Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/g4x6jsN7xRQoM0DWEQn71WKlh8o.roa
File: g4x6jsN7xRQoM0DWEQn71WKlh8o.roa (raw, json)
Hash identifier: cAlHPo2oF1CiBBLYQJn9VOWkW2jHK4iLhwTckmQuGRg=
Subject key identifier: 83:8C:7A:8E:C3:7B:C5:14:28:33:40:D6:11:09:FB:D5:62:A5:87:CA
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018B5B26E0515A2033F873F1F1067E8E2AC9
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/g4x6jsN7xRQoM0DWEQn71WKlh8o.roa
Signing time: Mon 23 Oct 2023 06:09:16 +0000
ROA not before: Mon 23 Oct 2023 06:09:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 212.192.220.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5b:26:e0:51:5a:20:33:f8:73:f1:f1:06:7e:8e:2a:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 23 06:09:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=838c7a8ec37bc514283340d61109fbd562a587ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0a:be:53:af:6b:4c:21:5d:6a:38:9c:af:99:
53:4e:65:52:b9:42:f1:ea:2e:3c:f9:c0:c2:1c:bf:
e1:e6:31:68:b0:04:4b:7f:f4:8b:6a:65:f0:9d:fa:
61:75:b9:20:61:3b:20:25:04:3b:4b:a9:e3:fe:f2:
8d:92:3f:31:74:43:11:b8:34:fd:6d:1b:0d:21:3c:
da:af:06:45:b3:eb:80:cb:3b:c4:62:b0:a3:37:bf:
7f:0f:ac:49:b5:19:6a:d6:5a:5e:e3:9a:18:a8:aa:
10:55:76:0e:0e:f9:d7:49:6e:dd:82:3a:0b:92:d6:
34:3a:52:65:b3:af:86:12:98:cd:4a:2d:52:f6:9b:
60:27:e7:3d:26:a2:8d:d0:78:87:5a:7a:31:85:4e:
9a:f1:02:21:2d:f0:ae:70:f3:92:3a:ae:ba:29:bb:
70:21:14:50:47:43:88:16:8e:b7:8b:61:eb:1b:a2:
ec:6b:cb:89:2e:ab:fc:93:fb:bc:f1:b3:9a:c3:62:
bb:d9:ae:de:72:3b:22:c7:ad:75:61:79:29:91:7d:
2e:57:64:5b:35:7c:aa:74:24:b4:01:4a:b3:4b:1d:
84:b9:5e:83:43:bd:3f:9b:0e:21:ea:ee:cf:59:a2:
7d:25:39:2f:50:9e:d8:0a:fd:fd:bd:ae:56:74:e4:
27:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:8C:7A:8E:C3:7B:C5:14:28:33:40:D6:11:09:FB:D5:62:A5:87:CA
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/g4x6jsN7xRQoM0DWEQn71WKlh8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.192.220.0/24
Signature Algorithm: sha256WithRSAEncryption
83:47:bc:e6:e8:c8:f7:0c:67:ff:0f:eb:e9:6c:df:81:4b:4d:
60:89:68:1f:cf:a9:e8:0e:19:12:e4:14:3d:28:bf:43:86:b6:
98:45:5f:7c:ea:da:bf:e3:fe:b0:ec:97:69:2f:1c:95:05:b2:
1b:a0:9e:3f:7f:7c:ac:c9:d4:a6:29:3e:06:77:53:ea:9f:e5:
9a:00:b3:14:a9:18:a9:cf:96:02:0d:38:90:d4:49:0b:89:91:
a9:20:da:96:f8:d1:42:a0:0e:b6:0f:5c:b0:09:32:c6:d8:d9:
b0:ca:77:24:fb:fb:ce:1b:74:c2:63:33:20:62:85:db:f6:e4:
cd:4b:cf:66:5a:d1:89:d9:c2:af:cf:24:af:ce:9f:64:87:52:
a5:44:eb:7e:34:98:12:de:7f:c4:a9:cd:3e:79:cb:43:f6:74:
45:43:e9:76:a7:e3:85:9a:b4:dd:1e:13:df:0d:84:78:41:9b:
2b:2c:f3:38:90:75:9b:75:50:a8:e1:02:3c:26:0a:7c:ec:f9:
c1:d5:d7:be:f0:76:ee:f4:3f:29:7f:1b:a8:c3:fe:90:1a:f1:
46:68:1f:47:8e:4c:4e:e5:65:ab:03:39:a4:a3:6a:8c:fd:d1:
58:1f:32:4e:cd:fa:cf:c5:5d:6e:2f:07:f8:55:02:f1:fa:4e:
05:4c:45:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:19:19 2024 by rpki-client on console-ams.rpki-client.org