Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/c57727-9396-4bf8-b25d-6a1e0ec71da8/1/dBVcDr3XZKBEW4y3r3EuW7E7kLM.roa
File: dBVcDr3XZKBEW4y3r3EuW7E7kLM.roa (raw, json)
Hash identifier: exasVtgaPucx9RDcTv2ZAjMaH4wh5rkd36plXy+BDkQ=
Subject key identifier: 74:15:5C:0E:BD:D7:64:A0:44:5B:8C:B7:AF:71:2E:5B:B1:3B:90:B3
Certificate issuer: /CN=d66738a8dadac2d0d3aeddb934f820066b9f5feb
Certificate serial: 01856E01FD254830D91473E426CD692DFF4C
Authority key identifier: D6:67:38:A8:DA:DA:C2:D0:D3:AE:DD:B9:34:F8:20:06:6B:9F:5F:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1mc4qNrawtDTrt25NPggBmufX-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/c57727-9396-4bf8-b25d-6a1e0ec71da8/1/dBVcDr3XZKBEW4y3r3EuW7E7kLM.roa
Signing time: Sun 01 Jan 2023 15:45:02 +0000
ROA not before: Sun 01 Jan 2023 15:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197229
IP address blocks: 212.72.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:fd:25:48:30:d9:14:73:e4:26:cd:69:2d:ff:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d66738a8dadac2d0d3aeddb934f820066b9f5feb
Validity
Not Before: Jan 1 15:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74155c0ebdd764a0445b8cb7af712e5bb13b90b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:72:55:9a:93:20:84:d9:8f:c1:86:fe:d1:ca:
e2:74:4c:cb:82:9a:b6:78:fa:99:bc:e8:70:b9:14:
99:4b:7e:c0:7e:00:d5:a9:bb:ea:b5:7f:7c:31:2d:
80:e3:bb:85:c8:54:88:3b:f6:80:40:58:76:04:cf:
93:0c:00:97:f0:b6:03:18:3f:fc:78:99:e1:81:5b:
49:9b:f2:c4:ae:4a:3f:db:70:9c:0b:b0:60:17:04:
f6:c9:83:dd:eb:d4:e1:f9:ea:b6:91:0b:16:41:43:
2f:17:88:0f:6c:14:44:1f:c1:f9:42:a3:28:96:50:
49:c3:be:8c:57:39:95:f2:3e:d6:6c:65:80:c1:30:
40:b1:25:ea:3c:d0:00:3a:ed:2a:b9:1c:f8:a8:9a:
30:ed:85:45:7d:7e:75:96:be:f6:8f:c2:f1:15:33:
9c:f9:ea:fd:85:3c:9e:80:8e:4a:a5:62:f0:5c:05:
a5:e3:41:c4:8e:8e:c6:8b:af:29:eb:78:fb:e7:e9:
a2:8c:e9:7b:4e:82:d6:44:5e:96:56:a4:d9:70:a2:
b4:73:86:bf:c1:27:6a:da:20:07:e6:8e:94:36:b6:
99:18:dd:5d:6f:e1:1b:bd:3d:d8:93:aa:76:1d:9d:
3d:04:93:f7:68:12:64:32:d7:ea:95:1a:48:14:d2:
7d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:15:5C:0E:BD:D7:64:A0:44:5B:8C:B7:AF:71:2E:5B:B1:3B:90:B3
X509v3 Authority Key Identifier:
keyid:D6:67:38:A8:DA:DA:C2:D0:D3:AE:DD:B9:34:F8:20:06:6B:9F:5F:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1mc4qNrawtDTrt25NPggBmufX-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c57727-9396-4bf8-b25d-6a1e0ec71da8/1/dBVcDr3XZKBEW4y3r3EuW7E7kLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c57727-9396-4bf8-b25d-6a1e0ec71da8/1/1mc4qNrawtDTrt25NPggBmufX-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.72.155.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:22:63:b9:ff:0b:46:ed:25:38:44:70:4c:45:24:c6:57:00:
6f:b3:88:ab:b7:19:78:d1:20:0e:8b:6e:85:c6:00:d4:cd:0f:
a0:a6:9d:4d:49:a1:66:9f:f5:f1:c3:93:ba:23:68:d2:0a:cf:
66:fd:83:d1:19:70:11:97:b0:ee:01:cd:c3:40:66:e1:55:cb:
68:01:a1:71:37:5d:e5:39:67:0a:c5:cb:10:34:31:1e:a2:b0:
7b:9a:e7:6d:7e:e7:d5:59:a9:c4:d9:55:1a:71:9d:0d:0e:35:
89:c0:bc:60:a3:8e:96:ff:e8:29:9e:32:f9:8a:48:30:82:bf:
f5:51:35:1a:6d:cd:30:c0:49:92:d4:37:cb:de:53:d3:d0:71:
a5:4a:76:1c:c8:56:89:f9:85:5b:56:6c:c0:50:7e:fd:fe:95:
b7:84:33:60:da:9f:4c:a5:de:24:34:23:54:e4:26:c1:52:55:
4a:a4:a2:4f:df:f9:40:4c:7d:ef:9f:4d:67:62:ae:2c:16:8c:
16:f6:91:8e:e2:e6:0e:68:d5:d8:13:e7:38:c3:8f:62:3a:26:
9b:72:64:d2:19:c0:23:7e:b0:66:60:19:42:cc:19:43:59:16:
98:34:75:43:8c:e6:ac:8e:8c:b1:14:69:2f:0f:60:8f:67:05:
f5:a7:e3:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:39 2024 by rpki-client on console-fra.rpki-client.org