Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/Gnv0fjJBVZlIcFtK97G5VNN1xtg.roa
File: Gnv0fjJBVZlIcFtK97G5VNN1xtg.roa (raw, json)
Hash identifier: UALO1a/mPkQcU15pOqt6Fcj59tU6ObKH2BiRFp0/ZCE=
Subject key identifier: 1A:7B:F4:7E:32:41:55:99:48:70:5B:4A:F7:B1:B9:54:D3:75:C6:D8
Certificate issuer: /CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Certificate serial: 019294A7B5903F15E0174854D94B1128EC62
Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/Gnv0fjJBVZlIcFtK97G5VNN1xtg.roa
Signing time: Wed 16 Oct 2024 09:27:51 +0000
ROA not before: Wed 16 Oct 2024 09:27:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214173
IP address blocks: 212.113.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:94:a7:b5:90:3f:15:e0:17:48:54:d9:4b:11:28:ec:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Validity
Not Before: Oct 16 09:27:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a7bf47e3241559948705b4af7b1b954d375c6d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:88:22:22:4e:90:4a:6b:ea:c3:e0:a2:0c:aa:
80:7a:37:97:0f:e0:05:aa:c7:72:18:eb:25:47:d1:
ca:40:74:f8:9e:7c:6f:5a:55:f0:ef:a5:3e:5d:e2:
f5:8e:19:b4:ab:37:4d:37:d5:5f:f9:fd:c6:76:49:
4d:92:ac:4a:06:94:ea:fb:71:ae:c5:66:6f:8f:fd:
62:5e:4d:e1:7c:38:c2:b4:89:5d:d3:f1:2e:fa:31:
7d:a0:c0:86:75:51:3a:fe:a8:21:a0:63:1b:45:5b:
0f:a7:8b:7e:f4:31:d2:b3:7d:67:09:b5:01:d6:d2:
2c:e1:47:fa:62:77:0d:e9:db:65:48:16:1c:6b:2b:
2e:12:8b:a0:2e:ac:c1:5a:5b:ca:ba:fa:56:75:26:
71:c5:ed:d1:2f:a5:f6:c8:d9:c8:4f:db:0b:e3:41:
91:56:7a:c8:fd:9c:90:77:68:58:8e:48:96:55:3d:
6b:84:de:71:ef:15:cc:e6:35:69:3a:09:fc:fe:4e:
70:bf:f3:75:56:c4:6a:3f:6d:a8:17:9f:74:51:b6:
61:7d:f8:e9:4a:e9:89:0c:21:af:20:3b:41:18:1c:
c3:43:a2:ff:0a:82:b6:ec:28:2f:ba:34:12:4d:91:
fa:35:1d:68:fb:ad:db:86:2a:ec:80:2f:8b:3d:e7:
2d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:7B:F4:7E:32:41:55:99:48:70:5B:4A:F7:B1:B9:54:D3:75:C6:D8
X509v3 Authority Key Identifier:
keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/Gnv0fjJBVZlIcFtK97G5VNN1xtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.113.113.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:2b:66:2a:6c:62:f8:f1:78:74:54:30:30:68:8c:0b:dd:70:
64:1a:95:2a:2e:d4:47:ca:95:00:91:60:c0:94:7f:44:e6:56:
0c:ca:6d:9c:76:80:03:d5:dd:d9:e2:ac:0d:fb:e5:d7:47:a5:
60:34:22:fd:a2:7b:4f:7b:cb:d2:dc:2b:ee:e9:e8:95:48:00:
d0:ca:4f:62:98:2e:60:e5:de:ae:e4:ca:44:ef:ad:6d:f3:55:
d5:1d:3e:ee:f3:78:94:21:f2:27:89:36:c2:d4:6f:75:4c:f5:
f4:8f:1f:d8:9c:d9:6d:eb:07:a0:95:6e:e0:47:3f:72:b7:48:
72:fc:f1:58:3a:33:46:4f:b1:a4:0c:84:b0:ed:85:55:86:8d:
ed:a0:8d:95:3d:68:2a:2c:d1:bf:58:61:a0:08:e4:f9:2a:9f:
53:db:d7:80:50:4a:96:17:ea:a3:b6:a5:d7:87:07:93:c0:3a:
7c:f0:56:95:7d:3c:e3:a0:fa:4e:ac:ee:b1:d4:04:f8:5a:e4:
e6:2e:3f:c4:66:19:b6:82:35:b9:8b:4c:33:60:e2:31:0e:55:
26:ac:8c:0e:84:d0:1e:d4:3e:6a:24:8e:a4:aa:58:27:74:df:
8d:cb:c2:53:37:d3:47:77:b8:5e:8e:2c:94:34:d8:a6:c0:72:
ce:0e:19:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 15:01:26 2025 by rpki-client