Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/AVhUG6W6mbJz3qPWAtOMsV7aB4g.roa
File: AVhUG6W6mbJz3qPWAtOMsV7aB4g.roa (raw, json)
Hash identifier: twloFb/WJvrLpCXOUKDIegQH+cU/rJPYUOEr3/7Pz0I=
Subject key identifier: 01:58:54:1B:A5:BA:99:B2:73:DE:A3:D6:02:D3:8C:B1:5E:DA:07:88
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018E152C3249486EDD31C75124CE8A09A42E
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/AVhUG6W6mbJz3qPWAtOMsV7aB4g.roa
Signing time: Wed 06 Mar 2024 19:10:01 +0000
ROA not before: Wed 06 Mar 2024 19:10:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215594
IP address blocks: 212.87.204.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 07:15:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:15:2c:32:49:48:6e:dd:31:c7:51:24:ce:8a:09:a4:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Mar 6 19:10:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0158541ba5ba99b273dea3d602d38cb15eda0788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f9:e7:df:0c:dd:df:ae:d2:41:85:10:0f:d3:
1d:cf:79:1f:9c:27:f9:20:a9:e4:13:c0:57:7a:3e:
67:b0:76:46:05:af:e8:ee:80:77:84:49:c6:97:30:
18:91:33:a1:e4:f7:2d:87:60:57:ff:b3:cd:e3:e3:
5c:1d:76:59:70:ba:cd:50:55:c6:71:05:7e:9f:e2:
14:c4:4a:b2:30:1e:78:07:0a:14:14:eb:30:b4:bb:
77:fe:4e:28:58:7d:29:8b:85:79:66:b7:ec:63:b3:
a3:0a:09:54:3d:fe:b3:62:08:f1:66:6c:60:27:2a:
0b:5d:0b:12:10:7d:e5:4e:12:aa:f5:af:7b:a9:c8:
24:40:cc:65:d0:61:93:f6:1f:10:11:3f:23:da:bd:
e4:93:9c:89:e6:b6:95:77:ac:a3:c8:b1:1d:6d:9d:
be:c3:b2:e9:72:bd:1c:61:76:fb:9c:fe:1b:a0:41:
b4:ce:c6:0d:97:9c:bd:9f:60:4d:db:28:49:8e:ce:
08:cc:7a:15:d6:20:40:a9:f0:a8:8e:ea:5d:51:ce:
2f:6f:04:83:1a:e8:29:64:3f:2a:62:dd:ce:63:55:
5d:b1:8d:85:af:ef:42:07:7d:40:e8:b8:35:07:31:
a8:a3:af:df:fd:92:f6:84:94:30:40:2d:45:94:f6:
87:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:58:54:1B:A5:BA:99:B2:73:DE:A3:D6:02:D3:8C:B1:5E:DA:07:88
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/AVhUG6W6mbJz3qPWAtOMsV7aB4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.87.204.0/23
Signature Algorithm: sha256WithRSAEncryption
40:a6:63:8e:bb:72:92:7c:00:f1:af:35:c5:58:9c:6d:f0:50:
05:d2:b5:c1:d5:90:84:99:41:fa:e1:08:a8:bc:a3:8c:de:53:
02:86:7d:16:92:0a:d8:8a:53:c4:79:2f:d3:46:ad:8d:56:84:
29:98:13:c3:be:32:43:a1:a8:70:73:9a:cd:2b:1b:2d:08:82:
0f:8e:3c:36:ab:62:a6:c6:80:0d:89:81:62:9b:91:68:71:f5:
89:2e:ed:4a:3e:7c:fe:38:e0:9d:f9:aa:44:af:b6:08:0b:bd:
ae:0b:d7:8a:54:14:e4:62:a3:81:94:b0:e8:92:34:15:21:62:
1a:be:70:d8:02:1d:b3:be:21:10:9f:a7:2c:86:b3:2e:a4:5e:
55:47:10:8a:35:13:fe:ed:12:c9:0d:51:5e:32:08:8b:04:6b:
fc:1d:93:38:a8:12:d4:7c:0e:8c:fe:87:84:46:51:3c:f8:b5:
14:6c:a3:aa:6f:fd:0e:48:fc:81:32:b3:da:bc:d1:44:b1:fe:
44:16:ff:36:ac:a3:47:dc:0f:7b:4a:49:45:97:ac:43:97:21:
4f:e6:e2:4a:23:5e:3e:e2:f2:fe:e6:16:c9:e6:e3:94:97:6a:
7e:68:66:ed:09:35:41:47:6e:3e:15:63:7e:4a:04:cc:38:2d:
5a:54:f0:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:26 2024 by rpki-client on console-ams.rpki-client.org