Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/Ccfw2IOx_OlZG2Zg3Fvp_N7_MNA.roa
File: Ccfw2IOx_OlZG2Zg3Fvp_N7_MNA.roa (raw, json)
Hash identifier: PaXDbtFjbpy0osLE35xJ8Lxsw9X1+4Q/+z42TIB4Dvs=
Subject key identifier: 09:C7:F0:D8:83:B1:FC:E9:59:1B:66:60:DC:5B:E9:FC:DE:FF:30:D0
Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec
Certificate serial: 018C624A1A7BBD096532FA0889680C6EBD42
Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/Ccfw2IOx_OlZG2Zg3Fvp_N7_MNA.roa
Signing time: Wed 13 Dec 2023 08:27:52 +0000
ROA not before: Wed 13 Dec 2023 08:27:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210366
IP address blocks: 185.12.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:62:4a:1a:7b:bd:09:65:32:fa:08:89:68:0c:6e:bd:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec
Validity
Not Before: Dec 13 08:27:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09c7f0d883b1fce9591b6660dc5be9fcdeff30d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:e5:1f:19:07:79:6f:cc:cf:a0:5e:1e:f3:69:
d1:1b:21:66:a3:53:ce:46:07:aa:a8:87:0e:6f:4c:
8c:35:38:f3:d3:24:c3:a1:d1:35:7d:ea:a6:f6:ad:
46:b3:1b:a9:5a:94:c5:87:26:18:ba:ee:57:f9:30:
fa:15:7a:25:04:e8:4f:fa:e1:93:ee:25:ef:ae:97:
4e:bf:57:a4:b2:ca:4f:e1:77:37:9f:14:8b:22:a9:
0d:b5:99:19:15:90:33:a6:ff:d0:b8:88:75:7d:5a:
0a:a3:f8:0a:eb:f4:4a:5e:f3:4c:c6:d0:28:09:e0:
f5:97:66:1d:0e:94:be:60:69:c0:3f:01:51:eb:bc:
31:8c:e7:fc:9b:03:a0:8b:c5:18:58:3b:d8:32:38:
c9:e4:04:8b:40:0d:16:2a:75:8d:90:5d:f3:78:e0:
68:cb:61:0f:97:22:85:f6:49:42:55:25:55:f7:4a:
e4:9c:dc:8c:1e:84:35:78:a6:4b:44:6c:3b:ed:9c:
fd:ac:81:75:58:8e:79:22:27:cc:77:a2:3f:19:ac:
87:af:fd:51:ca:c9:02:77:b9:c6:03:e7:a8:df:e5:
e3:d0:fe:34:57:0d:df:fb:ea:df:6c:da:d6:95:ab:
53:26:a1:2e:75:db:a9:92:99:38:6b:e2:e7:db:b6:
a3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:C7:F0:D8:83:B1:FC:E9:59:1B:66:60:DC:5B:E9:FC:DE:FF:30:D0
X509v3 Authority Key Identifier:
keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/Ccfw2IOx_OlZG2Zg3Fvp_N7_MNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.12.213.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:05:08:bc:c1:68:5f:f4:11:ed:66:2a:26:0b:37:3b:18:eb:
01:dd:4b:ba:c0:66:df:1d:9d:1d:d6:ad:10:56:79:83:ea:68:
a4:1e:87:08:34:ff:89:3f:0b:e9:1c:e1:65:6e:7d:3f:3a:15:
81:97:2a:09:bf:4e:ac:04:54:43:a3:7c:48:cf:6e:00:88:a3:
6f:e7:d0:31:92:d4:ea:4b:3d:1c:04:50:9e:b5:04:38:ef:72:
75:5e:49:89:85:c7:b3:fe:48:c6:7b:8d:76:57:1b:68:3d:0c:
40:68:c5:f4:dd:21:e2:a4:54:40:9d:83:4d:68:bd:df:a4:6e:
79:84:88:ac:e1:8d:77:19:56:51:9e:a8:0d:71:bc:8f:00:39:
73:fc:ae:da:46:bc:4d:8b:8c:b4:04:2e:bf:c1:90:ae:e2:1d:
65:59:c2:e9:2c:17:cb:be:b8:c3:5a:9f:1a:1e:60:f2:9e:45:
e8:93:64:f6:bf:62:74:34:c3:40:ac:6e:0a:01:03:d0:70:06:
93:60:ea:97:d0:b4:6a:56:84:73:50:d6:57:fb:4c:aa:97:6d:
eb:16:f0:63:fe:e7:49:20:34:50:61:59:ba:29:c1:69:e7:13:
02:91:3f:2f:29:5f:22:fe:6c:da:86:27:c8:71:07:e3:da:f1:
10:1d:09:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:46 2024 by rpki-client on console-ams.rpki-client.org