Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/9f9590-7f0a-41b3-ac4f-efd14db957fb/1/tJODSidgZwlMFK4MMwIOaGAFn0k.roa
File: tJODSidgZwlMFK4MMwIOaGAFn0k.roa (raw, json)
Hash identifier: 9aMhICjRQyX7ud9+KIf3O5PEkOsHBTCXSe2446rcTYo=
Subject key identifier: B4:93:83:4A:27:60:67:09:4C:14:AE:0C:33:02:0E:68:60:05:9F:49
Certificate issuer: /CN=f9856d674f0e9dbf6012d5b5d3d96b43afd76473
Certificate serial: 01856F3929D79E113CC2BB149F848E223B95
Authority key identifier: F9:85:6D:67:4F:0E:9D:BF:60:12:D5:B5:D3:D9:6B:43:AF:D7:64:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YVtZ08Onb9gEtW109lrQ6_XZHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/9f9590-7f0a-41b3-ac4f-efd14db957fb/1/tJODSidgZwlMFK4MMwIOaGAFn0k.roa
Signing time: Sun 01 Jan 2023 21:24:55 +0000
ROA not before: Sun 01 Jan 2023 21:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15526
IP address blocks: 212.68.145.0/24 maxlen: 24
213.8.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:29:d7:9e:11:3c:c2:bb:14:9f:84:8e:22:3b:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9856d674f0e9dbf6012d5b5d3d96b43afd76473
Validity
Not Before: Jan 1 21:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b493834a276067094c14ae0c33020e6860059f49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:4f:f7:4d:90:4a:49:b8:da:8e:0d:40:89:c4:
3b:35:a5:31:83:55:9e:04:4f:75:51:a8:16:75:15:
d7:19:11:80:86:05:fd:79:29:43:0e:51:8b:19:09:
9a:1a:86:92:c7:ee:fe:60:1f:39:55:d2:32:d2:a8:
16:36:2d:f8:ce:9c:c3:0d:8a:f1:8d:4d:6e:28:9d:
3e:d3:4c:d5:a0:d2:96:10:07:b7:cb:48:5f:d4:51:
69:4d:e7:ab:a4:68:31:ff:d5:f0:85:82:a3:66:f2:
6c:b5:e3:85:e2:2e:57:cc:f0:6a:aa:78:e0:78:57:
ec:70:8a:99:3a:8b:19:26:bb:c7:3f:4f:68:eb:d1:
30:ad:93:aa:1e:7d:03:39:47:28:77:fa:a2:ec:94:
95:fa:f4:80:91:b7:8e:3b:74:cc:d5:ce:16:32:40:
da:66:c1:12:dc:59:1c:c3:02:d9:56:52:ca:77:96:
99:25:bd:6a:f3:bf:d6:4b:f7:a9:83:34:48:e4:75:
de:c7:f7:60:01:86:11:3c:e2:ed:95:a9:5b:ce:45:
dc:7f:44:80:48:35:ef:18:fd:a2:d3:8c:8a:d9:78:
58:52:56:3e:97:42:77:fc:4e:ab:bd:4e:aa:a8:c3:
0e:7a:12:fc:de:70:ad:03:d2:25:2d:a0:d1:06:83:
87:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:93:83:4A:27:60:67:09:4C:14:AE:0C:33:02:0E:68:60:05:9F:49
X509v3 Authority Key Identifier:
keyid:F9:85:6D:67:4F:0E:9D:BF:60:12:D5:B5:D3:D9:6B:43:AF:D7:64:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YVtZ08Onb9gEtW109lrQ6_XZHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/9f9590-7f0a-41b3-ac4f-efd14db957fb/1/tJODSidgZwlMFK4MMwIOaGAFn0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/9f9590-7f0a-41b3-ac4f-efd14db957fb/1/1-YVtZ08Onb9gEtW109lrQ6_XZHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.145.0/24
213.8.23.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:f7:f3:64:12:71:89:da:ec:fe:66:9c:04:65:5d:e4:5c:1f:
9f:a1:ee:ac:a0:ef:3d:73:1a:75:2a:bd:1b:14:d6:60:97:63:
f1:9f:6d:74:13:e1:d2:71:10:51:c8:eb:6c:07:8a:ba:7d:1c:
e8:68:25:7a:ef:85:6a:85:d4:db:ca:96:29:b7:ec:1f:75:d5:
e4:55:ca:34:bb:ed:80:19:95:08:eb:bf:95:53:be:e1:43:cd:
88:ff:e6:63:72:02:1e:bc:c3:63:44:9e:c8:bf:ca:fc:88:a3:
63:77:97:ed:9c:a7:97:02:46:50:2e:c4:80:df:0c:93:b4:06:
26:4f:58:cd:6d:c2:7d:07:56:25:1d:1e:13:75:1b:f7:f1:ce:
cd:31:5d:54:60:db:86:ae:0f:5f:36:1a:2f:60:f3:fb:ff:70:
29:6a:e4:26:0a:c9:b3:6f:40:b6:bd:ba:e7:d9:f1:df:95:6d:
96:8e:11:f3:b4:88:99:fd:47:23:5e:3f:75:d3:2a:fc:63:5d:
12:01:b9:4f:64:3e:18:6b:01:f3:d8:08:c1:09:a5:e0:0b:60:
e7:56:1a:55:9e:08:48:52:c6:78:6a:16:30:98:84:88:fc:49:
ff:9a:3e:0c:84:5f:ae:6f:63:e2:b0:93:19:24:ab:9b:a0:bf:
c7:d4:0b:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:22 2024 by rpki-client on console-fra.rpki-client.org