Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/rJuiv7OBBltbhTkG-s8rNSY0Gz4.roa
File: rJuiv7OBBltbhTkG-s8rNSY0Gz4.roa (raw, json)
Hash identifier: LBqkSHWbGAtdq3EgXKE9GUPYFjeaGURN9Yg05hKmd2Q=
Subject key identifier: AC:9B:A2:BF:B3:81:06:5B:5B:85:39:06:FA:CF:2B:35:26:34:1B:3E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A1966D95DFF0596166A06700B2943CD2E
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/rJuiv7OBBltbhTkG-s8rNSY0Gz4.roa
Signing time: Mon 21 Aug 2023 18:41:25 +0000
ROA not before: Mon 21 Aug 2023 18:41:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211376
IP address blocks: 212.193.13.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:19:66:d9:5d:ff:05:96:16:6a:06:70:0b:29:43:cd:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 21 18:41:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac9ba2bfb381065b5b853906facf2b3526341b3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a6:9f:b9:3d:30:a2:83:0a:5e:a8:49:0c:ab:
d2:78:1e:01:1e:aa:c1:56:bb:f9:06:91:e6:db:04:
f1:28:0b:fd:fb:47:6e:fb:26:dc:12:b8:b2:da:28:
0c:8f:a7:be:3a:fe:bb:61:d9:62:82:f9:4a:29:e3:
fd:81:78:24:cd:f8:00:61:69:d6:61:f7:0e:5f:0f:
5e:79:be:c9:8a:9f:78:58:38:3f:6a:d5:dd:57:c8:
c8:ed:4b:06:1e:ff:4e:4c:a1:55:2a:20:64:3c:a4:
62:d8:63:ef:bd:52:14:c2:64:4c:bd:6e:9f:57:7a:
2b:02:be:bc:9c:27:b6:a5:32:d5:7f:70:e7:61:bc:
fa:aa:8b:87:7b:cd:1a:da:bb:52:70:c0:e3:11:70:
9f:27:4d:a4:eb:fa:be:de:b7:d7:6a:bc:0b:fe:9d:
25:c1:5f:e3:f9:98:df:6f:7b:c3:45:56:d9:b6:b6:
52:95:f5:f6:e3:bf:ba:e5:b4:80:2a:c0:e4:10:72:
5d:dc:b7:dc:fe:45:f3:9d:74:3d:72:1b:29:1b:c3:
e2:56:9e:ea:72:06:e4:7a:e1:41:d2:49:a6:45:81:
c9:ff:fa:41:5d:78:aa:c9:44:7b:fa:07:67:08:85:
d4:14:2b:1b:1b:98:61:16:76:11:be:de:3c:d4:c9:
fb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:9B:A2:BF:B3:81:06:5B:5B:85:39:06:FA:CF:2B:35:26:34:1B:3E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/rJuiv7OBBltbhTkG-s8rNSY0Gz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.193.13.0/24
Signature Algorithm: sha256WithRSAEncryption
45:8d:af:d0:3b:b1:60:77:67:62:61:a8:f5:74:34:db:08:7b:
9e:35:15:b0:da:46:ce:b5:6b:24:12:aa:87:d4:04:c5:72:9e:
b1:c1:eb:41:3c:9e:f4:8d:62:ea:06:5d:9a:dd:62:5b:fa:12:
47:b0:d9:64:5d:47:db:ae:b1:b0:de:a9:db:97:fb:61:3d:da:
0d:12:57:f4:78:be:e5:a5:05:3e:5e:75:48:fa:fe:15:ce:df:
48:dc:bc:84:ea:6e:a9:10:c7:58:24:e3:19:5c:57:70:54:6c:
32:6a:86:36:5d:71:fa:78:60:79:f9:cf:d5:1e:08:03:c2:69:
51:fb:5b:08:e9:07:c3:bd:fa:4a:f0:f2:5b:e6:cc:80:48:57:
a1:31:31:24:20:5e:28:57:5b:0b:5d:84:d6:63:75:45:8f:50:
27:24:b4:e0:8d:53:68:74:93:e1:2b:58:4e:2b:98:b2:43:11:
5a:b0:35:69:3b:6d:af:c8:7b:44:ee:80:db:1e:9a:af:4b:a8:
fc:ac:84:6b:48:c6:1e:94:e9:58:5f:8c:55:16:93:e6:e0:ef:
7e:45:74:06:17:54:38:8c:b2:42:63:15:50:3f:09:0e:58:4a:
ed:3b:fc:44:a7:c7:b0:18:98:a4:ae:cb:43:50:9d:8b:64:19:
68:55:51:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 27 09:46:33 2023 by rpki-client on console-ams.rpki-client.org