Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/C2P2MuvYiUmnOWcvNK0AwbZvFwQ.roa
File: C2P2MuvYiUmnOWcvNK0AwbZvFwQ.roa (raw, json)
Hash identifier: 6p2VUorhJVnM02GktzT7t5OBLL6VcZUeYJrDJRHWMCk=
Subject key identifier: 0B:63:F6:32:EB:D8:89:49:A7:39:67:2F:34:AD:00:C1:B6:6F:17:04
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186D5B242890C87124ABD84DA79FDF79564
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/C2P2MuvYiUmnOWcvNK0AwbZvFwQ.roa
Signing time: Sun 12 Mar 2023 12:01:14 +0000
ROA not before: Sun 12 Mar 2023 12:01:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199760
IP address blocks: 212.192.211.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d5:b2:42:89:0c:87:12:4a:bd:84:da:79:fd:f7:95:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 12 12:01:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b63f632ebd88949a739672f34ad00c1b66f1704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:a5:3f:d8:7b:06:39:92:4f:68:b6:3a:bd:8f:
93:df:7c:ee:61:8b:b7:d8:d1:00:96:6c:4c:ba:c5:
2a:1e:ef:ff:09:c4:e3:6b:78:90:1c:90:ca:dd:d0:
0e:5b:01:80:45:dd:a9:85:0d:c1:c7:e3:e5:27:7d:
18:8b:67:d8:e1:f2:fb:b4:cb:d2:d7:22:09:e8:ad:
7d:fd:f5:3a:fb:af:e7:a6:57:b9:5d:a8:c5:41:94:
ff:cb:83:08:a7:f2:fa:f4:dd:73:20:e0:0b:ce:13:
51:ea:3b:ff:7c:e0:ad:22:b7:f0:60:1e:9f:b6:1a:
c7:2b:98:15:e2:cb:d1:e9:d4:5d:ff:9a:3e:51:dc:
5b:fb:91:3d:fa:18:04:8b:be:b7:c8:66:97:cc:30:
d3:66:e9:a3:78:a2:1d:72:cb:92:9d:8d:34:f2:d3:
55:68:76:c5:88:ac:c9:54:5e:fd:68:06:24:96:7b:
fa:84:62:44:26:6d:11:8f:45:5c:40:23:3e:2c:c6:
e2:b3:eb:29:38:b8:4e:01:61:e7:cc:4c:89:be:b4:
d5:04:95:0e:ae:94:4e:59:77:19:df:d7:30:c0:0d:
5d:6b:48:65:b6:c5:fe:15:fe:df:77:c9:3b:9f:6a:
45:08:96:cd:80:11:8b:15:19:0f:a9:a3:f5:b7:c3:
28:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:63:F6:32:EB:D8:89:49:A7:39:67:2F:34:AD:00:C1:B6:6F:17:04
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/C2P2MuvYiUmnOWcvNK0AwbZvFwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.192.211.0/24
Signature Algorithm: sha256WithRSAEncryption
30:5c:a0:1d:c7:4c:e1:07:07:2b:d3:e9:bf:a0:84:17:cb:ae:
a5:f4:a4:a5:ca:bd:4a:6e:15:cf:57:fb:14:5f:ac:bc:d0:aa:
10:66:cd:29:a5:b9:07:27:de:69:0e:f7:da:d4:c8:d3:77:f8:
97:93:fe:64:6f:10:62:04:a4:70:89:55:9b:af:28:23:4d:ed:
c7:15:d6:57:ba:6e:66:7f:50:54:ea:29:af:2b:64:59:a9:fb:
22:4f:00:78:69:e6:4d:86:ea:75:98:90:e8:71:84:06:b2:13:
b3:75:38:25:03:9a:eb:de:70:ab:c9:50:a8:98:af:56:5d:5a:
a9:73:39:93:34:13:85:55:10:40:7b:41:17:3a:1f:62:af:03:
1d:8a:33:94:0c:6b:7c:cd:31:a9:51:68:59:3a:9e:61:22:63:
a6:a6:bf:8e:33:09:a4:a4:2d:95:11:b8:ee:b5:2c:66:9b:59:
f6:5c:f8:ef:ec:9f:3c:37:68:ea:f1:28:e9:64:b8:f8:f2:1e:
08:a1:f5:0f:16:19:ff:6f:3b:95:3d:82:42:95:45:1b:2d:f6:
db:83:97:28:72:ff:29:6b:37:6f:72:52:57:a9:89:aa:ae:a0:
c1:ca:b8:af:14:fb:27:14:5c:b8:f6:57:e1:dc:85:3e:8d:3d:
fb:5c:2e:eb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbVskKJDIcSSr2E2nn995VkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMzEyMTIwMTE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYjYzZjYzMmViZDg4OTQ5YTczOTY3MmYzNGFkMDBjMWI2NmYxNzA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgKU/2HsGOZJPaLY6vY+T33zuYYu3
2NEAlmxMusUqHu//CcTja3iQHJDK3dAOWwGARd2phQ3Bx+PlJ30Yi2fY4fL7tMvS
1yIJ6K19/fU6+6/nple5XajFQZT/y4MIp/L69N1zIOALzhNR6jv/fOCtIrfwYB6f
thrHK5gV4svR6dRd/5o+Udxb+5E9+hgEi763yGaXzDDTZumjeKIdcsuSnY008tNV
aHbFiKzJVF79aAYklnv6hGJEJm0Rj0VcQCM+LMbis+spOLhOAWHnzEyJvrTVBJUO
rpROWXcZ39cwwA1da0hltsX+Ff7fd8k7n2pFCJbNgBGLFRkPqaP1t8MonQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAtj9jLr2IlJpzlnLzStAMG2bxcEMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvQzJQMk11dllpVW1uT1djdk5LMEF3Ylp2RndRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1MDTMA0G
CSqGSIb3DQEBCwUAA4IBAQAwXKAdx0zhBwcr0+m/oIQXy66l9KSlyr1KbhXPV/sU
X6y80KoQZs0ppbkHJ95pDvfa1MjTd/iXk/5kbxBiBKRwiVWbrygjTe3HFdZXum5m
f1BU6imvK2RZqfsiTwB4aeZNhup1mJDocYQGshOzdTglA5rr3nCryVComK9WXVqp
czmTNBOFVRBAe0EXOh9irwMdijOUDGt8zTGpUWhZOp5hImOmpr+OMwmkpC2VEbju
tSxmm1n2XPjv7J88N2jq8SjpZLj48h4IofUPFhn/bzuVPYJClUUbLfbbg5cocv8p
azdvclJXqYmqrqDByrivFPsnFFy49lfh3IU+jT37XC7r
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:52 2023 by rpki-client on console-ams.rpki-client.org