Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/UrDd7lE01YHIj2P438x2qt02REw.roa
File: UrDd7lE01YHIj2P438x2qt02REw.roa (raw, json)
Hash identifier: 63aV5IPf4GIfqHBD0/eLwyHjZ9XVcfVNTYBH48KSvMw=
Subject key identifier: 52:B0:DD:EE:51:34:D5:81:C8:8F:63:F8:DF:CC:76:AA:DD:36:44:4C
Certificate issuer: /CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Certificate serial: 018894BECC79B075722A62CA80FACC7F3388
Authority key identifier: 24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/UrDd7lE01YHIj2P438x2qt02REw.roa
Signing time: Wed 07 Jun 2023 07:25:12 +0000
ROA not before: Wed 07 Jun 2023 07:25:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 212.30.35.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:94:be:cc:79:b0:75:72:2a:62:ca:80:fa:cc:7f:33:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Validity
Not Before: Jun 7 07:25:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52b0ddee5134d581c88f63f8dfcc76aadd36444c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:aa:86:7f:65:31:26:f5:a5:2c:5b:a7:b9:cf:
eb:7e:3d:8b:20:a4:a1:60:36:02:82:f3:3e:5e:de:
79:ba:e2:5e:70:d3:a5:ad:18:ef:4f:5b:08:3e:5f:
ae:90:1a:b8:0b:b7:a8:ee:82:41:1b:8e:ab:24:2c:
d5:ec:2b:29:81:e7:10:6a:0a:96:8a:a6:e2:46:fd:
9d:b2:11:ca:d9:2f:d0:0b:1b:b7:d0:9b:28:88:60:
ea:dc:45:d4:ee:bc:14:27:69:12:db:c3:26:3d:e7:
f1:42:af:34:b5:2f:d1:7f:64:b2:8e:b6:12:61:73:
f6:d8:c1:42:ea:fa:7b:f9:e9:c9:19:80:63:11:f3:
43:86:13:25:d7:9a:e9:76:03:49:9b:e8:06:06:9a:
1b:8d:bf:a3:18:d1:0f:43:c9:17:44:0f:04:01:b8:
aa:d9:68:51:9a:7e:76:c7:52:74:20:e5:6a:9f:cd:
eb:2f:94:f8:fb:a6:77:c2:cc:4d:c5:e0:ad:b3:75:
3d:51:a2:5e:5d:09:14:58:b7:1f:90:ca:d4:38:d4:
09:53:bd:f1:48:68:a0:ac:d6:5e:b2:df:81:f4:a6:
ee:05:4e:66:dd:d2:77:46:0a:26:97:36:2f:69:71:
f5:8d:c3:56:27:f9:05:b8:82:78:df:da:41:19:46:
0a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B0:DD:EE:51:34:D5:81:C8:8F:63:F8:DF:CC:76:AA:DD:36:44:4C
X509v3 Authority Key Identifier:
keyid:24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/UrDd7lE01YHIj2P438x2qt02REw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/JFXX_uSkmeyvEdLT2o44neMjQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.30.35.0/24
Signature Algorithm: sha256WithRSAEncryption
59:e7:9e:ee:25:5a:01:05:5b:f3:3e:54:0b:a9:a0:43:c9:35:
2b:a6:92:3b:a6:7d:be:e6:f5:e1:4c:88:35:05:54:d0:90:16:
60:ce:b2:3c:47:06:e2:12:a2:31:fc:3d:68:d8:2a:5b:08:3c:
c6:73:b9:59:ea:50:68:28:01:d2:29:2a:49:84:f2:dc:0f:2e:
f6:bb:c0:84:35:00:6f:a9:91:43:b5:ee:b8:1f:0a:39:aa:7f:
5b:eb:be:e0:a5:bd:0e:af:ce:cc:28:48:29:4a:b7:d1:29:07:
f2:ae:ab:3d:70:8d:53:57:1a:52:99:00:f8:0f:bd:d8:7b:1c:
3c:c0:94:be:5e:ce:ee:e9:34:e4:b5:fd:71:36:a4:18:26:55:
85:17:26:30:6f:9c:67:f5:83:45:30:ad:35:7d:af:25:4b:09:
be:2e:c4:5c:cb:ce:94:6e:2d:cc:cb:38:5a:9b:54:8f:6e:ea:
4a:9d:42:a0:68:97:1a:e6:eb:82:c9:01:3e:29:df:38:1e:11:
83:f3:76:65:60:b3:d3:c1:67:7f:1c:eb:00:aa:c2:39:9e:62:
86:cc:48:c4:99:8f:bb:f1:bb:f9:0c:18:47:30:dc:60:46:f4:
2e:45:c7:d4:ec:64:d0:56:7d:7a:9e:ed:94:2b:7e:53:63:bd:
85:ea:6b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:28 2023 by rpki-client on console-ams.rpki-client.org