Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/901170-e606-4fd1-8504-7f0d07ba4af3/1/48vU6i1JZQeDFCPdiCTXEh02uvI.roa
File: 48vU6i1JZQeDFCPdiCTXEh02uvI.roa (raw, json)
Hash identifier: Cf3HQs0bZusnkabMlORZrSEOWhJx251du9d7ILwlLTQ=
Subject key identifier: E3:CB:D4:EA:2D:49:65:07:83:14:23:DD:88:24:D7:12:1D:36:BA:F2
Certificate issuer: /CN=cd1f73345794ce4817ea99e8d8cfcea71bd78367
Certificate serial: 01909F3FC4737F5DE3D0F6E9DF81E0E28F8D
Authority key identifier: CD:1F:73:34:57:94:CE:48:17:EA:99:E8:D8:CF:CE:A7:1B:D7:83:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zR9zNFeUzkgX6pno2M_OpxvXg2c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/901170-e606-4fd1-8504-7f0d07ba4af3/1/48vU6i1JZQeDFCPdiCTXEh02uvI.roa
Signing time: Thu 11 Jul 2024 00:44:34 +0000
ROA not before: Thu 11 Jul 2024 00:44:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214555
IP address blocks: 212.56.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 Jul 2024 00:15:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9f:3f:c4:73:7f:5d:e3:d0:f6:e9:df:81:e0:e2:8f:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd1f73345794ce4817ea99e8d8cfcea71bd78367
Validity
Not Before: Jul 11 00:44:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3cbd4ea2d496507831423dd8824d7121d36baf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2d:a4:96:f7:e0:83:a9:df:1d:b8:a6:e6:21:
2f:4e:44:78:37:93:a9:39:35:9b:07:79:20:f4:ee:
a9:93:19:a5:45:37:36:0f:f1:61:69:1d:ff:5f:6c:
d0:6a:22:a7:2b:d8:6e:15:94:46:fb:29:9d:9c:f0:
73:44:5f:43:4b:3e:13:09:96:24:fb:ea:d7:1d:b9:
4b:ce:a2:29:f8:a4:8a:df:bf:49:5a:aa:08:ad:4f:
00:13:53:83:9a:65:67:5e:0b:7a:f3:54:4a:67:84:
f8:a6:32:f7:ed:f1:f2:8b:68:76:93:0c:01:a3:bf:
7c:5f:ec:82:01:06:b5:c6:59:d4:a2:a8:ef:6e:8b:
8c:7e:81:b6:04:28:81:39:9e:67:a7:b7:61:9b:0e:
d7:f8:09:9c:1e:8b:2e:0f:c6:c2:8f:64:53:dc:c3:
91:db:6d:4b:ac:ac:c6:46:61:22:c0:00:16:c8:74:
cd:3c:9c:ed:94:68:ad:52:28:c9:98:b2:c5:80:09:
ea:c6:0f:5f:a8:35:12:72:62:e4:ba:bb:6f:6e:8b:
8d:26:8a:6c:fd:92:3a:37:d1:37:8b:9f:21:fc:00:
d0:f7:0e:89:4b:e1:af:d9:a3:22:d9:4e:93:8f:97:
c7:76:19:1e:2c:49:5f:69:69:5a:69:50:f9:74:be:
b6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:CB:D4:EA:2D:49:65:07:83:14:23:DD:88:24:D7:12:1D:36:BA:F2
X509v3 Authority Key Identifier:
keyid:CD:1F:73:34:57:94:CE:48:17:EA:99:E8:D8:CF:CE:A7:1B:D7:83:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zR9zNFeUzkgX6pno2M_OpxvXg2c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/901170-e606-4fd1-8504-7f0d07ba4af3/1/48vU6i1JZQeDFCPdiCTXEh02uvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/901170-e606-4fd1-8504-7f0d07ba4af3/1/zR9zNFeUzkgX6pno2M_OpxvXg2c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.56.56.0/24
Signature Algorithm: sha256WithRSAEncryption
71:48:d4:83:2e:f3:25:98:f6:ee:9d:69:25:b2:b2:9d:fa:0c:
92:18:d3:3c:84:41:79:80:cc:c0:09:62:d3:00:c8:2e:97:71:
7a:a9:9b:c4:42:3e:ba:3e:9c:54:7f:04:16:98:b6:fc:bf:c5:
12:03:20:0f:4e:d7:23:7a:af:ed:c2:de:06:2d:cf:43:57:a9:
e0:43:a8:03:40:8f:b0:d6:ba:0f:12:1e:ec:cf:de:02:b2:31:
c3:30:a7:10:14:3b:23:f2:03:b7:58:6a:dd:ee:31:dd:98:ec:
2e:23:07:a3:d1:9b:f4:8c:4e:9c:65:2e:d6:aa:a5:57:5b:f4:
e4:4e:8a:88:56:86:92:14:56:4a:1c:bc:84:77:fa:f2:bd:63:
5d:23:ef:d4:f8:98:0c:bc:a8:b8:6b:bc:93:b6:f0:08:f6:23:
4e:db:83:df:af:11:1d:2d:3e:78:db:aa:fe:41:f2:55:3d:49:
e6:91:8c:ee:5e:5d:c0:14:c8:90:e8:b3:9a:00:4c:2c:aa:0b:
4d:bc:f5:28:ba:cd:11:e0:b8:42:df:84:c5:a7:40:79:00:a7:
cc:7f:b5:9a:3f:9d:d8:41:e7:70:43:d8:b6:e7:36:ef:09:df:
41:75:df:18:a1:fa:42:6e:83:68:51:76:b0:25:2c:31:31:35:
25:69:72:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:06 2025 by rpki-client