Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gR__nWvD4HweS-wPZSnZyED0TnI.roa
File: gR__nWvD4HweS-wPZSnZyED0TnI.roa (raw, json)
Hash identifier: A5PUUDECXvUfO+SoabFstPhBxmjlblwI4lw4+me81Bo=
Subject key identifier: 81:1F:FF:9D:6B:C3:E0:7C:1E:4B:EC:0F:65:29:D9:C8:40:F4:4E:72
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01881F533F559795D7D758A81EE43B0394A3
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gR__nWvD4HweS-wPZSnZyED0TnI.roa
Signing time: Mon 15 May 2023 12:12:09 +0000
ROA not before: Mon 15 May 2023 12:12:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211376
IP address blocks: 212.193.13.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1f:53:3f:55:97:95:d7:d7:58:a8:1e:e4:3b:03:94:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 15 12:12:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=811fff9d6bc3e07c1e4bec0f6529d9c840f44e72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:15:a9:cf:ce:aa:ca:b9:cd:6a:4e:0b:45:f7:
b3:83:ae:3b:42:ba:9a:73:6c:7b:42:32:b4:da:f6:
e8:67:ac:41:00:8c:84:17:86:bf:73:96:3a:04:1b:
c6:e2:0a:36:15:a3:2b:c3:d1:5e:a6:52:d6:90:7b:
81:75:b0:ae:b4:32:6f:8c:5b:62:97:38:34:0e:19:
9b:f7:4f:e7:61:f8:a0:14:66:4c:9a:89:5f:2d:0e:
ad:fd:82:6b:5f:57:08:ac:4e:3f:84:5e:f0:c0:a7:
3c:0b:62:80:94:a9:8c:0b:f1:6d:c9:3c:0e:8b:f5:
20:94:a5:d4:4d:89:1e:4b:96:c8:2d:ce:12:10:3c:
e0:95:d7:ab:55:3e:fe:97:8f:12:97:80:d4:b7:44:
f8:eb:0a:07:47:15:56:bb:30:e4:bd:25:c6:10:f2:
0f:35:92:81:05:32:09:a2:17:c5:08:40:78:42:46:
31:1d:8c:9c:1d:56:e1:ad:1d:48:c9:10:7e:d1:7e:
c6:f9:5f:8e:f4:5d:d2:4a:53:91:e5:e0:35:10:ff:
2d:0d:b5:94:9c:dc:fc:1b:55:2d:ca:d0:f7:c5:5a:
b7:ba:37:39:03:6d:69:a1:ac:15:74:11:19:54:2d:
71:d7:08:ff:30:6d:d9:05:f4:8e:df:de:af:37:c0:
f8:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:1F:FF:9D:6B:C3:E0:7C:1E:4B:EC:0F:65:29:D9:C8:40:F4:4E:72
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gR__nWvD4HweS-wPZSnZyED0TnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.193.13.0/24
Signature Algorithm: sha256WithRSAEncryption
52:da:cd:b0:72:3c:42:7a:d6:b5:4e:11:bb:1e:45:a6:b4:d1:
9d:c9:b2:1a:4e:d7:aa:56:65:73:2d:6c:c3:69:0c:81:72:54:
67:30:29:82:d6:ac:01:ce:30:89:bf:34:49:c5:3d:6b:1a:2e:
cc:21:b4:5e:e6:88:cb:13:fa:6a:e5:60:a4:ad:70:39:22:b3:
20:91:59:79:54:9b:7f:5e:c4:f4:d2:ea:0d:04:fe:3d:48:60:
5d:56:3a:1a:ea:f1:f4:77:40:86:f8:01:eb:1f:04:18:cf:25:
98:98:d7:60:57:e1:7b:86:93:29:dd:1d:c8:e0:ca:fd:d4:2f:
7e:bd:a6:bb:ba:87:27:09:6c:5a:68:4b:75:38:4a:db:1a:11:
eb:8e:88:01:ba:4b:fc:50:a8:62:f4:df:9d:f0:39:37:b7:28:
65:9a:a3:2c:38:71:06:7e:42:82:6b:55:85:c5:32:14:08:d4:
64:61:41:3b:d1:4b:fe:b7:69:36:26:a6:6d:33:bf:c9:c0:81:
4e:43:54:27:1a:b1:4b:5c:26:42:a6:10:16:5a:47:24:93:98:
31:72:a1:33:ff:f0:c0:14:53:4c:57:29:75:7f:45:f7:8d:c5:
c9:bf:23:63:2b:e8:2e:ba:b8:32:ca:8d:d6:23:fa:c0:18:43:
66:55:84:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 21 08:34:39 2023 by rpki-client on console-ams.rpki-client.org