Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/x05kEJo0BtEQ3E-KSb-HJ11Vy7A.roa
File: x05kEJo0BtEQ3E-KSb-HJ11Vy7A.roa (raw, json)
Hash identifier: YhNNhazHZF11LFFzjfrJTf9Kbw14IuPfp5nVsxbtKUI=
Subject key identifier: C7:4E:64:10:9A:34:06:D1:10:DC:4F:8A:49:BF:87:27:5D:55:CB:B0
Certificate issuer: /CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Certificate serial: 01856CEF47E86B41FFC2D020E0F29992FAA4
Authority key identifier: 3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/x05kEJo0BtEQ3E-KSb-HJ11Vy7A.roa
Signing time: Sun 01 Jan 2023 10:44:58 +0000
ROA not before: Sun 01 Jan 2023 10:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33824
IP address blocks: 212.19.63.96/29 maxlen: 32
2a02:2e0:413::/48 maxlen: 128
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:47:e8:6b:41:ff:c2:d0:20:e0:f2:99:92:fa:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Validity
Not Before: Jan 1 10:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c74e64109a3406d110dc4f8a49bf87275d55cbb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2b:ce:27:75:7f:17:83:58:5b:be:c1:af:59:
78:f0:7e:0c:2c:ee:e3:60:8b:d8:c2:4f:77:5c:76:
4d:31:81:8e:c2:6a:aa:2f:ef:c7:42:c6:5d:be:1d:
4d:56:03:38:d4:b0:5a:47:fc:62:73:30:f8:04:c9:
0f:18:23:bc:70:4b:df:7e:d1:d4:3a:f0:5c:7b:3d:
8a:4d:d8:58:24:5a:c3:d8:00:0c:16:97:01:ce:67:
5d:14:7f:06:17:4f:4d:35:de:e2:1d:2e:c7:f8:d0:
ac:bb:51:0f:42:9c:80:41:c0:b5:db:14:10:77:05:
70:1b:6b:47:3d:53:9d:99:2c:bc:f9:18:e0:93:8b:
04:01:41:a1:5d:7f:f3:43:74:3d:c1:d7:b4:6d:c0:
b1:bd:88:3c:c8:0e:26:0e:e9:3a:71:99:ae:55:ff:
8b:c2:ba:5e:4a:db:8a:2b:fa:d4:f3:82:87:e6:cf:
c0:9d:c2:af:96:ca:e7:9e:59:67:16:65:2c:68:1e:
d7:29:24:45:cc:5c:61:4c:ab:05:6a:9a:2c:f9:7a:
13:f0:82:1f:52:b3:4a:29:18:b2:72:29:16:f3:62:
87:02:29:02:4b:ce:2a:65:72:23:70:19:9f:61:24:
0a:7f:92:d0:2a:26:99:bf:a7:29:c4:c3:b0:db:21:
45:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:4E:64:10:9A:34:06:D1:10:DC:4F:8A:49:BF:87:27:5D:55:CB:B0
X509v3 Authority Key Identifier:
keyid:3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/x05kEJo0BtEQ3E-KSb-HJ11Vy7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/PYugpSxCEprx1PdD_rM7sUTUu1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.19.63.96/29
IPv6:
2a02:2e0:413::/48
Signature Algorithm: sha256WithRSAEncryption
72:e8:29:db:3a:fb:80:7b:cc:25:13:59:95:ad:aa:2a:f6:31:
a4:ac:de:5d:a1:79:d3:6c:09:b7:33:cb:2d:aa:81:76:f8:94:
1a:6f:54:5c:e5:81:cc:ce:29:1f:aa:21:5a:8f:f5:41:d3:6b:
4a:bf:27:0b:75:06:d8:93:ee:7a:12:ea:88:fc:e1:6f:18:b2:
bb:b0:70:36:7b:ba:cb:33:54:ef:ed:fd:f6:e6:dc:55:e1:75:
6c:6a:bb:b5:3a:6a:81:b3:91:d4:0e:8a:a2:b9:9e:c5:9d:c3:
02:e6:1d:0b:0d:97:7e:ac:ab:20:5d:62:ed:55:9a:f4:8f:ac:
b1:2b:5d:85:36:7f:31:e0:c9:2b:4b:69:f6:91:d3:f7:4e:17:
60:8d:c8:91:23:26:55:ce:23:a9:a5:04:4b:cb:b7:b8:cf:a6:
ab:1f:77:ad:2f:7c:0c:2e:8f:08:1f:a7:69:fb:38:4a:ba:b6:
10:ac:c7:bd:97:c8:99:40:e8:02:e1:2f:ed:01:2f:05:eb:11:
42:48:95:1e:73:f0:eb:ab:3d:bb:c5:82:e2:40:d7:40:6b:e2:
05:6a:8e:94:5f:55:6a:46:c9:7b:d4:44:13:7a:db:68:55:12:
3f:a6:2d:d4:69:52:48:6e:c0:1e:3c:38:0b:69:5c:f5:9b:68:
a9:e8:e0:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:37 2024 by rpki-client on console-fra.rpki-client.org