Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/V3i8TPJwy8ELQIgoU0Gh5-n75XE.roa
File: V3i8TPJwy8ELQIgoU0Gh5-n75XE.roa (raw, json)
Hash identifier: lIFIu2TV3+8rfxrrhaf+WQB+CZwu0weyOKMwL2nHvVQ=
Subject key identifier: 57:78:BC:4C:F2:70:CB:C1:0B:40:88:28:53:41:A1:E7:E9:FB:E5:71
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 018FC807BBA45C5740451FAB6E4C3A4C8B86
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/V3i8TPJwy8ELQIgoU0Gh5-n75XE.roa
Signing time: Thu 30 May 2024 05:45:01 +0000
ROA not before: Thu 30 May 2024 05:45:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197992
IP address blocks: 212.42.192.0/20 maxlen: 20
Validation: Failed, certificate revoked on Fri 28 Jun 2024 00:02:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c8:07:bb:a4:5c:57:40:45:1f:ab:6e:4c:3a:4c:8b:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: May 30 05:45:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5778bc4cf270cbc10b4088285341a1e7e9fbe571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3b:32:87:f8:51:4a:e5:da:d5:6d:25:cf:de:
47:48:8e:af:2f:44:f7:96:53:88:09:a2:c6:28:1c:
d8:67:16:88:dd:d2:1e:75:ea:ad:2e:5f:70:ff:28:
4d:dd:75:ca:b4:28:9d:92:3d:98:0c:85:b7:04:e4:
bc:78:1d:6e:73:2e:63:8d:24:1b:03:f0:e6:ad:a7:
03:e1:45:3c:c2:95:1f:a6:c4:6d:a5:2a:17:aa:77:
23:4f:7c:05:36:bc:65:f6:c5:f1:ba:5f:e6:8d:67:
9c:7e:80:1c:ba:b6:0d:b3:67:67:d1:b2:87:bb:b1:
97:bf:2b:42:8d:67:36:2e:ac:32:39:3d:23:71:4a:
21:54:2f:89:f8:6f:46:e8:85:31:99:9a:50:df:36:
9c:53:56:c2:09:33:8f:e4:10:14:fc:3a:3d:e6:01:
5a:fe:b5:92:f9:47:c3:53:72:03:a0:5e:88:95:11:
e4:f9:b7:82:37:02:9c:2f:32:10:c1:f5:a2:6e:b4:
06:23:37:92:d1:00:ff:03:b2:45:d7:32:99:d7:07:
57:38:88:08:55:4b:85:30:2f:e6:35:a9:00:70:d1:
f8:74:31:82:ee:94:e1:ed:d8:d6:ef:2c:4d:6c:c4:
78:68:6d:fe:48:1c:ca:16:ab:41:e0:45:68:68:2a:
bf:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:78:BC:4C:F2:70:CB:C1:0B:40:88:28:53:41:A1:E7:E9:FB:E5:71
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/V3i8TPJwy8ELQIgoU0Gh5-n75XE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.42.192.0/20
Signature Algorithm: sha256WithRSAEncryption
e2:8c:75:48:1d:13:fb:0c:0d:f9:16:81:e5:ef:8f:79:c8:5e:
25:49:25:94:4f:60:97:4f:d0:e6:73:f8:56:4b:a7:63:f0:47:
e4:48:d2:d4:0c:40:70:52:6f:71:f7:6f:84:3d:55:ed:e1:55:
c4:15:2f:fe:f7:65:89:c4:50:66:fe:76:e2:18:fd:bc:c4:8f:
ba:77:ff:67:42:d3:58:6c:75:b2:da:7f:20:03:bf:03:e9:c2:
60:25:5c:fd:f3:d1:80:55:97:fa:d8:a1:e0:7f:a5:fa:1d:65:
bf:e6:cc:39:1c:03:59:2f:5f:ba:08:3a:0d:b2:bf:ad:0e:8e:
d9:ec:c4:ec:b2:9a:4d:2a:91:cf:60:df:49:21:f7:61:f5:d9:
46:57:6c:0c:a7:de:ff:93:df:d0:c5:50:80:d2:91:4d:1f:6c:
eb:97:ea:3d:eb:45:5f:6f:ff:55:8a:75:a8:20:6c:64:21:a5:
f3:65:5d:a0:7e:7b:77:b7:71:a0:3f:61:4e:02:2b:79:d7:75:
be:bd:68:e6:29:47:90:d4:a8:c3:e0:81:ba:af:44:09:7a:21:
c9:8f:ac:4f:94:1d:cc:16:1e:6e:79:74:95:9c:86:8e:6c:48:
00:a7:cf:90:e4:80:f5:aa:50:aa:00:b5:fa:ea:8d:2a:53:d0:
b3:7a:7d:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:57 2025 by rpki-client