Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jImDs_SefJMr7eAiMSwHBec2szw.roa
File: jImDs_SefJMr7eAiMSwHBec2szw.roa (raw, json)
Hash identifier: xK+jOdpwRP/PvVAqUNZjpcpuu2wAyWakc5f/uFy/lOg=
Subject key identifier: 8C:89:83:B3:F4:9E:7C:93:2B:ED:E0:22:31:2C:07:05:E7:36:B3:3C
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01892B82DCCABBAFE1B7985CF1B92096C793
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jImDs_SefJMr7eAiMSwHBec2szw.roa
Signing time: Thu 06 Jul 2023 14:02:23 +0000
ROA not before: Thu 06 Jul 2023 14:02:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 393521
IP address blocks: 212.192.209.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2b:82:dc:ca:bb:af:e1:b7:98:5c:f1:b9:20:96:c7:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 6 14:02:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c8983b3f49e7c932bede022312c0705e736b33c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:a1:a2:68:9f:c2:74:ef:82:23:8d:31:eb:8f:
41:6c:94:7d:57:b0:5f:a7:5f:55:96:b7:1a:f0:18:
b4:b3:9b:00:ce:b2:1b:fa:cc:5c:e2:4a:df:42:2e:
1b:17:02:03:0b:2f:70:b4:1c:a6:42:8f:7f:17:26:
10:ad:7c:23:13:7e:d4:02:b0:ee:b0:d9:51:a1:ed:
a8:2b:d2:08:54:be:a9:e7:62:e1:3c:31:5f:c7:e5:
28:1c:f9:a5:bf:b2:4f:99:83:25:79:bd:3c:aa:f2:
aa:40:bf:33:94:3f:d7:61:5a:46:96:1c:2b:6f:fc:
8b:2e:2f:8e:aa:76:79:70:a1:f5:5f:63:e8:73:36:
6e:cd:ca:81:91:c3:97:2e:8a:a4:11:d1:af:f5:66:
c1:6c:e2:2c:bc:d6:c6:90:0e:10:5e:fa:bd:73:d8:
e9:b9:38:bd:7e:c6:8c:d9:ed:f4:c8:cd:09:6c:9f:
cc:69:97:1e:6b:66:b0:12:ac:b9:de:4d:67:3c:01:
71:ba:81:8b:bb:72:7e:ec:5d:8a:55:2d:a5:76:9e:
c4:b5:1c:e9:fd:8c:a4:dd:ce:9b:23:e3:77:00:60:
2a:fc:0b:e9:43:2b:9c:23:4a:f8:d2:e0:3c:46:95:
d0:e8:7c:36:74:ae:3a:07:59:bc:4c:44:02:6c:b3:
09:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:89:83:B3:F4:9E:7C:93:2B:ED:E0:22:31:2C:07:05:E7:36:B3:3C
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jImDs_SefJMr7eAiMSwHBec2szw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.192.209.0/24
Signature Algorithm: sha256WithRSAEncryption
29:cc:e9:2d:b5:39:c1:23:c3:5d:9e:e9:30:fb:f9:7b:7f:b0:
bd:4e:07:cf:fa:9d:fb:74:b4:f8:a2:bc:d0:02:1f:25:c4:a6:
4c:c0:97:9d:a4:88:89:3a:24:bf:be:c6:c0:8a:1e:60:ee:eb:
a3:b5:70:cb:1b:04:f7:cd:b3:3f:c8:d8:4c:c1:c5:2a:ec:50:
8c:9b:e5:1b:b6:90:08:b6:a4:d6:06:49:bb:d4:2d:8a:c0:14:
aa:53:77:55:c8:f1:06:cd:e4:cb:48:fc:05:91:61:ee:27:9e:
28:35:ee:3c:a3:de:32:77:bb:40:cd:0f:91:a9:59:f7:2d:b5:
35:40:dd:12:6e:5c:9b:2f:4d:2d:03:e4:93:86:95:b4:20:e2:
c2:eb:3e:29:c5:ba:99:35:ce:a5:49:fe:28:c4:6d:93:38:d6:
c4:50:2e:0a:0e:fe:f0:4e:04:6e:3f:84:41:bc:62:c5:8b:bb:
fc:db:73:2b:4d:72:74:9b:5d:3a:f9:df:86:38:46:9c:cc:aa:
bd:c0:18:c6:99:2a:bc:0b:c7:2a:55:26:90:f7:9c:2d:a6:dd:
1d:16:61:d0:35:e0:63:00:46:72:88:bc:da:07:e2:77:22:de:
7c:63:8d:47:9e:b0:58:e6:2e:8c:dd:57:e0:43:d9:28:9c:f2:
02:39:cb:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:19:19 2024 by rpki-client on console-ams.rpki-client.org