Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/alHXn60v4OlVvdT3c-82jrUwlPw.roa
File: alHXn60v4OlVvdT3c-82jrUwlPw.roa (raw, json)
Hash identifier: 2KRgapps+Qf1fbfIqj6e60803+37HFWZXFetnvJ4thI=
Subject key identifier: 6A:51:D7:9F:AD:2F:E0:E9:55:BD:D4:F7:73:EF:36:8E:B5:30:94:FC
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A375B37F74797589078E711DD4A8C746E
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/alHXn60v4OlVvdT3c-82jrUwlPw.roa
Signing time: Sun 27 Aug 2023 14:17:19 +0000
ROA not before: Sun 27 Aug 2023 14:17:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 151633
IP address blocks: 212.192.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:37:5b:37:f7:47:97:58:90:78:e7:11:dd:4a:8c:74:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 27 14:17:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a51d79fad2fe0e955bdd4f773ef368eb53094fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:84:bc:12:f1:50:f9:ed:4f:d6:6e:ed:77:29:
7d:d4:f2:3e:06:6d:b0:71:fe:24:53:7a:3a:b1:d9:
21:4c:42:d4:ee:65:30:5e:ee:d4:e8:1e:8c:1b:93:
38:16:5c:0c:2e:02:55:2d:15:f8:39:48:ca:5b:92:
25:dc:3d:46:4e:95:2e:7e:ab:0b:e9:3c:31:da:d1:
1e:a7:03:09:2c:12:28:6b:50:d2:4d:c1:0f:e5:b7:
bc:5b:f8:d9:b5:af:77:dc:b5:e6:aa:c2:fb:73:2f:
26:b2:a8:60:18:a1:bf:b0:b5:82:8f:90:1a:89:6b:
c1:b5:1f:35:14:e4:c3:ac:b9:ef:da:36:85:1c:40:
b5:14:56:35:65:39:e1:bc:35:7c:dc:21:da:c3:cc:
df:33:c6:dc:63:36:44:27:37:71:d9:61:26:b6:8d:
dc:05:7b:ff:b9:4f:13:6f:05:9d:66:81:28:0e:10:
a6:db:23:33:26:34:8e:a0:e5:0c:2c:be:87:8b:d0:
d3:62:59:44:91:b5:25:e5:17:26:d6:98:47:82:8f:
ba:a7:f1:59:b4:02:e5:96:03:f1:c2:a8:ac:e8:4b:
88:d2:43:0d:60:8a:2a:49:34:4f:bc:a4:02:49:6e:
31:4d:4b:32:bc:cc:8a:22:ab:b4:c7:b6:f4:8d:61:
18:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:51:D7:9F:AD:2F:E0:E9:55:BD:D4:F7:73:EF:36:8E:B5:30:94:FC
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/alHXn60v4OlVvdT3c-82jrUwlPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.192.249.0/24
Signature Algorithm: sha256WithRSAEncryption
39:34:40:93:bf:3b:11:16:6b:7f:8a:59:54:d3:5b:c6:7a:df:
e2:8f:2c:3a:17:d0:19:bf:36:73:5c:6a:0c:36:64:1a:00:18:
f3:b1:88:09:bd:b8:ac:f8:f0:cb:47:60:32:63:d2:89:3f:fe:
11:fb:ec:83:36:62:29:f6:31:a3:63:a2:35:0a:03:83:70:d8:
af:b0:ae:dd:0a:a5:05:8b:2e:ad:ce:a0:6f:c3:1e:77:cd:41:
0a:c4:27:8a:67:0f:6c:b7:e3:90:bc:6c:82:2c:46:85:17:79:
66:92:d6:b9:3a:dc:c2:66:42:01:2b:0d:df:3a:00:6a:96:c0:
bf:89:48:c5:37:e5:ae:c8:b9:c9:54:91:e4:97:28:00:5e:0b:
24:f6:06:7a:84:5a:6d:b7:49:5d:ce:b9:1a:18:b9:8f:d2:8a:
37:8c:4e:f4:11:e0:e2:52:39:4f:1b:27:f8:c0:7a:3e:a8:bd:
b0:dd:de:39:b5:da:48:b5:7c:53:81:32:9a:5a:e7:36:68:8d:
f1:75:99:6a:3f:b4:fc:4f:0e:82:bc:12:07:da:5f:d8:ce:0f:
82:6f:80:d1:f4:77:da:b5:8b:ad:35:52:5d:fe:5b:56:7d:25:
fc:20:d5:3b:48:24:11:55:4c:6d:87:a1:3c:6d:2c:e0:a2:d3:
89:e9:94:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:19:18 2024 by rpki-client on console-ams.rpki-client.org