Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/7TWQ1Mx8Rsd4UVb-XdhKaqQEVvY.roa
File: 7TWQ1Mx8Rsd4UVb-XdhKaqQEVvY.roa (raw, json)
Hash identifier: jqjLOFPb9EFUx14IJW6dTfcYc35tzu9YSjZPyphmBrw=
Subject key identifier: ED:35:90:D4:CC:7C:46:C7:78:51:56:FE:5D:D8:4A:6A:A4:04:56:F6
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186EA3A37F2D1885E41328E5C1E14044D26
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/7TWQ1Mx8Rsd4UVb-XdhKaqQEVvY.roa
Signing time: Thu 16 Mar 2023 11:42:09 +0000
ROA not before: Thu 16 Mar 2023 11:42:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15083
IP address blocks: 212.192.209.0/24 maxlen: 24
212.192.208.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ea:3a:37:f2:d1:88:5e:41:32:8e:5c:1e:14:04:4d:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 16 11:42:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed3590d4cc7c46c7785156fe5dd84a6aa40456f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d7:6a:5f:e3:cc:4d:36:3f:23:a8:45:c8:bf:
6c:eb:7e:24:ad:2d:4a:6e:6a:65:9f:46:88:56:26:
f2:0c:28:d1:a0:52:f8:6e:1f:69:e7:bc:ae:d8:22:
cd:8f:a4:43:2e:80:23:76:66:b2:18:8f:6d:9f:cb:
5a:6f:72:50:29:cb:d8:52:03:77:a5:2f:34:93:f9:
10:33:5b:93:24:56:bd:c9:0a:9a:1d:8a:95:95:cb:
7b:4d:09:b8:cb:29:79:e8:26:30:40:00:4c:26:7c:
a1:ba:43:e7:f5:dc:c4:93:fc:36:78:e6:e8:74:07:
a8:c1:cb:68:93:21:24:32:1c:cf:c8:02:b3:14:2a:
ce:a4:23:8c:1a:af:00:79:cf:5a:a0:f4:40:45:43:
18:b6:8c:82:b0:b5:ec:3c:34:99:a5:cb:5d:53:d5:
4a:7c:fa:94:a0:fa:54:fa:cd:c3:c7:1d:11:d1:a7:
b9:b3:2a:1e:a9:4b:b7:18:55:a4:bf:1d:53:9a:90:
6c:50:df:d2:66:ea:41:b7:b2:5b:21:cd:da:91:7a:
8b:00:fc:dd:2f:b7:2c:03:4a:be:2d:e5:c5:eb:77:
64:5a:e1:1f:e6:f3:f2:f6:aa:1a:92:50:37:37:aa:
3b:c7:5d:f8:f0:cf:75:06:3b:92:03:15:89:78:e8:
39:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:35:90:D4:CC:7C:46:C7:78:51:56:FE:5D:D8:4A:6A:A4:04:56:F6
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/7TWQ1Mx8Rsd4UVb-XdhKaqQEVvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.192.208.0/23
Signature Algorithm: sha256WithRSAEncryption
32:c4:b6:c9:dd:82:90:b8:4a:5d:d7:71:9a:57:d6:dc:a0:7f:
f6:8c:22:45:8b:c3:a4:87:81:08:93:67:58:bd:6f:83:1b:74:
d1:89:4d:84:5d:01:16:2c:bd:9d:c6:e6:02:8f:da:6b:72:78:
2b:e7:ed:d5:5e:87:7e:73:c9:4b:db:d8:e4:92:16:ce:c1:99:
57:d0:fd:08:31:36:d3:ba:76:76:aa:e7:9d:2d:55:3a:28:4a:
4c:69:d0:5c:1e:44:89:0e:9c:a6:fd:bf:df:3f:16:df:51:6f:
8c:84:b9:f4:1e:c4:c0:ac:17:c6:bc:f1:5a:5c:61:12:f3:aa:
50:7b:ec:70:d6:2e:1c:aa:99:61:d8:71:be:91:8f:eb:bb:e6:
0a:75:6b:a5:75:50:cb:36:ab:48:2a:e9:30:20:67:e3:89:1e:
37:dc:a2:11:c1:4c:94:e5:a8:a8:d2:bb:15:e3:36:68:29:e3:
3e:f0:f2:5c:56:8e:37:6b:39:c1:1d:ba:d2:88:af:be:a4:e8:
48:3b:26:cf:ed:65:14:0d:11:e4:af:73:6c:2c:c0:f4:43:d8:
ef:23:67:e7:9a:28:14:89:f8:51:e9:36:c4:ce:9e:03:a5:67:
0f:fb:3d:79:6c:a0:d9:98:a7:d0:e5:87:57:21:cc:61:ef:b9:
77:ca:81:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:56 2023 by rpki-client on console-fra.rpki-client.org