Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/vPzyByLrvh6_Lw4vH88KwTf9HDQ.roa
File: vPzyByLrvh6_Lw4vH88KwTf9HDQ.roa (raw, json)
Hash identifier: stJLURj1O3J1uWx2Nx478WD+o6pTCr+a7Xpm21OZmlI=
Subject key identifier: BC:FC:F2:07:22:EB:BE:1E:BF:2F:0E:2F:1F:CF:0A:C1:37:FD:1C:34
Certificate issuer: /CN=121f13882dd06d098ec49a759101329b1f201f1d
Certificate serial: 018571F11924680E4B8653EC0B5618D75172
Authority key identifier: 12:1F:13:88:2D:D0:6D:09:8E:C4:9A:75:91:01:32:9B:1F:20:1F:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eh8TiC3QbQmOxJp1kQEymx8gHx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/vPzyByLrvh6_Lw4vH88KwTf9HDQ.roa
Signing time: Mon 02 Jan 2023 10:05:04 +0000
ROA not before: Mon 02 Jan 2023 10:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2200
IP address blocks: 147.210.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f1:19:24:68:0e:4b:86:53:ec:0b:56:18:d7:51:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=121f13882dd06d098ec49a759101329b1f201f1d
Validity
Not Before: Jan 2 10:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcfcf20722ebbe1ebf2f0e2f1fcf0ac137fd1c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:cf:64:5c:2b:1f:96:9d:40:d0:61:f0:6b:8b:
35:d5:0d:07:96:9e:67:0e:94:07:d8:a1:6e:14:66:
f1:17:4e:2e:a8:20:de:2e:32:6d:8c:90:6c:22:3a:
e5:b2:85:1e:03:ef:8d:26:b7:f7:5b:83:23:83:73:
cd:a8:41:62:e5:0c:8d:7f:49:22:8e:c9:5f:99:4b:
5e:11:d9:33:f3:8d:cc:b1:ee:3e:aa:58:16:62:ae:
8b:04:b5:61:f8:60:23:62:00:04:e3:b4:b7:46:fe:
36:3d:00:70:72:ae:6f:76:c3:30:c7:e2:a9:e6:16:
97:7a:64:10:68:eb:15:1c:b0:10:b5:01:c5:2d:a9:
09:be:f3:78:93:0f:27:ff:37:45:0c:31:2e:85:a1:
09:dd:49:e5:21:40:e6:f5:e3:77:7f:f1:e5:fb:a6:
0e:1b:8f:b2:33:3d:5d:24:de:c9:99:ae:da:fb:14:
bd:5b:9d:4b:fc:d3:02:f2:17:3d:25:9f:06:a8:26:
2c:75:f6:12:30:05:96:24:be:6c:31:a3:64:bc:05:
b5:09:14:12:b5:45:a0:d3:d4:f4:56:02:2e:43:5a:
da:c3:3d:ea:1d:a5:d7:f2:26:c8:c9:ad:ad:ed:ab:
60:64:2a:51:05:ea:c8:af:51:67:a2:ca:7a:ce:24:
e4:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:FC:F2:07:22:EB:BE:1E:BF:2F:0E:2F:1F:CF:0A:C1:37:FD:1C:34
X509v3 Authority Key Identifier:
keyid:12:1F:13:88:2D:D0:6D:09:8E:C4:9A:75:91:01:32:9B:1F:20:1F:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eh8TiC3QbQmOxJp1kQEymx8gHx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/vPzyByLrvh6_Lw4vH88KwTf9HDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/Eh8TiC3QbQmOxJp1kQEymx8gHx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.210.0.0/16
Signature Algorithm: sha256WithRSAEncryption
61:aa:bd:dc:eb:9b:ed:87:d0:89:8d:97:e3:04:e6:28:e1:b6:
ef:5a:2e:b5:f4:d9:3a:2e:05:4c:60:bc:b2:33:07:57:71:5c:
51:64:ae:8a:a4:12:68:9c:a1:23:98:e2:b6:78:5f:f5:52:c5:
90:33:e2:80:8d:56:ea:7e:c7:b4:9f:36:8d:5e:fb:22:1f:08:
6b:08:61:91:fc:ed:a2:58:28:0b:c7:47:d8:77:33:19:43:12:
2c:22:6e:63:95:9e:ed:8f:66:43:ba:31:09:32:d1:0e:bd:77:
bd:ae:02:9f:1d:d4:b1:2a:bb:88:b8:da:02:ae:16:69:15:1e:
90:a8:e9:02:70:75:a4:38:90:40:5d:77:9b:96:ae:a3:0b:4e:
a9:53:df:77:bd:d7:2e:77:b0:82:da:ca:29:c5:a1:11:ac:99:
0b:1c:92:92:9e:f7:15:88:31:d3:38:42:24:d1:cc:84:3b:5b:
04:be:ee:ec:ae:53:b9:c3:4f:47:b1:9d:6e:ac:31:32:b7:91:
bd:d7:13:c3:86:93:91:94:ec:da:01:bf:2d:45:34:f3:b6:7d:
7c:c9:f4:38:2d:6d:3f:9d:8a:e2:b8:4f:91:30:5a:d7:20:76:
41:41:6f:7d:b5:75:65:66:17:34:2c:57:f9:3d:cf:35:06:3a:
8f:d6:64:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:40 2024 by rpki-client on console-fra.rpki-client.org