Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/G5rPBtImlO_jtTqeaDPp4WBrEiI.roa
File: G5rPBtImlO_jtTqeaDPp4WBrEiI.roa (raw, json)
Hash identifier: RCm+F1z0cHvFv/TgcrDHB6MFRAlpJw305Lk+olUZeKs=
Subject key identifier: 1B:9A:CF:06:D2:26:94:EF:E3:B5:3A:9E:68:33:E9:E1:60:6B:12:22
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 01856D385C6AE501885C1F82FF8183DC6A98
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/G5rPBtImlO_jtTqeaDPp4WBrEiI.roa
Signing time: Sun 01 Jan 2023 12:04:48 +0000
ROA not before: Sun 01 Jan 2023 12:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 212.68.168.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 16 Jan 2023 14:56:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:38:5c:6a:e5:01:88:5c:1f:82:ff:81:83:dc:6a:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: Jan 1 12:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b9acf06d22694efe3b53a9e6833e9e1606b1222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:dd:81:6e:dd:a3:f0:74:c1:7d:97:a5:10:bd:
bf:cc:21:68:2d:94:6d:ee:38:2a:c7:50:0e:2a:45:
f6:f0:bb:fc:ff:c5:16:e7:7d:47:47:ec:67:1c:9b:
a1:5f:9d:ea:0b:cb:62:f8:08:04:a1:a8:d6:16:ab:
83:fc:fd:9b:ad:19:12:ca:58:16:f4:b1:57:c9:d4:
69:a9:17:27:24:4a:ba:39:b8:a2:ce:68:81:96:dc:
81:03:58:93:aa:32:fc:c2:13:78:6e:7a:84:36:1d:
0f:72:59:0d:70:e0:2d:44:0b:d0:0f:46:db:a7:eb:
95:05:e8:93:4d:14:e7:a5:bf:7c:27:c9:27:6e:30:
fe:e9:6e:3b:7b:3f:e0:b4:b7:c8:fd:99:8e:2b:d1:
06:34:59:da:8b:0a:1f:0d:1c:ef:e2:28:17:6e:87:
ed:4d:b7:f3:3e:5d:4e:4d:b2:64:df:c8:8f:89:2a:
e2:77:13:60:b1:66:92:8d:07:fb:53:c9:66:49:bf:
ec:60:62:03:7f:51:52:00:b4:d7:46:ae:d1:62:7e:
fd:b8:ee:26:3e:bf:95:ec:08:6d:e0:42:b7:32:66:
2e:05:b5:21:90:cc:ef:e0:3c:4e:63:cb:78:e2:6b:
58:23:cf:dd:7b:f0:cc:fc:f8:ae:76:b1:54:b2:91:
31:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:9A:CF:06:D2:26:94:EF:E3:B5:3A:9E:68:33:E9:E1:60:6B:12:22
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/G5rPBtImlO_jtTqeaDPp4WBrEiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.168.0/22
Signature Algorithm: sha256WithRSAEncryption
18:2b:73:e1:10:d3:64:55:a7:d6:d5:df:38:c3:e1:3f:27:01:
dc:c3:bf:33:35:3d:b7:ab:2b:ac:fd:fe:12:8a:c7:3b:40:36:
e1:77:16:8d:8e:46:14:5d:76:68:ff:1b:05:4a:49:3e:e2:65:
f0:54:8a:c5:7f:15:74:d9:b6:97:26:64:78:24:08:9f:a9:ab:
cc:f9:f2:ed:de:6c:5e:f5:6c:2d:ee:02:80:1a:37:09:dc:2e:
4f:34:41:05:6e:d3:81:43:30:69:d3:d5:c4:bf:48:a6:35:6e:
80:64:69:4c:04:33:6b:bd:e1:69:88:b2:cd:fd:2a:85:5b:a9:
da:df:ee:a3:3e:69:21:79:68:11:32:4b:d7:28:ed:28:cf:42:
4c:be:86:a0:74:bf:89:03:6b:14:19:0f:31:8b:6f:b0:1f:89:
39:50:3c:aa:1d:73:8b:87:b6:fc:39:7b:05:63:de:15:61:3b:
4f:ca:44:ba:fe:ff:c8:16:72:1f:3b:b4:b3:62:ab:7d:4d:a6:
45:b3:60:de:3e:31:ef:f8:bc:6b:48:a2:04:60:a1:0b:de:0c:
85:99:8d:a2:e4:65:c2:78:10:be:48:6a:c6:82:e6:a0:df:e6:
5c:2f:0d:f0:85:f2:3d:26:c9:a2:f4:aa:c5:83:a4:c1:cf:bd:
40:f2:5f:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:49 2024 by rpki-client on console-fra.rpki-client.org