Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/9fjZKLGdf_CRdmUs7PukVa6B_Gk.roa
File: 9fjZKLGdf_CRdmUs7PukVa6B_Gk.roa (raw, json)
Hash identifier: HJenJ2DmGH4LFfvo7ugIF6FhkV6q8Cg/KgjBA46sn1s=
Subject key identifier: F5:F8:D9:28:B1:9D:7F:F0:91:76:65:2C:EC:FB:A4:55:AE:81:FC:69
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 018BA8F258E0CC74200E69A579DD2B3A97D5
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/9fjZKLGdf_CRdmUs7PukVa6B_Gk.roa
Signing time: Tue 07 Nov 2023 08:42:16 +0000
ROA not before: Tue 07 Nov 2023 08:42:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 72
IP address blocks: 212.193.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a8:f2:58:e0:cc:74:20:0e:69:a5:79:dd:2b:3a:97:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Nov 7 08:42:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5f8d928b19d7ff09176652cecfba455ae81fc69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ef:29:7f:1d:57:a5:9d:31:d2:f5:92:4b:31:
88:85:d0:78:2d:ed:fd:ab:e1:36:c4:c3:66:39:3e:
cf:8c:e6:6e:64:3a:86:c5:ca:79:d3:70:46:76:f3:
e7:ab:16:da:ba:62:b6:f4:54:59:c1:f1:d5:73:41:
c4:80:fb:f2:8e:c4:1e:e6:22:a4:ff:c3:78:47:63:
aa:92:88:8e:cb:7a:03:56:d3:c1:3d:46:a0:e6:f4:
4c:4f:91:67:4e:c9:6d:79:6c:23:b5:f2:1c:39:09:
de:55:f8:01:72:c6:05:80:8c:4b:0c:31:7e:0b:f0:
7d:cf:5b:a9:be:4b:8f:57:03:09:b2:f9:45:59:d7:
b4:b1:10:71:97:a2:ec:b4:58:51:be:4d:01:0a:94:
e5:8c:47:9e:3e:9f:35:ff:9e:9a:c3:84:92:51:a0:
fc:19:cf:12:24:cb:1c:1c:6e:1c:0b:fb:e8:30:4f:
c7:99:27:bf:01:25:67:4a:bc:9e:0f:2c:ff:1e:02:
be:f5:06:58:9f:69:00:c3:b7:b6:e0:66:d5:7a:b5:
9e:aa:5f:dc:01:75:75:46:d8:ac:6d:1a:ac:bd:6c:
4b:c1:9e:ac:24:92:11:23:54:f9:36:75:5a:1e:ae:
b0:f7:ee:c9:f7:8a:bf:87:b8:6d:d9:d8:d4:54:f2:
e9:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F8:D9:28:B1:9D:7F:F0:91:76:65:2C:EC:FB:A4:55:AE:81:FC:69
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/9fjZKLGdf_CRdmUs7PukVa6B_Gk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.193.96.0/24
Signature Algorithm: sha256WithRSAEncryption
84:fa:38:cf:10:0e:51:aa:15:c5:e8:db:73:1b:76:7b:e4:29:
c7:9e:4a:b3:d2:cc:8a:e4:44:7d:51:90:ea:8d:2e:47:12:7f:
1a:6e:72:fc:5e:8d:1c:65:3f:7c:ca:7e:e1:72:01:7d:88:1f:
73:85:e5:ed:08:9b:b4:b4:12:a9:10:19:37:01:1c:e2:23:d3:
23:9a:b5:89:54:d7:e9:1e:b7:c6:71:c2:8c:49:af:eb:8c:88:
e6:b4:c9:17:54:f4:9a:48:7b:c3:4f:1c:fc:29:ef:de:c1:b3:
b7:bd:78:8d:76:b9:2a:fd:89:54:c2:57:f2:3e:99:1b:69:89:
2c:60:15:c4:0b:9e:88:10:94:56:91:cc:bd:3c:b2:de:21:8e:
aa:f0:b1:74:d2:12:e6:28:e8:7d:d1:42:7f:f9:f3:98:3a:81:
64:d5:ef:d9:06:de:6f:48:9e:d7:35:28:fe:9f:d8:99:c7:79:
ea:a1:ec:58:3a:68:67:67:2d:58:c3:f7:28:5c:00:90:34:78:
f8:e7:8f:70:de:86:30:09:e9:aa:09:6d:d4:4c:4c:96:1f:dd:
1a:34:e3:c1:47:3b:f2:9a:74:82:13:f3:b5:6e:83:b2:fa:49:
9c:c3:e0:92:e7:3a:aa:9c:b7:e1:48:35:3c:43:92:d2:86:10:
23:8b:4b:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org