Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/flG4tE7hsSVm3IoQwGXp-IFlvP8.roa
File: flG4tE7hsSVm3IoQwGXp-IFlvP8.roa (raw, json)
Hash identifier: 95mBqMS4aA/JmwJUAtp4ee//D0NJneoI8vErsDpF8f8=
Subject key identifier: 7E:51:B8:B4:4E:E1:B1:25:66:DC:8A:10:C0:65:E9:F8:81:65:BC:FF
Certificate issuer: /CN=bc8a3bc47d13c83f7d1cf72a137e0066f83d0608
Certificate serial: 01881EEBCAC2C1A20A3AB8E482A23E54AC49
Authority key identifier: BC:8A:3B:C4:7D:13:C8:3F:7D:1C:F7:2A:13:7E:00:66:F8:3D:06:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vIo7xH0TyD99HPcqE34AZvg9Bgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/flG4tE7hsSVm3IoQwGXp-IFlvP8.roa
Signing time: Mon 15 May 2023 10:19:09 +0000
ROA not before: Mon 15 May 2023 10:19:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28716
IP address blocks: 212.104.56.0/21 maxlen: 24
212.104.2.0/23 maxlen: 24
212.104.0.0/24 maxlen: 24
212.104.16.0/20 maxlen: 24
212.104.32.0/21 maxlen: 24
212.104.48.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1e:eb:ca:c2:c1:a2:0a:3a:b8:e4:82:a2:3e:54:ac:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc8a3bc47d13c83f7d1cf72a137e0066f83d0608
Validity
Not Before: May 15 10:19:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e51b8b44ee1b12566dc8a10c065e9f88165bcff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:22:69:94:db:f6:93:51:f0:9b:d1:51:2d:8b:
e6:f2:55:31:a2:42:bb:44:14:28:3c:bf:38:af:bb:
fa:e4:ee:74:e5:18:ac:1d:b1:55:13:1e:0b:34:b8:
d4:60:77:80:5a:a6:03:dc:b7:29:16:f1:4d:bd:70:
a8:d3:96:4a:d2:f2:e6:0d:5b:a6:bf:d9:c5:af:d2:
82:b0:ef:5b:6c:43:4d:51:55:b8:12:81:e9:d3:be:
9f:1e:94:59:8b:73:11:ce:b4:29:b2:3d:33:d8:f9:
73:b3:54:2f:24:47:67:fb:e4:65:66:4f:48:7d:c7:
33:c6:a9:f8:49:e8:d7:a7:79:63:b0:5f:c1:ca:f5:
de:3e:96:ac:56:8d:a4:10:f4:a6:ad:a6:e0:6f:f5:
cb:69:d6:b4:d8:cb:a7:39:6e:1a:50:c3:e7:c8:75:
df:91:1a:6d:f0:48:a4:cb:ec:46:60:ce:f9:9c:ce:
68:07:8c:13:7b:44:f7:8a:89:a6:32:7e:a3:e2:7f:
3d:76:3e:79:7e:a6:e1:bc:57:a7:11:a7:ec:e9:45:
40:15:4e:fd:a3:b4:f9:3f:79:b3:29:98:38:18:23:
b4:b3:ef:a3:f4:12:82:84:91:96:ff:24:33:04:cf:
07:dc:47:10:26:72:80:66:54:98:3b:9d:a5:84:76:
60:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:51:B8:B4:4E:E1:B1:25:66:DC:8A:10:C0:65:E9:F8:81:65:BC:FF
X509v3 Authority Key Identifier:
keyid:BC:8A:3B:C4:7D:13:C8:3F:7D:1C:F7:2A:13:7E:00:66:F8:3D:06:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vIo7xH0TyD99HPcqE34AZvg9Bgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/flG4tE7hsSVm3IoQwGXp-IFlvP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/vIo7xH0TyD99HPcqE34AZvg9Bgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.104.0.0/24
212.104.2.0/23
212.104.16.0-212.104.39.255
212.104.48.0/20
Signature Algorithm: sha256WithRSAEncryption
95:0f:ea:9b:98:2f:70:01:07:22:c4:f5:37:bf:66:de:d6:0b:
46:7c:92:8c:d9:8d:e7:54:61:80:8b:15:d2:bc:86:10:3a:74:
06:3b:1b:ca:10:cc:0c:d8:02:a5:45:5a:3a:ab:32:ab:59:d9:
43:75:e4:52:0a:f5:db:38:42:d1:12:34:a6:66:cd:ec:4d:55:
37:a4:7d:22:f7:1d:74:13:0a:34:e1:78:75:d1:39:c8:0d:28:
04:70:d2:69:8e:dd:b3:5d:9e:9c:cb:cc:d4:d5:16:72:43:d9:
4c:ea:80:01:b2:0a:b6:05:e7:dd:c9:3c:40:49:ae:04:bc:cc:
99:97:cc:7a:45:35:98:72:14:14:e8:93:99:ab:cb:fc:9a:38:
94:ee:c5:39:ff:4a:91:30:23:1f:4e:a7:8c:08:91:ae:95:99:
dd:c3:ea:21:96:07:ae:88:77:f3:e5:0f:59:68:8c:37:92:41:
b7:a5:69:31:a6:59:13:a6:8d:28:4e:04:9f:0c:d0:d4:19:c8:
b6:42:de:36:4b:94:a4:52:f1:fe:97:a7:22:99:bb:ff:75:d5:
2a:c4:d4:48:74:de:94:f6:bb:86:a4:21:3a:77:56:9d:21:5a:
73:16:74:4a:a9:92:e1:53:a3:f8:1c:32:58:c5:75:46:8d:00:
04:66:e1:ab
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgISAYge68rCwaIKOrjkgqI+VKxJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjOGEzYmM0N2QxM2M4M2Y3ZDFjZjcyYTEzN2UwMDY2Zjgz
ZDA2MDgwHhcNMjMwNTE1MTAxOTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTUxYjhiNDRlZTFiMTI1NjZkYzhhMTBjMDY1ZTlmODgxNjViY2ZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsSJplNv2k1Hwm9FRLYvm8lUxokK7
RBQoPL84r7v65O505RisHbFVEx4LNLjUYHeAWqYD3LcpFvFNvXCo05ZK0vLmDVum
v9nFr9KCsO9bbENNUVW4EoHp076fHpRZi3MRzrQpsj0z2Plzs1QvJEdn++RlZk9I
fcczxqn4SejXp3ljsF/ByvXePpasVo2kEPSmrabgb/XLada02MunOW4aUMPnyHXf
kRpt8Eiky+xGYM75nM5oB4wTe0T3iommMn6j4n89dj55fqbhvFenEafs6UVAFU79
o7T5P3mzKZg4GCO0s++j9BKChJGW/yQzBM8H3EcQJnKAZlSYO52lhHZgjQIDAQAB
o4ICIzCCAh8wHQYDVR0OBBYEFH5RuLRO4bElZtyKEMBl6fiBZbz/MB8GA1UdIwQY
MBaAFLyKO8R9E8g/fRz3KhN+AGb4PQYIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdklvN3hIMFR5RDk5SFBjcUUzNEFadmc5QmdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy8wZWU5MjEtYTcyMS00ZjA5LTgwZjIt
NzExM2ZjMWI4NjViLzEvZmxHNHRFN2hzU1ZtM0lvUXdHWHAtSUZsdlA4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy8wZWU5MjEtYTcyMS00ZjA5LTgwZjItNzExM2ZjMWI4NjVi
LzEvdklvN3hIMFR5RDk5SFBjcUUzNEFadmc5QmdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQA1GgAAwQB
1GgCMAwDBATUaBADBAPUaCADBATUaDAwDQYJKoZIhvcNAQELBQADggEBAJUP6puY
L3ABByLE9Te/Zt7WC0Z8kozZjedUYYCLFdK8hhA6dAY7G8oQzAzYAqVFWjqrMqtZ
2UN15FIK9ds4QtESNKZmzexNVTekfSL3HXQTCjTheHXROcgNKARw0mmO3bNdnpzL
zNTVFnJD2UzqgAGyCrYF593JPEBJrgS8zJmXzHpFNZhyFBTok5mry/yaOJTuxTn/
SpEwIx9Op4wIka6Vmd3D6iGWB66Id/PlD1lojDeSQbelaTGmWROmjShOBJ8M0NQZ
yLZC3jZLlKRS8f6XpyKZu/911SrE1Eh03pT2u4akITp3Vp0hWnMWdEqpkuFTo/gc
MljFdUaNAARm4as=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:13 2024 by rpki-client on console-ams.rpki-client.org