Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/JdNnxX6prJtF4VHw_Fe2pyGAtno.roa
File: JdNnxX6prJtF4VHw_Fe2pyGAtno.roa (raw, json)
Hash identifier: rDtx1D1Cnd4bysd81z4IfK5MvGEySi0cPLfskzd2QrQ=
Subject key identifier: 25:D3:67:C5:7E:A9:AC:9B:45:E1:51:F0:FC:57:B6:A7:21:80:B6:7A
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018987FE753FA3A969EFC5307891EC0624A1
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/JdNnxX6prJtF4VHw_Fe2pyGAtno.roa
Signing time: Mon 24 Jul 2023 13:02:27 +0000
ROA not before: Mon 24 Jul 2023 13:02:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203248
IP address blocks: 212.192.248.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:87:fe:75:3f:a3:a9:69:ef:c5:30:78:91:ec:06:24:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 24 13:02:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25d367c57ea9ac9b45e151f0fc57b6a72180b67a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:bc:a7:55:79:63:b4:2f:c4:06:c3:32:4b:b4:
ad:e4:0e:36:d5:f5:d9:0d:58:3d:1d:11:54:11:31:
a0:21:79:ab:56:96:7a:a0:81:0a:1e:8c:08:06:73:
85:ba:e2:01:cc:ba:1b:81:33:d6:ea:16:58:b2:a4:
e3:cc:70:ef:0e:71:36:58:7f:58:d8:f1:09:3d:c8:
a6:48:63:8d:c1:70:0d:c4:b9:d7:01:96:7a:20:e3:
d1:11:7d:9e:b5:e7:86:a5:34:2f:14:3a:3d:b8:ef:
33:af:e7:0a:82:84:ae:fa:57:bc:7f:ff:e5:fc:8c:
28:4f:d5:47:40:3b:38:0e:d3:b1:6f:3c:35:6c:ed:
eb:be:e4:a7:14:5b:bd:b6:79:bf:31:88:10:7c:32:
98:3e:59:d4:70:1c:37:9c:39:bc:31:a9:9e:b8:9d:
39:15:97:0a:d4:70:83:a8:7e:93:62:e8:75:30:7b:
10:3b:fb:d0:4c:c1:85:9a:50:4e:64:a9:da:50:34:
bc:64:00:bd:98:ef:24:bf:17:f7:64:c3:fe:67:d2:
43:5a:59:77:0b:2d:90:ff:7a:ee:b0:ef:fd:09:c9:
c8:43:3c:e3:7f:45:d9:20:ec:ff:0f:dc:6d:da:98:
e3:b6:3d:ab:41:98:c5:5e:75:98:a3:b0:79:16:2e:
00:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D3:67:C5:7E:A9:AC:9B:45:E1:51:F0:FC:57:B6:A7:21:80:B6:7A
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/JdNnxX6prJtF4VHw_Fe2pyGAtno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.192.248.0/24
Signature Algorithm: sha256WithRSAEncryption
58:b7:be:5b:b0:6b:bd:3c:cf:91:22:2a:31:69:13:45:71:ac:
a2:9b:d6:e9:fa:7f:05:e5:75:8a:d1:5b:c4:73:05:a6:db:b2:
ff:9f:f8:33:36:ae:82:fa:80:7d:d6:22:b2:74:ac:90:c5:cf:
5d:89:53:0c:14:a2:18:b4:d5:7a:29:46:d2:60:a2:d1:1b:8c:
fb:98:50:8d:d9:35:54:76:46:4f:1b:eb:57:d2:3b:0a:36:5d:
c3:0b:bd:76:e9:2b:dc:a5:f5:95:8b:9e:6e:63:f0:ee:76:df:
f0:5b:ae:09:0c:d9:dd:27:a6:11:e4:a7:94:52:c0:73:be:05:
57:49:7a:06:41:49:13:e1:7f:af:ab:2b:0f:f5:c9:53:40:a8:
00:9d:8e:56:df:9a:50:99:5f:f9:a1:39:72:54:f8:37:87:05:
a9:2a:54:f8:f6:ee:87:1e:1b:f6:74:99:1a:55:b0:13:0d:19:
a0:ae:fd:7a:63:de:d3:aa:4f:4d:33:46:e5:54:dc:56:6a:57:
47:64:76:44:dd:ef:80:e6:30:ad:cf:30:6c:ed:0d:44:81:d6:
da:51:67:a4:3e:c8:0f:e3:44:d6:ee:b1:f0:75:ac:9a:cf:3d:
f3:df:be:70:a3:d8:a4:12:20:bd:3b:7a:c5:9c:83:ef:7b:3d:
17:a6:7d:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 26 10:05:13 2023 by rpki-client on console-ams.rpki-client.org