Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/oSWkO8Ux0CVGK1B-ay9cJya7wmM.roa
File: oSWkO8Ux0CVGK1B-ay9cJya7wmM.roa (raw, json)
Hash identifier: Fml1000FOB0wkdHAL7j0RTzNVvkJRzDgJAOWCoTCIOY=
Subject key identifier: A1:25:A4:3B:C5:31:D0:25:46:2B:50:7E:6B:2F:5C:27:26:BB:C2:63
Certificate issuer: /CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Certificate serial: 01856F14CAA135C39C49DFE543705D034CB9
Authority key identifier: 24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/oSWkO8Ux0CVGK1B-ay9cJya7wmM.roa
Signing time: Sun 01 Jan 2023 20:45:11 +0000
ROA not before: Sun 01 Jan 2023 20:45:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 212.30.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 04 Feb 2023 08:31:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:ca:a1:35:c3:9c:49:df:e5:43:70:5d:03:4c:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Validity
Not Before: Jan 1 20:45:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a125a43bc531d025462b507e6b2f5c2726bbc263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:63:8d:09:73:4e:23:47:23:2d:89:bf:d6:0c:
a4:bf:23:ca:1f:47:61:da:42:c8:22:49:00:2d:ec:
ae:d0:49:1a:02:e8:9d:ef:46:13:4a:3c:d0:c8:c3:
a1:9a:cd:e2:2e:da:09:68:8e:d7:f5:6b:e4:25:f7:
02:f9:5b:64:19:fb:7f:67:ac:20:84:e7:a3:4b:b4:
91:aa:51:d4:67:df:0d:8f:47:1b:bb:a2:e8:0b:c6:
c4:c9:0b:87:12:ee:7a:d7:92:4e:25:66:3d:ff:9b:
71:aa:a5:f1:ce:b1:25:89:32:b6:1e:f6:0e:55:2b:
24:db:6a:c8:18:dd:b6:b9:36:f6:fa:22:b7:42:31:
c1:65:20:56:39:7a:4d:aa:7a:ba:65:2f:f8:39:93:
4e:3b:ac:92:68:80:9b:da:e2:5a:d0:78:71:ad:bd:
42:ee:e2:2a:0e:93:35:b1:cc:d6:2c:2d:d7:69:59:
30:32:ea:82:81:e1:4c:47:16:dd:38:b8:d2:1d:04:
cf:75:42:e0:4c:0a:e6:f0:c0:62:1c:ba:e5:37:25:
5a:aa:cf:72:eb:c5:3b:ab:08:6a:8e:cf:d4:90:2c:
ed:4d:a5:4e:ba:30:68:dd:cb:fa:80:87:e2:02:03:
1d:5c:f6:af:16:2c:a3:c8:b0:4d:25:4a:de:c7:f4:
9c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:25:A4:3B:C5:31:D0:25:46:2B:50:7E:6B:2F:5C:27:26:BB:C2:63
X509v3 Authority Key Identifier:
keyid:24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/oSWkO8Ux0CVGK1B-ay9cJya7wmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/JFXX_uSkmeyvEdLT2o44neMjQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.30.34.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:8a:31:3f:b7:63:b0:6e:03:cf:2b:7f:f5:1d:85:01:6e:d5:
62:99:13:e7:3a:b5:85:4a:8f:4e:00:f7:89:e4:eb:bc:2c:30:
03:95:fc:51:fe:43:7e:07:6a:f3:93:29:98:aa:55:ba:6b:b0:
5d:f7:2e:e9:81:e6:36:2a:74:61:b2:a3:f7:ec:87:f8:89:7d:
a1:49:8d:46:78:09:2d:b0:9f:c8:d6:87:44:8b:3c:2d:b1:ba:
21:9f:ad:9b:5b:45:b2:02:d1:15:f9:18:31:91:89:7a:ac:fa:
bc:c9:ea:c6:6d:5e:65:4d:d5:a4:13:19:8f:3c:58:c2:f9:01:
5b:70:a5:94:14:82:44:33:f3:f1:58:88:09:7b:3b:e8:31:42:
71:b5:77:de:03:4c:0f:0b:d2:a6:07:0c:da:25:91:02:72:a2:
58:c3:97:6c:dc:d1:7e:ba:d3:c0:97:a2:30:cb:ca:ef:4c:06:
d4:ad:f0:71:5f:65:08:63:7b:3d:39:c7:c2:fe:27:de:56:15:
f1:0b:f8:09:ea:18:22:d2:4b:cf:7c:5b:d5:1c:96:e9:ce:a3:
0b:39:6f:f6:ab:44:fb:bb:5d:ed:13:4b:c4:2a:22:67:a6:59:
63:38:72:ee:66:99:4a:ad:98:f5:30:83:4b:e6:16:3c:57:4c:
ad:ea:a1:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:28 2024 by rpki-client on console-ams.rpki-client.org