Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/0d38f9-e0c1-46cc-9a22-dfbb6ec3430e/1/vJLIcU5VDkHtvZPP-ig9WyEar60.roa
File: vJLIcU5VDkHtvZPP-ig9WyEar60.roa (raw, json)
Hash identifier: yLTON9t6Mu6PlsHKD/NU36XJyMMuLDlNfGhDN12ABa4=
Subject key identifier: BC:92:C8:71:4E:55:0E:41:ED:BD:93:CF:FA:28:3D:5B:21:1A:AF:AD
Certificate issuer: /CN=17d2cc9e0b8186b60b270313cd96821022d04b95
Certificate serial: 018E83E2D62042523375141F8BAEF3B92F1B
Authority key identifier: 17:D2:CC:9E:0B:81:86:B6:0B:27:03:13:CD:96:82:10:22:D0:4B:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9LMnguBhrYLJwMTzZaCECLQS5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/0d38f9-e0c1-46cc-9a22-dfbb6ec3430e/1/vJLIcU5VDkHtvZPP-ig9WyEar60.roa
Signing time: Thu 28 Mar 2024 07:07:44 +0000
ROA not before: Thu 28 Mar 2024 07:07:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20495
IP address blocks: 212.125.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Apr 2024 06:40:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:83:e2:d6:20:42:52:33:75:14:1f:8b:ae:f3:b9:2f:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d2cc9e0b8186b60b270313cd96821022d04b95
Validity
Not Before: Mar 28 07:07:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc92c8714e550e41edbd93cffa283d5b211aafad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e6:7d:27:ca:d4:5a:94:f1:40:13:9c:64:08:
8a:ed:22:80:18:43:92:28:33:21:17:e4:8d:37:46:
d3:d3:6e:53:9a:5b:22:b9:33:77:5d:7e:4d:64:0a:
28:05:68:31:b6:a4:09:4d:5f:cb:62:d3:f5:08:6f:
9c:98:c0:99:a5:5c:0e:40:c7:b5:ba:8d:80:4d:11:
4f:50:be:1f:90:56:30:50:e7:2c:88:c5:53:95:30:
50:11:2b:2a:e6:e0:cf:9f:26:91:bf:13:ce:2d:1d:
93:39:7f:b5:2b:f6:72:10:ab:08:bb:be:91:42:b0:
0a:73:49:25:c8:75:1e:34:e6:a0:df:98:6b:9e:3f:
3a:db:20:40:62:16:8f:01:5a:f0:4f:c1:35:10:65:
68:dd:66:ce:04:60:3a:ca:18:e8:65:af:ab:bb:5f:
46:f9:cb:68:2d:e6:e2:63:a9:38:20:93:75:18:3c:
af:d2:cb:8b:96:e6:39:98:e2:a4:93:3a:cc:75:38:
ff:9f:72:04:11:6c:48:23:ee:ef:ad:f0:2b:b9:6a:
9d:96:3a:3f:b9:af:4b:e0:55:26:46:a8:a4:98:73:
6e:11:f1:33:cb:43:77:ca:0f:f0:a7:09:83:76:77:
eb:0c:4a:1f:f9:d1:63:ff:b2:2e:7b:a2:cd:53:dc:
f5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:92:C8:71:4E:55:0E:41:ED:BD:93:CF:FA:28:3D:5B:21:1A:AF:AD
X509v3 Authority Key Identifier:
keyid:17:D2:CC:9E:0B:81:86:B6:0B:27:03:13:CD:96:82:10:22:D0:4B:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9LMnguBhrYLJwMTzZaCECLQS5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/0d38f9-e0c1-46cc-9a22-dfbb6ec3430e/1/vJLIcU5VDkHtvZPP-ig9WyEar60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/0d38f9-e0c1-46cc-9a22-dfbb6ec3430e/1/F9LMnguBhrYLJwMTzZaCECLQS5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.125.140.0/24
Signature Algorithm: sha256WithRSAEncryption
66:bd:bf:7b:06:bc:f3:55:66:29:1b:79:f2:c7:4d:04:c5:1d:
48:1a:66:91:72:0e:7d:11:04:ee:57:c1:6a:89:f5:7c:02:4f:
89:5e:a2:93:ce:f7:a0:7c:5e:da:13:1b:3f:a1:cf:fd:a0:e4:
30:09:56:f5:b8:a6:5f:04:41:24:d4:a1:6e:f6:4d:e6:5b:60:
58:c2:cb:a0:6c:4b:03:3d:cc:55:99:85:4f:d8:e5:f5:68:1c:
08:11:d1:55:6b:06:2a:62:41:84:eb:7b:92:72:d7:a9:06:28:
35:4a:1d:8e:ae:99:50:d0:7f:9a:dd:1f:a6:68:56:f2:d3:c9:
25:3e:85:2c:fb:38:79:89:2b:e6:e2:5d:13:d1:e7:0c:5d:5d:
4f:ac:c4:22:f5:d6:ed:36:2f:bc:aa:ab:8d:c1:88:31:8d:43:
c7:63:57:c2:43:29:2d:74:3b:7e:d0:18:ed:b6:6e:9f:11:92:
f3:65:14:e0:a5:7c:e6:9f:a1:d1:3d:bd:1a:1c:67:4a:1b:df:
c0:88:35:fe:aa:84:8f:d2:8c:2f:cb:fc:a7:c4:a8:34:ad:21:
49:ce:21:3c:43:4c:21:92:f8:0c:f3:6c:dd:56:c3:5d:d3:8f:
4b:39:11:c4:05:8c:71:5e:8a:41:30:33:35:46:bf:ae:22:ed:
c6:f7:5d:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 07:24:39 2024 by rpki-client on console-ams.rpki-client.org