0=
Subject key identifier: A4:C7:5E:BB:CD:83:FA:CE:F6:52:2C:D7:55:F1:63:67:95:A2:9D:54
Certificate issuer: /CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Certificate serial: 01882F53162BB96EA0BB8DD86C5E57A261D2
Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/pMdeu82D-s72UizXVfFjZ5WinVQ.roa
Signing time: Thu 18 May 2023 14:45:54 +0000
ROA not before: Thu 18 May 2023 14:45:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 212.113.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2f:53:16:2b:b9:6e:a0:bb:8d:d8:6c:5e:57:a2:61:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Validity
Not Before: May 18 14:45:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4c75ebbcd83facef6522cd755f1636795a29d54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ce:cf:7e:37:a4:06:bf:3b:42:70:8c:0e:d6:
9f:25:3e:77:13:8c:a6:8f:82:f0:a8:df:36:10:f8:
aa:84:f1:6b:31:ef:b0:30:96:c7:06:8b:1a:c5:bf:
1e:c4:e0:d8:34:9c:01:ab:c5:cf:6f:27:99:54:79:
6f:e3:91:a9:24:33:19:86:5f:0c:d2:9f:da:3a:18:
0f:45:d5:26:bd:15:d4:39:a6:dd:e4:e3:00:97:e7:
97:08:9c:b5:22:e2:9e:d7:1d:d3:08:16:72:98:59:
28:89:ef:31:81:9f:c5:21:16:97:e1:83:f8:ad:57:
23:b4:02:4f:f7:0f:c8:5f:d2:77:b1:1d:74:27:ad:
73:97:5a:45:6c:25:f2:f0:de:b0:18:52:9d:8a:26:
d7:7f:09:ed:94:52:5c:3b:05:30:d2:8e:d0:95:88:
94:36:70:16:0e:de:0e:db:65:4e:c4:a3:c6:ac:f3:
12:f6:d0:15:66:4a:b4:4e:bd:e7:80:36:fe:4a:5c:
be:99:46:9a:a2:b4:35:8b:0e:77:49:e7:e0:17:07:
4c:c2:bf:c0:a7:f1:f0:56:f4:b1:97:29:5c:b6:38:
fd:f6:74:aa:7c:9b:94:46:21:d3:ea:d5:42:87:aa:
57:8b:95:8f:32:b7:75:27:c9:74:7e:4b:5d:83:01:
4f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:C7:5E:BB:CD:83:FA:CE:F6:52:2C:D7:55:F1:63:67:95:A2:9D:54
X509v3 Authority Key Identifier:
keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/pMdeu82D-s72UizXVfFjZ5WinVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.113.100.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:31:cf:5e:95:c3:25:7f:ba:8d:b2:72:fc:2e:af:de:43:bc:
18:4a:91:7c:c4:0f:40:5d:57:93:7c:2a:12:8e:91:4b:c0:44:
da:51:13:40:59:99:f7:9a:94:e3:5e:97:da:2d:19:54:6a:f1:
f9:e4:fb:22:d1:eb:1c:00:f8:d5:e3:64:af:03:eb:75:99:0b:
09:f0:4e:ff:56:73:b9:fd:23:61:47:16:9a:67:51:f6:eb:4a:
68:1b:3e:77:a8:ae:37:ab:2f:ee:b4:58:10:a8:ce:12:2d:c1:
d5:26:2c:90:1c:27:bc:9c:1d:21:e7:94:2e:cf:f1:c7:1e:1a:
b0:2f:7d:50:75:1a:fd:81:ef:8b:1c:c2:b0:3f:fd:7d:48:46:
10:bd:a5:3a:ab:32:85:b4:de:f0:86:e5:8e:16:2a:75:93:ad:
51:27:59:12:42:d0:77:09:d7:70:b1:7b:d6:d7:c8:3d:4e:88:
2e:d4:c4:3a:45:5f:9f:99:9d:ff:8b:ae:2a:0c:a6:d6:35:e3:
f6:5d:83:a7:ad:44:d8:55:88:de:7f:e5:6c:0b:5e:df:64:9d:
7f:eb:59:98:39:26:ca:3b:77:3b:1c:48:27:1c:9a:e9:b7:36:
99:b6:79:d0:fe:ef:38:c7:ab:6e:e0:0e:75:67:4b:5d:a5:4a:
96:f1:b9:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:33 2024 by rpki-client on console-fra.rpki-client.org