Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/42fb4c-295d-4da2-b1c0-35d2285f0299/1/_ARrOOFKuB3QKRZI2gp5-HyQ-AA.roa
File: _ARrOOFKuB3QKRZI2gp5-HyQ-AA.roa (raw, json)
Hash identifier: hs8QQz3BLkI+H+ggtEinavzVU7GjcfWlTbnQCSXMN4Q=
Subject key identifier: FC:04:6B:38:E1:4A:B8:1D:D0:29:16:48:DA:0A:79:F8:7C:90:F8:00
Certificate issuer: /CN=47f2e3102a41792525d4bd6a8a6c2ff4aa8f6d71
Certificate serial: 01856F797B73B886DD3FADBF3E4341F960B5
Authority key identifier: 47:F2:E3:10:2A:41:79:25:25:D4:BD:6A:8A:6C:2F:F4:AA:8F:6D:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R_LjECpBeSUl1L1qimwv9KqPbXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/42fb4c-295d-4da2-b1c0-35d2285f0299/1/_ARrOOFKuB3QKRZI2gp5-HyQ-AA.roa
Signing time: Sun 01 Jan 2023 22:35:10 +0000
ROA not before: Sun 01 Jan 2023 22:35:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 212.18.124.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:7b:73:b8:86:dd:3f:ad:bf:3e:43:41:f9:60:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47f2e3102a41792525d4bd6a8a6c2ff4aa8f6d71
Validity
Not Before: Jan 1 22:35:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc046b38e14ab81dd0291648da0a79f87c90f800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0f:40:ae:71:ec:28:2d:65:3e:1d:ba:25:b9:
84:cc:03:a8:6c:51:d3:0f:7a:ba:c1:d9:09:c3:63:
00:e6:36:ac:74:3a:4c:7c:33:84:fe:59:b1:2e:28:
15:3f:3e:ff:87:27:a5:f7:df:5a:71:89:2e:1d:71:
95:b1:45:4b:3b:8c:44:bc:f3:3a:cb:19:4f:93:a6:
1b:b1:36:db:4d:9f:64:2c:cf:0a:a3:b0:35:ee:9f:
f3:7a:fb:1f:27:9b:37:81:2b:2e:a4:10:c2:55:fe:
57:08:a7:1d:08:5f:95:b4:88:d1:db:c0:ac:06:c0:
82:8e:f9:36:da:90:e2:69:7d:cb:58:e4:a7:1c:2b:
c9:6e:9a:06:36:c7:45:d1:c1:70:88:50:59:8f:21:
02:cb:3c:b0:de:ed:fe:e7:11:b3:e0:cf:a2:bd:e5:
6d:0f:99:6d:e5:1c:73:00:5a:dd:9d:40:23:45:aa:
73:23:a7:c4:6d:4a:84:5f:91:83:ab:c0:f4:e0:1d:
58:0f:b8:99:17:e6:c8:e6:59:38:1a:b2:e2:6e:43:
9a:2d:a1:2b:64:bb:20:8f:ac:79:8a:36:60:80:00:
6c:c3:f8:0e:39:0f:74:81:04:1a:82:62:7e:06:5b:
cd:6f:c9:f0:55:95:bb:7e:ed:be:fb:b4:cf:d8:65:
42:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:04:6B:38:E1:4A:B8:1D:D0:29:16:48:DA:0A:79:F8:7C:90:F8:00
X509v3 Authority Key Identifier:
keyid:47:F2:E3:10:2A:41:79:25:25:D4:BD:6A:8A:6C:2F:F4:AA:8F:6D:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R_LjECpBeSUl1L1qimwv9KqPbXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/42fb4c-295d-4da2-b1c0-35d2285f0299/1/_ARrOOFKuB3QKRZI2gp5-HyQ-AA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/42fb4c-295d-4da2-b1c0-35d2285f0299/1/R_LjECpBeSUl1L1qimwv9KqPbXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.124.0/24
Signature Algorithm: sha256WithRSAEncryption
11:30:9b:8c:4d:ed:cd:fd:df:f3:57:36:fe:84:c6:cd:eb:2f:
6e:25:ca:2e:e8:79:02:96:41:49:47:21:aa:50:b7:8e:79:13:
d8:d6:eb:3b:2e:43:69:75:82:52:ef:7f:cb:b7:64:01:94:97:
04:96:e9:b7:d0:c9:0c:9a:4d:6b:a2:44:44:26:bf:67:99:a6:
db:69:3f:f3:5f:32:c2:04:08:3e:2a:94:aa:13:6d:7c:80:61:
dd:fe:f1:d1:a8:e9:5b:ad:01:d3:dd:87:90:4d:9d:6d:3c:b3:
2f:c4:8b:eb:80:dd:95:ff:10:49:16:88:40:a6:c9:63:1f:43:
f1:b1:26:5e:6b:9a:2f:51:37:90:76:4e:91:6e:64:af:33:72:
69:cc:2b:8e:88:af:b2:09:4b:d3:39:68:22:f8:72:dd:27:4e:
85:af:3e:1e:32:41:78:d9:4c:c3:b3:70:0c:9d:9c:33:0f:17:
99:42:f5:35:16:3e:b4:ff:02:50:45:83:09:27:25:25:cb:50:
d4:57:1c:e3:4b:09:82:d0:71:20:17:8e:c1:ae:90:27:2e:cf:
c6:48:a8:58:b4:ff:7b:73:95:b1:a0:ac:a3:52:01:b4:8b:1c:
67:c0:e0:95:95:cc:00:c1:03:79:f0:93:d6:1f:8d:c6:3a:b4:
dd:cb:6d:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:08 2023 by rpki-client on console-ams.rpki-client.org