Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/jAjvLVByNXsOyjBQUAdpOOIaAoc.roa
File: jAjvLVByNXsOyjBQUAdpOOIaAoc.roa (raw, json)
Hash identifier: fQEgKAwa3aMjTVFX0PD7yMJLxUhw9FIVv+nHCpfSe0c=
Subject key identifier: 8C:08:EF:2D:50:72:35:7B:0E:CA:30:50:50:07:69:38:E2:1A:02:87
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 01856ECB91B0FEB6E3C475B30578C1D2B57D
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/jAjvLVByNXsOyjBQUAdpOOIaAoc.roa
Signing time: Sun 01 Jan 2023 19:25:12 +0000
ROA not before: Sun 01 Jan 2023 19:25:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 212.46.37.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:91:b0:fe:b6:e3:c4:75:b3:05:78:c1:d2:b5:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Jan 1 19:25:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c08ef2d5072357b0eca305050076938e21a0287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d2:90:fa:9d:ac:f6:ad:e9:bf:e1:39:2b:91:
5d:6e:f0:ab:02:19:d2:01:31:95:d9:84:10:f4:73:
85:db:f4:8e:3d:ab:a8:16:86:61:74:8a:4d:08:88:
1c:00:57:81:d1:fe:b1:f8:fe:8c:77:bd:16:4e:77:
39:5c:4c:6a:30:c1:a4:eb:e0:4e:f8:14:9d:5b:7f:
69:75:eb:9e:60:d0:70:2f:18:94:e2:c9:84:17:94:
eb:eb:20:73:15:54:4a:7e:d6:dc:00:91:01:79:99:
a7:6f:49:ac:20:2d:56:39:50:2e:c2:c9:2e:df:88:
9c:72:67:9c:ad:be:b6:18:2d:a6:50:85:f1:a8:b1:
a0:91:70:d6:ed:bd:81:86:d6:49:98:b7:8d:dc:de:
c3:ac:5f:4d:bd:0c:03:bb:7a:0f:98:38:ac:a2:1b:
17:4c:4b:94:13:ae:7c:7b:28:98:a2:2b:d1:53:77:
8c:32:4e:05:8e:28:53:0b:8b:ed:cf:44:23:93:08:
50:96:e6:4a:ba:70:ac:23:80:e6:73:b8:7b:0f:b7:
76:c4:bd:b5:26:56:9d:a2:2d:d5:a0:30:32:3d:0f:
2c:01:75:9a:f8:c3:02:dc:ef:50:2e:ab:54:a0:0c:
75:f7:33:af:4c:31:98:61:cc:89:d6:0f:1e:d4:de:
e9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:08:EF:2D:50:72:35:7B:0E:CA:30:50:50:07:69:38:E2:1A:02:87
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/jAjvLVByNXsOyjBQUAdpOOIaAoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.37.0/24
Signature Algorithm: sha256WithRSAEncryption
05:c5:59:95:a2:02:08:0c:df:53:9b:68:71:08:52:7d:af:ee:
3e:80:8d:a0:fc:95:25:a9:77:14:cb:a0:07:69:d5:bc:2a:5e:
50:12:7b:a7:b1:98:d7:7a:ea:7d:24:ad:b3:ae:9c:1f:5d:18:
fd:29:15:d2:a4:ee:5a:2c:8d:cb:87:54:0a:87:4a:9e:24:85:
18:fe:7b:a1:81:14:fe:0f:f3:43:b5:ad:6a:b4:59:41:33:6f:
0c:b7:58:04:7f:de:fd:42:d1:a9:4b:5e:6f:f9:0a:de:7f:a6:
b5:14:49:aa:63:82:31:22:bc:04:c0:6d:ba:bf:f1:f5:59:d8:
ca:02:89:6d:c2:1d:f3:a3:26:cf:31:a1:d6:6f:71:af:6e:74:
0b:a0:03:f8:2e:df:99:0e:50:d3:19:33:64:ec:65:20:1e:62:
0a:3a:82:6d:f4:4f:82:2b:5e:fd:6e:01:67:5b:9e:0d:a2:56:
81:b0:34:39:a1:19:00:a7:f5:01:45:d1:53:9d:10:f0:f3:1f:
59:79:a7:c1:40:e9:be:39:92:e7:86:e2:35:dd:bb:43:1a:4b:
e3:e9:ea:fa:ff:03:bb:85:cd:00:a1:0b:d2:1e:3d:9c:fd:0e:
5a:20:8d:a5:03:a4:2f:be:48:d2:4d:bb:1c:a1:97:69:33:c8:
a1:a9:77:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:10 2023 by rpki-client on console-fra.rpki-client.org