Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/0Cu2vW-WEkSnc7kzGPlruV8JCZo.roa
File: 0Cu2vW-WEkSnc7kzGPlruV8JCZo.roa (raw, json)
Hash identifier: V/nQjdqybEhj2/6b7F+0NKEzreVPgfyWix+ZqNSew+M=
Subject key identifier: D0:2B:B6:BD:6F:96:12:44:A7:73:B9:33:18:F9:6B:B9:5F:09:09:9A
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 018F5964E9C087B4EA199FFEDAC85CB9A94D
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/0Cu2vW-WEkSnc7kzGPlruV8JCZo.roa
Signing time: Wed 08 May 2024 18:08:56 +0000
ROA not before: Wed 08 May 2024 18:08:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 212.42.192.0/20 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 11:24:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:59:64:e9:c0:87:b4:ea:19:9f:fe:da:c8:5c:b9:a9:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: May 8 18:08:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d02bb6bd6f961244a773b93318f96bb95f09099a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ed:f5:58:ca:25:74:6d:a0:10:c9:c4:c4:59:
82:d9:4f:37:ac:90:b3:40:7d:be:60:7a:85:04:b5:
ae:09:54:a7:64:e2:30:53:21:7a:83:de:95:75:37:
51:30:01:63:1e:a2:58:d0:f8:36:98:16:8b:23:c3:
8f:10:0f:41:9f:b9:74:ad:c1:1a:53:89:e0:19:61:
f3:3b:df:ae:bc:30:54:2a:18:b2:a3:eb:5c:2c:72:
3c:5c:df:6f:f0:c5:b7:ed:54:77:10:ab:5a:a8:0d:
53:39:d5:0b:bd:1b:ff:a9:2d:d4:fe:4f:dd:9f:7b:
af:b2:32:03:20:b0:8d:0a:28:0c:16:19:08:af:fe:
93:be:fc:2f:8e:18:2b:8c:6e:b4:ce:7e:9b:2a:05:
29:18:27:4c:0b:03:6c:f5:18:af:d5:42:19:16:93:
b2:92:69:8d:57:1e:a0:99:c2:44:9a:da:d4:8b:eb:
65:bd:c5:83:83:97:9c:eb:3a:5b:e2:21:a8:fe:a5:
96:a5:07:ed:fe:2b:df:37:64:a1:cf:d5:d9:1d:ba:
44:d5:bc:20:18:8f:76:b8:cf:06:12:40:63:c5:c9:
04:71:cc:c4:91:ab:a0:eb:38:5b:5a:2d:62:e4:c8:
c1:45:22:4f:7e:fb:0c:7b:84:8c:e2:83:17:86:65:
00:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:2B:B6:BD:6F:96:12:44:A7:73:B9:33:18:F9:6B:B9:5F:09:09:9A
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/0Cu2vW-WEkSnc7kzGPlruV8JCZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.42.192.0/20
Signature Algorithm: sha256WithRSAEncryption
bf:93:0d:bd:a7:00:d7:17:12:fc:ac:f2:91:e7:49:80:b1:84:
b2:b4:db:2c:51:3e:99:e7:15:28:bf:91:1e:d5:c8:48:2c:6d:
1b:40:f5:da:3e:de:d0:bf:3a:ce:cd:35:c8:12:92:99:40:27:
82:7d:5e:8b:b5:01:d6:49:0f:e3:54:de:15:2d:49:6f:56:75:
35:eb:d2:87:9f:bd:37:63:54:25:a8:1a:41:70:f0:5f:8c:bf:
2f:87:fa:f6:00:86:31:bb:f7:98:9b:56:2b:7e:6e:1f:fa:05:
82:cd:d7:d9:b1:f6:0c:77:d2:55:6c:08:22:8e:c7:72:14:99:
a5:55:3d:94:82:1c:1c:cf:c4:cc:5f:72:2b:6f:b8:f3:b5:8d:
5d:90:2e:a2:50:b2:cf:ac:3a:a4:03:63:71:aa:e8:a0:5b:4f:
d1:89:ad:be:b7:fa:1a:0d:a1:2c:93:18:42:b9:26:6c:f9:33:
c1:52:53:b5:11:7d:fc:d9:1e:79:15:b6:1a:70:37:24:62:e3:
bc:c0:3c:bd:3a:f4:7b:1d:cc:56:07:aa:90:2d:c6:30:ba:bc:
4d:2f:d4:b4:81:08:f7:10:cb:75:4b:71:eb:5c:1a:55:02:0b:
65:10:ea:4c:65:b2:f8:59:09:5d:d3:c8:00:85:f8:f6:35:b7:
0c:53:e0:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:14 2024 by rpki-client on console-ams.rpki-client.org