Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_jGMLuSE1BmsakGHUtes03a5tsA.roa
File: _jGMLuSE1BmsakGHUtes03a5tsA.roa (raw, json)
Hash identifier: Brx/iZZktwVKWvw97JItd4kB9eHFOkDpY4D/KvP+syQ=
Subject key identifier: FE:31:8C:2E:E4:84:D4:19:AC:6A:41:87:52:D7:AC:D3:76:B9:B6:C0
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186922738550B0F41798311F707C81DD256
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_jGMLuSE1BmsakGHUtes03a5tsA.roa
Signing time: Mon 27 Feb 2023 09:14:49 +0000
ROA not before: Mon 27 Feb 2023 09:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203394
IP address blocks: 212.193.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jul 2023 14:30:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:92:27:38:55:0b:0f:41:79:83:11:f7:07:c8:1d:d2:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 27 09:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe318c2ee484d419ac6a418752d7acd376b9b6c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ad:0d:23:bd:cb:59:56:c2:e2:e2:57:9d:3e:
d1:19:6c:12:e9:ca:98:5b:0e:9b:0a:9f:35:0d:22:
92:73:af:44:69:d2:28:ae:45:0a:a5:e4:5c:fd:e8:
9f:60:6b:7d:0f:26:2a:67:30:87:b6:90:23:fe:62:
90:62:30:b5:8e:c1:ab:ed:4e:4e:a6:e3:03:38:09:
c2:7d:2f:be:83:db:a8:23:5b:b1:b1:ac:75:f7:2c:
62:da:2d:3e:d9:bc:f0:5e:15:e2:d6:28:71:ad:96:
70:5d:0e:d9:80:2d:fd:cf:69:b6:55:84:c7:2e:c7:
55:62:0b:83:b0:ec:7b:ff:11:32:42:a9:17:90:a6:
b2:6a:2c:8f:59:4e:4c:e6:ed:f6:7d:d4:12:42:3a:
14:5a:fc:2d:b7:4c:ef:c5:2d:d3:03:b6:7e:8b:2e:
6c:a3:28:de:1c:34:b2:57:a1:0c:14:36:22:c6:3f:
b0:41:68:ae:95:3d:a1:79:37:e2:f5:bd:8f:43:52:
72:82:e8:00:94:82:10:e8:04:49:f3:3a:2e:f2:19:
9e:e3:b0:85:7f:db:d1:b0:f7:49:2c:b7:67:53:77:
a6:b0:41:8e:64:b8:21:6f:e9:a3:00:b7:f2:ca:0e:
40:e9:46:c7:e1:1d:7d:2a:f7:4c:e6:5c:ac:12:8c:
7c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:31:8C:2E:E4:84:D4:19:AC:6A:41:87:52:D7:AC:D3:76:B9:B6:C0
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_jGMLuSE1BmsakGHUtes03a5tsA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.193.11.0/24
Signature Algorithm: sha256WithRSAEncryption
04:ca:e7:c6:4c:4d:fd:da:9b:7a:64:46:59:c9:89:25:92:a4:
e4:5b:20:ef:6e:c8:58:de:53:2d:fa:b3:fa:6c:7e:dd:17:b9:
88:7f:7e:68:61:6f:f9:03:d2:c3:4d:b5:14:43:ed:0c:3c:48:
12:9c:3f:2b:62:ab:02:5e:27:7a:29:37:3c:cc:de:01:b5:f8:
6a:80:9c:cd:13:26:7b:8e:b9:ed:2a:66:57:06:21:1b:c0:9f:
92:b6:0e:0e:cc:b1:25:43:6c:63:20:d7:f1:20:c5:0d:50:cb:
3c:5c:29:d4:7f:f1:49:7e:04:dd:df:1b:c1:cb:6d:3a:17:e5:
9c:c3:f1:e8:33:0e:1b:1d:ad:b6:2b:b0:81:18:73:3c:f4:c8:
a7:25:6b:b0:bf:eb:d5:b9:7e:5d:31:ab:b0:60:0f:26:29:72:
0a:bd:d4:49:46:20:5a:de:74:0f:cc:08:5f:7d:3f:69:cc:09:
ce:f3:4b:30:6c:3e:a3:6b:22:76:aa:f1:48:20:b8:87:d2:b5:
83:ed:3e:1b:72:de:89:6e:0f:da:b6:4f:7e:27:db:2d:0d:ee:
53:55:fd:36:a0:a9:e8:c2:8c:14:7d:3b:bc:f0:68:6a:bb:36:
45:9b:39:91:17:e9:6f:db:4f:71:f7:d0:e2:3a:6d:99:e3:45:
d1:47:98:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:20 2024 by rpki-client on console-fra.rpki-client.org