Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/jvfHFSPahengGb1DzgqjhXoYXRo.roa
File: jvfHFSPahengGb1DzgqjhXoYXRo.roa (raw, json)
Hash identifier: wtfvY8xaK0++F5H32GeLGewrBtWxqrg/0DLcXkdUG8A=
Subject key identifier: 8E:F7:C7:15:23:DA:85:E9:E0:19:BD:43:CE:0A:A3:85:7A:18:5D:1A
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE64CA709456CBE1C570182B99D66F0
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/jvfHFSPahengGb1DzgqjhXoYXRo.roa
Signing time: Sun 01 Jan 2023 10:35:10 +0000
ROA not before: Sun 01 Jan 2023 10:35:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12756
IP address blocks: 212.72.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:4c:a7:09:45:6c:be:1c:57:01:82:b9:9d:66:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ef7c71523da85e9e019bd43ce0aa3857a185d1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:69:41:c0:d2:32:d4:3b:29:66:cd:b6:59:64:
3b:b4:61:9b:3a:27:d0:ce:bc:65:b1:60:46:e3:e7:
0a:5c:4d:c5:fc:7e:75:be:c6:47:9a:42:bb:4d:c2:
3c:3b:5d:34:4c:8f:2f:a8:ea:0b:ea:e7:13:07:40:
07:ad:2a:45:6c:0b:c9:cb:36:39:58:4c:a3:e0:a6:
ac:86:13:0f:10:b8:3e:07:34:94:73:5e:6f:20:fe:
77:a8:3d:bb:93:bf:c6:ae:41:d4:87:c2:ce:6c:60:
8c:cb:a0:a9:9c:12:8a:53:58:8f:88:d1:54:93:18:
ac:94:7b:3d:05:93:ed:83:d7:27:58:88:a2:c9:24:
b4:8a:86:dc:9a:f1:62:75:82:26:d3:d5:9a:55:fa:
20:5a:af:73:6d:17:e3:43:68:dc:1a:e2:b3:7f:6c:
6d:0a:77:e8:b5:15:da:12:6c:7b:d9:23:89:42:c6:
32:12:7a:a4:92:12:76:70:ee:ec:0a:08:02:16:6e:
fb:a1:db:8f:77:56:96:ab:59:60:d4:7a:b0:a5:92:
46:69:d5:9b:17:6c:10:10:56:da:1c:d5:d9:30:99:
d8:f8:57:28:53:46:0b:29:74:7e:db:3d:43:a3:d1:
a3:c9:e3:e2:82:38:cd:a6:02:8c:62:3f:b5:77:6a:
56:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:F7:C7:15:23:DA:85:E9:E0:19:BD:43:CE:0A:A3:85:7A:18:5D:1A
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/jvfHFSPahengGb1DzgqjhXoYXRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.72.205.0/24
Signature Algorithm: sha256WithRSAEncryption
65:c9:98:21:c9:94:5e:97:0e:7b:4c:49:9a:5d:c5:40:2f:09:
15:f1:0c:56:f7:ed:8c:df:33:39:21:66:50:32:43:60:50:20:
9f:1e:ed:1e:5c:05:70:fc:9a:ee:4e:07:25:3b:fa:41:dd:bc:
9f:39:81:64:92:34:20:78:72:c5:97:43:af:82:8e:f8:f5:c0:
71:d4:c7:e9:c5:41:ff:6f:c1:78:51:ff:1f:a4:50:56:0b:e9:
af:59:5a:ec:76:87:c2:d2:85:6f:dc:1b:ce:cc:7b:81:91:32:
dd:ef:3f:60:6e:0b:25:59:34:99:4b:ef:fc:47:df:ca:1e:5b:
b0:7e:14:ce:7d:6d:2b:cc:25:d0:31:5e:e0:c5:f8:72:71:fd:
d9:09:bc:45:32:b9:c4:2d:d8:e7:a8:fd:ba:10:08:ee:06:45:
8b:70:87:88:aa:b3:ac:52:03:d5:8c:bb:66:92:de:22:69:d4:
24:1e:7f:1c:d6:a0:9c:74:7d:1f:f1:d7:64:12:7d:33:ab:5e:
c8:f0:cb:f7:71:30:e0:6e:40:f1:8b:c6:ba:36:44:ea:18:b2:
ef:3a:3d:19:59:09:ef:6d:1c:aa:eb:fe:9e:35:80:f9:cd:6a:
a5:78:63:25:79:f8:4e:6c:e6:35:03:47:e4:52:65:93:42:9b:
3f:df:3e:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org