Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/W8D7dYV1QJgpKOIxZ8Qy-bwD6gU.roa
File: W8D7dYV1QJgpKOIxZ8Qy-bwD6gU.roa (raw, json)
Hash identifier: oNisP30xAnS0gV3OKNjWCLid3hncUMwW5zgjwfHoM9I=
Subject key identifier: 5B:C0:FB:75:85:75:40:98:29:28:E2:31:67:C4:32:F9:BC:03:EA:05
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0185708CDA539F823DAF35F54B3771774DFF
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/W8D7dYV1QJgpKOIxZ8Qy-bwD6gU.roa
Signing time: Mon 02 Jan 2023 03:35:57 +0000
ROA not before: Mon 02 Jan 2023 03:35:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24699
IP address blocks: 212.124.16.0/20 maxlen: 20
212.124.29.0/24 maxlen: 24
212.124.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:da:53:9f:82:3d:af:35:f5:4b:37:71:77:4d:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 03:35:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5bc0fb75857540982928e23167c432f9bc03ea05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:eb:e5:5b:db:19:ab:ff:82:1a:15:21:cd:c4:
5c:f2:aa:07:42:22:23:93:0f:54:c8:5f:f2:8a:a6:
18:5f:fe:06:54:39:71:3b:8c:33:3f:75:81:c9:96:
41:3e:51:27:69:ac:77:b7:94:fd:3c:ae:4b:07:0f:
23:d6:8b:f5:b9:8f:27:72:e7:2d:ee:ef:c1:61:b7:
fb:d7:17:a0:c3:8a:35:4c:43:83:b0:09:07:bf:85:
43:11:3f:86:45:a2:41:ed:b8:be:13:f9:5f:89:ee:
65:ce:5a:76:3b:52:d6:29:ed:14:f3:3c:ad:99:ea:
b5:1e:38:85:a6:bd:98:d8:f2:8c:4b:01:0f:85:cd:
11:8a:f4:8d:38:c8:67:99:e8:65:f2:b3:a4:42:70:
25:da:7a:16:59:2d:32:35:60:c3:95:58:02:08:2b:
eb:d9:c9:cf:8c:3a:43:12:f3:09:e5:53:71:98:00:
b6:73:10:37:d3:5d:1c:37:19:fa:06:68:0f:1f:18:
77:8d:bf:82:d7:6e:44:67:32:a0:2d:6f:35:2c:29:
b9:16:c5:d4:22:a3:76:a0:49:d3:c4:ac:76:70:dc:
0d:9d:2b:8c:93:5c:50:b3:42:06:de:9b:b1:86:0a:
20:cc:09:55:19:40:97:b1:e6:94:2b:18:34:70:f4:
1a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:C0:FB:75:85:75:40:98:29:28:E2:31:67:C4:32:F9:BC:03:EA:05
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/W8D7dYV1QJgpKOIxZ8Qy-bwD6gU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.124.16.0/20
Signature Algorithm: sha256WithRSAEncryption
8b:94:60:12:c5:14:85:c2:6a:3f:4c:87:6e:f0:6b:80:dc:1b:
32:7a:66:15:6b:8a:95:9f:96:9d:dd:be:76:1a:25:dc:67:90:
93:f9:63:fd:0c:04:89:31:ae:7f:58:cb:ab:2a:f8:c9:83:e4:
65:58:ce:3f:9c:48:c3:4c:7c:bd:94:c8:b9:5e:24:46:34:f5:
ac:73:7b:e6:cc:28:e0:d6:e4:d0:98:d6:ef:eb:fb:29:7c:06:
7e:07:30:25:19:c9:52:9c:24:6e:3a:37:6b:86:04:df:c2:6a:
6b:0f:61:af:1b:65:aa:7c:0f:37:89:04:23:e7:d4:6b:09:8e:
22:ba:a3:4f:5b:a5:fb:97:aa:93:f2:fc:aa:73:fe:91:0d:76:
11:8e:42:ad:c6:d4:5f:d2:ba:85:92:7a:2e:12:03:59:17:53:
48:2c:cb:ea:5a:94:7e:c5:68:4e:79:62:5f:fe:a0:3c:65:75:
a6:ee:14:4f:88:5b:1f:fa:12:03:9c:64:ec:7e:e5:54:7d:6d:
ad:50:86:1e:1f:23:4a:37:d9:a1:0e:a2:c6:24:48:9a:f0:a0:
0f:e7:a3:77:89:d8:82:6d:f3:41:dc:fa:94:b9:68:07:08:52:
30:72:e6:f6:18:af:5f:7f:e2:92:50:79:e2:08:5b:53:d1:49:
ad:ab:e0:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:25 2024 by rpki-client on console-ams.rpki-client.org