Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/901170-e606-4fd1-8504-7f0d07ba4af3/1/F1HZ2BxDjCw2k17PgjUIluya5zQ.roa
File: F1HZ2BxDjCw2k17PgjUIluya5zQ.roa (raw, json)
Hash identifier: SaeqgYyj9Nwq4N4v9hfWxL/xAibD/Bxd5PN3MGiqXK8=
Subject key identifier: 17:51:D9:D8:1C:43:8C:2C:36:93:5E:CF:82:35:08:96:EC:9A:E7:34
Certificate issuer: /CN=cd1f73345794ce4817ea99e8d8cfcea71bd78367
Certificate serial: 0190A971EE3933130E8297F23031CB10EBC2
Authority key identifier: CD:1F:73:34:57:94:CE:48:17:EA:99:E8:D8:CF:CE:A7:1B:D7:83:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zR9zNFeUzkgX6pno2M_OpxvXg2c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/901170-e606-4fd1-8504-7f0d07ba4af3/1/F1HZ2BxDjCw2k17PgjUIluya5zQ.roa
Signing time: Sat 13 Jul 2024 00:15:34 +0000
ROA not before: Sat 13 Jul 2024 00:15:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214555
IP address blocks: 212.56.56.0/24 maxlen: 24
2a14:7640::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a9:71:ee:39:33:13:0e:82:97:f2:30:31:cb:10:eb:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd1f73345794ce4817ea99e8d8cfcea71bd78367
Validity
Not Before: Jul 13 00:15:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1751d9d81c438c2c36935ecf82350896ec9ae734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0b:37:17:45:aa:f2:bc:4b:cd:05:8a:45:65:
6a:02:c0:49:45:0a:f7:dc:87:51:98:32:8d:83:74:
df:07:26:81:71:1f:97:1a:e0:9e:8a:09:5f:ec:9e:
ab:e7:b5:84:bf:6f:51:37:0e:04:ac:01:af:cf:46:
2f:44:a8:ea:41:d7:24:c0:9e:b1:db:f2:62:1d:65:
ad:fc:6b:a7:51:66:11:9d:7a:fc:da:f0:ce:b0:0f:
d6:cc:05:e9:20:ae:21:c7:b5:6f:51:7f:08:2a:4d:
97:b1:71:18:0f:81:18:eb:c9:02:f7:fe:6b:0b:42:
0e:ed:64:d8:57:78:09:ff:5b:5e:64:4d:29:15:ff:
32:27:ab:11:1d:40:d0:2b:e2:5f:61:77:62:e4:8d:
75:82:f8:11:65:ac:c2:6c:91:15:e6:f6:a1:10:ac:
df:5c:19:39:4c:65:f1:12:66:cc:e5:c0:1f:5e:f8:
7e:34:33:db:8a:98:25:cf:b7:f5:12:97:ef:53:82:
fd:3f:72:93:3f:7d:ee:88:9e:e0:65:d3:97:54:01:
21:d7:cf:f5:87:39:0d:11:1c:1a:a0:68:eb:8d:ae:
49:ed:0c:b6:2e:08:e3:95:68:0c:76:1f:34:cd:42:
22:73:a2:82:08:fa:85:07:ca:77:76:c7:9c:22:91:
b7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:51:D9:D8:1C:43:8C:2C:36:93:5E:CF:82:35:08:96:EC:9A:E7:34
X509v3 Authority Key Identifier:
keyid:CD:1F:73:34:57:94:CE:48:17:EA:99:E8:D8:CF:CE:A7:1B:D7:83:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zR9zNFeUzkgX6pno2M_OpxvXg2c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/901170-e606-4fd1-8504-7f0d07ba4af3/1/F1HZ2BxDjCw2k17PgjUIluya5zQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/901170-e606-4fd1-8504-7f0d07ba4af3/1/zR9zNFeUzkgX6pno2M_OpxvXg2c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.56.56.0/24
IPv6:
2a14:7640::/48
Signature Algorithm: sha256WithRSAEncryption
39:c6:c3:9a:b7:98:a4:1c:05:61:00:fc:5c:96:11:0e:51:d4:
dd:2a:be:d1:3a:cd:92:e8:fb:47:01:67:5e:ca:4f:32:c7:26:
2f:03:95:b4:dc:c3:59:e1:15:b8:3c:04:13:ea:97:4d:50:8f:
62:7a:3c:60:47:d9:00:97:31:9f:8f:1f:f5:db:da:c1:37:61:
bf:00:2e:35:a6:27:6a:b5:13:d8:1b:f9:ab:da:1a:9f:ee:ba:
80:b0:5a:93:7e:30:b7:3d:30:f0:0d:27:36:b2:42:8d:33:6c:
2f:55:95:3c:f0:33:be:c3:b5:22:9b:f1:be:cd:57:35:f5:f6:
8b:fc:74:52:4b:b6:fb:2e:c2:ca:33:fc:ab:8f:bb:94:95:94:
cf:2b:44:b7:2a:c9:36:ed:71:42:b2:cf:15:d8:2f:9b:67:5f:
ed:a0:b1:d9:dd:fd:60:f8:65:3e:86:ff:0a:17:10:61:e8:f6:
63:b1:47:6d:a5:c8:90:ec:0a:62:79:d0:85:7d:16:85:db:e5:
4d:51:8e:19:6d:9d:62:f0:cf:a7:6e:d2:db:c8:c7:7b:7c:c3:
c7:07:eb:a7:a1:83:31:cf:33:b5:e6:4d:d2:90:ef:4e:0d:a4:
ce:fd:9b:f6:24:4a:62:9f:be:16:b5:b4:99:c2:b4:d3:81:14:
4d:ec:91:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:10 2025 by rpki-client