Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/T_U0_ToU0QQ8ijBYxTA-8W4N2WA.roa
File: T_U0_ToU0QQ8ijBYxTA-8W4N2WA.roa (raw, json)
Hash identifier: dMPx3p17lSgWQ8z6d1HV3xXndeSz7fUWPphbwSCWflU=
Subject key identifier: 4F:F5:34:FD:3A:14:D1:04:3C:8A:30:58:C5:30:3E:F1:6E:0D:D9:60
Certificate issuer: /CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Certificate serial: 018C63BC2EBC23A61A196C207285893A048B
Authority key identifier: 70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/T_U0_ToU0QQ8ijBYxTA-8W4N2WA.roa
Signing time: Wed 13 Dec 2023 15:12:06 +0000
ROA not before: Wed 13 Dec 2023 15:12:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6762
IP address blocks: 185.252.212.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:63:bc:2e:bc:23:a6:1a:19:6c:20:72:85:89:3a:04:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Validity
Not Before: Dec 13 15:12:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ff534fd3a14d1043c8a3058c5303ef16e0dd960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9c:09:80:0a:c1:08:81:67:e8:4c:b9:b3:aa:
ce:ed:db:0b:fe:5e:85:36:a7:8c:29:fb:bf:e4:23:
1f:e7:45:c2:77:8c:93:d0:cb:5d:d2:51:2b:24:0a:
e3:79:aa:ec:17:44:39:62:30:35:f3:25:e3:20:7e:
82:cc:7a:c8:0e:17:f0:4d:95:35:fc:c3:9a:e6:e3:
67:06:fe:36:ae:f1:b6:7a:a9:9c:7f:c0:32:3e:9a:
3c:92:b5:1a:03:9c:65:13:d4:c2:7f:3e:03:1b:d3:
94:7c:f8:43:bb:ea:dc:d3:c3:cc:37:03:0f:d8:72:
4d:19:ad:77:3a:74:23:f8:e5:4c:25:36:be:a8:ee:
1a:73:a1:bb:48:37:90:96:c8:3f:6c:a9:e4:b1:f7:
a5:df:11:f4:8b:e3:fd:b3:95:2a:ea:2b:82:62:0c:
c1:1c:d8:b9:b7:d4:d8:2a:57:b1:0d:d6:3f:82:39:
ed:50:02:3e:57:a9:a1:a2:7a:b5:bd:c7:96:69:b4:
8e:56:23:2a:a5:6a:20:ff:50:6d:c2:18:49:93:e2:
73:19:be:a4:64:ca:c6:45:49:8b:ed:a5:62:11:d9:
36:1f:df:d7:e1:f9:f7:cc:80:25:6c:ed:85:d2:1e:
db:1e:9d:95:a1:99:d7:e2:34:bb:f1:87:cb:f5:2f:
ce:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:F5:34:FD:3A:14:D1:04:3C:8A:30:58:C5:30:3E:F1:6E:0D:D9:60
X509v3 Authority Key Identifier:
keyid:70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/T_U0_ToU0QQ8ijBYxTA-8W4N2WA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/cG06u7R4t07yre-bt8QzbjQRHVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.212.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:ef:3d:f6:98:07:45:e7:7b:80:4f:5b:06:04:e1:44:83:2c:
73:ec:41:b6:86:d6:c8:9d:0f:a2:38:46:11:11:f7:46:9a:1e:
2f:cf:ed:e1:39:db:ac:cb:d9:90:94:1a:56:9c:aa:99:82:2d:
be:a1:7a:af:8c:99:cb:ca:aa:1a:2a:b7:47:00:8c:ab:ec:ce:
9f:e4:84:7c:17:f5:83:7b:ee:bb:e3:4e:7e:c9:67:5a:f1:39:
05:62:f7:15:2e:b7:df:fd:e0:f1:ae:b2:aa:3d:de:73:b1:5a:
23:6f:f5:e9:45:88:d1:8f:b3:1e:bb:40:3b:a5:54:f4:bf:d7:
36:cc:99:08:2d:cd:48:c6:d5:6d:6d:4f:a5:61:4f:b4:24:a0:
fd:20:64:1d:38:f9:c6:22:b4:92:04:f8:59:33:ed:13:fd:e6:
0f:74:21:08:53:12:ca:6d:78:76:52:3d:dc:0a:74:f2:f4:a5:
22:d0:5f:a6:b9:f3:8b:3d:bd:05:14:a1:ae:80:86:89:41:1b:
c6:c3:68:1e:2f:46:7e:61:d6:9e:2d:e0:da:74:f1:91:bd:2b:
54:ec:a9:bd:3e:2a:8d:24:72:b7:60:a5:c1:23:06:69:a8:0b:
36:84:84:c4:bc:8d:f1:48:94:7c:b7:2b:b8:2d:bf:78:45:a4:
73:93:ea:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:13:40 2024 by rpki-client on console-ams.rpki-client.org