Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/r_14GtPoKdKHtwnsRf_hW7GnODI.roa
File: r_14GtPoKdKHtwnsRf_hW7GnODI.roa (raw, json)
Hash identifier: FGwAxOSRVI4EuBxNg7e85S8h7kMOFZ6Sa5Djcq24KqU=
Subject key identifier: AF:FD:78:1A:D3:E8:29:D2:87:B7:09:EC:45:FF:E1:5B:B1:A7:38:32
Certificate issuer: /CN=0fe39b41074c7d6adc8ee274e239f7b8eb3585e9
Certificate serial: 018CC425455564DB0C52FD3D75F912F9E18A
Authority key identifier: 0F:E3:9B:41:07:4C:7D:6A:DC:8E:E2:74:E2:39:F7:B8:EB:35:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D-ObQQdMfWrcjuJ04jn3uOs1hek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/r_14GtPoKdKHtwnsRf_hW7GnODI.roa
Signing time: Mon 01 Jan 2024 08:30:26 +0000
ROA not before: Mon 01 Jan 2024 08:30:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12338
IP address blocks: 212.55.0.0/19 maxlen: 19
Validation: Failed, certificate revoked on Mon 11 Mar 2024 08:55:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:45:55:64:db:0c:52:fd:3d:75:f9:12:f9:e1:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fe39b41074c7d6adc8ee274e239f7b8eb3585e9
Validity
Not Before: Jan 1 08:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=affd781ad3e829d287b709ec45ffe15bb1a73832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:2e:8d:22:a9:b1:99:21:c8:98:f8:89:12:5e:
78:91:46:14:25:84:3f:f2:83:2c:2d:99:0f:a3:9e:
76:c3:33:f5:b7:1c:69:65:03:d0:70:2c:91:e3:70:
57:f5:80:b2:94:9f:ad:8d:57:70:e1:59:1d:c3:24:
4b:2a:88:1f:8d:c9:26:dc:28:4c:9e:30:fb:4f:fa:
64:db:bd:3c:47:c3:6b:28:d7:b8:93:3d:f8:b5:8c:
15:95:1f:c4:6e:f7:33:ea:39:f5:86:5d:2d:1a:ee:
dd:10:13:41:a8:02:c9:93:fc:09:66:8e:77:ab:01:
60:b9:f4:17:b7:27:8e:cc:83:b6:25:db:c3:03:f3:
ed:07:dc:f9:c4:66:f2:1b:b9:5f:06:c7:a4:f3:f5:
61:f9:2f:92:c1:2f:97:38:47:24:73:02:b9:ec:df:
53:24:05:ce:7f:84:b0:8e:14:69:55:19:49:63:54:
29:c8:87:99:2d:87:39:2b:e5:06:0b:6a:7c:e4:b3:
45:e6:9e:54:5c:2a:54:fe:47:0b:43:be:d7:53:24:
09:ba:3d:32:4f:82:69:72:3b:81:ea:07:e7:07:84:
0c:13:64:ad:2a:8c:79:ef:d8:c3:da:30:9d:6e:a4:
f9:be:f1:ed:5a:a5:3d:98:d6:83:c5:47:ac:e2:34:
9f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:FD:78:1A:D3:E8:29:D2:87:B7:09:EC:45:FF:E1:5B:B1:A7:38:32
X509v3 Authority Key Identifier:
keyid:0F:E3:9B:41:07:4C:7D:6A:DC:8E:E2:74:E2:39:F7:B8:EB:35:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D-ObQQdMfWrcjuJ04jn3uOs1hek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/r_14GtPoKdKHtwnsRf_hW7GnODI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/D-ObQQdMfWrcjuJ04jn3uOs1hek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.55.0.0/19
Signature Algorithm: sha256WithRSAEncryption
4c:94:60:a3:d6:d7:d8:0d:9c:1b:d9:54:1b:61:e7:37:d1:8a:
fe:df:10:f1:a6:05:fa:ac:8c:95:00:bb:9b:a4:d5:b4:79:77:
2e:62:7e:5c:5b:12:7a:f8:10:03:44:7e:46:3c:25:0e:1a:f1:
86:3f:c2:5c:9c:20:fe:31:32:3d:0c:a1:d4:bd:7a:b8:d0:dc:
8e:5e:93:52:32:2a:bb:65:4f:d6:f2:81:62:7e:49:b4:8e:f1:
fb:d5:c6:50:34:28:81:62:53:0a:d2:e6:12:51:51:82:c8:37:
0d:0f:1c:88:44:e9:99:6a:a7:0b:c7:cc:66:30:b3:cf:79:85:
2a:1d:a6:ff:cb:aa:eb:13:e8:13:a8:96:39:2c:5a:24:70:8e:
d2:21:73:08:89:86:b2:17:29:b8:11:cc:d6:54:d0:4a:29:9a:
dd:f9:dd:d5:0b:94:db:3f:e8:29:62:47:43:87:ae:54:9d:49:
67:38:0a:f4:aa:66:1e:2e:02:01:45:32:ae:a5:80:ce:69:45:
35:b6:86:19:dc:ef:56:58:9e:9b:3f:8e:39:7c:6a:ca:03:a2:
8b:bf:fe:5c:f5:2d:e2:5c:9d:20:03:13:ec:fb:22:cf:d9:91:
b2:36:02:2d:4d:f5:ea:0c:f7:14:41:bf:d5:79:6c:6b:a4:43:
22:92:fa:04
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEJUVVZNsMUv09dfkS+eGKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmZTM5YjQxMDc0YzdkNmFkYzhlZTI3NGUyMzlmN2I4ZWIz
NTg1ZTkwHhcNMjQwMTAxMDgzMDI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZmZkNzgxYWQzZTgyOWQyODdiNzA5ZWM0NWZmZTE1YmIxYTczODMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhy6NIqmxmSHImPiJEl54kUYUJYQ/
8oMsLZkPo552wzP1txxpZQPQcCyR43BX9YCylJ+tjVdw4VkdwyRLKogfjckm3ChM
njD7T/pk2708R8NrKNe4kz34tYwVlR/Ebvcz6jn1hl0tGu7dEBNBqALJk/wJZo53
qwFgufQXtyeOzIO2JdvDA/PtB9z5xGbyG7lfBsek8/Vh+S+SwS+XOEckcwK57N9T
JAXOf4SwjhRpVRlJY1QpyIeZLYc5K+UGC2p85LNF5p5UXCpU/kcLQ77XUyQJuj0y
T4JpcjuB6gfnB4QME2StKox579jD2jCdbqT5vvHtWqU9mNaDxUes4jSfFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK/9eBrT6CnSh7cJ7EX/4VuxpzgyMB8GA1UdIwQY
MBaAFA/jm0EHTH1q3I7idOI597jrNYXpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRC1PYlFRZE1mV3JjanVKMDRqbjN1T3MxaGVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8xM2VhMWYtMGJjMS00NTdjLThhYjUt
MDRlODEyZDQ4ZTcyLzEvcl8xNEd0UG9LZEtIdHduc1JmX2hXN0duT0RJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8xM2VhMWYtMGJjMS00NTdjLThhYjUtMDRlODEyZDQ4ZTcy
LzEvRC1PYlFRZE1mV3JjanVKMDRqbjN1T3MxaGVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF1DcAMA0G
CSqGSIb3DQEBCwUAA4IBAQBMlGCj1tfYDZwb2VQbYec30Yr+3xDxpgX6rIyVALub
pNW0eXcuYn5cWxJ6+BADRH5GPCUOGvGGP8JcnCD+MTI9DKHUvXq40NyOXpNSMiq7
ZU/W8oFifkm0jvH71cZQNCiBYlMK0uYSUVGCyDcNDxyIROmZaqcLx8xmMLPPeYUq
Hab/y6rrE+gTqJY5LFokcI7SIXMIiYayFym4EczWVNBKKZrd+d3VC5TbP+gpYkdD
h65UnUlnOAr0qmYeLgIBRTKupYDOaUU1toYZ3O9WWJ6bP445fGrKA6KLv/5c9S3i
XJ0gAxPs+yLP2ZGyNgItTfXqDPcUQb/VeWxrpEMikvoE
-----END CERTIFICATE-----
Generated at Mon Mar 11 12:10:45 2024 by rpki-client on console-ams.rpki-client.org