Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/sppNhoJjq3uv0r-c352N35dkrOI.roa
File: sppNhoJjq3uv0r-c352N35dkrOI.roa (raw, json)
Hash identifier: CAdyulOLxE7lnEACJ19h9ln/b+2Xu+G0VJQUMeztYIc=
Subject key identifier: B2:9A:4D:86:82:63:AB:7B:AF:D2:BF:9C:DF:9D:8D:DF:97:64:AC:E2
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 01914625BB7159418CEF30CD74FB096484A6
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/sppNhoJjq3uv0r-c352N35dkrOI.roa
Signing time: Mon 12 Aug 2024 10:32:43 +0000
ROA not before: Mon 12 Aug 2024 10:32:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47992
IP address blocks: 212.42.208.0/20 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Oct 2024 04:38:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:46:25:bb:71:59:41:8c:ef:30:cd:74:fb:09:64:84:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Aug 12 10:32:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b29a4d868263ab7bafd2bf9cdf9d8ddf9764ace2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:16:aa:cf:68:a7:12:eb:a2:e0:9e:2b:58:ed:
e0:46:94:8c:b4:89:f4:e5:68:fc:ae:c5:3c:fa:33:
30:6f:09:30:16:46:e0:b5:69:2f:88:86:7e:a1:3c:
2a:90:3a:a7:b9:69:1b:a7:08:b3:be:88:13:08:80:
ca:56:e7:a3:60:6e:ef:53:5a:d2:80:eb:db:ee:37:
24:ce:a1:20:ed:c1:3f:fa:a9:ee:bc:4f:ec:89:7a:
38:ba:61:ed:8f:c9:84:87:a4:25:95:c5:3d:8a:ff:
04:cf:0e:2d:ae:2d:0b:42:22:7a:b8:0f:59:da:c5:
9b:27:2a:6a:6a:af:9a:f4:66:a7:07:0d:55:be:1c:
9f:4f:c2:27:5e:f3:39:60:14:17:1f:f7:b2:cd:43:
20:2d:0e:0c:85:5d:19:6e:5a:3b:f9:cd:fb:cc:0c:
f4:21:a6:b1:b2:16:57:be:09:58:a0:e9:cb:23:50:
be:89:26:e8:64:51:c8:c1:e2:49:18:15:93:32:3e:
c1:0b:c4:7b:2d:22:db:89:ca:1d:b1:dd:d9:49:ef:
fe:3d:a8:8f:e0:1d:21:a9:e8:14:93:7d:d5:c7:9c:
23:11:7e:ec:f8:4e:de:70:2a:1c:d8:b1:98:f4:34:
5d:c7:e2:28:ef:11:f2:08:98:c7:ea:08:b0:df:f1:
5b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:9A:4D:86:82:63:AB:7B:AF:D2:BF:9C:DF:9D:8D:DF:97:64:AC:E2
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/sppNhoJjq3uv0r-c352N35dkrOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.42.208.0/20
Signature Algorithm: sha256WithRSAEncryption
91:6e:be:f1:fd:e8:d6:83:3c:1f:82:c5:cb:14:1e:93:14:c6:
e7:bb:8e:71:dc:a0:5f:ce:13:13:01:2b:18:2b:ff:69:a8:78:
c9:28:7b:94:69:9c:b2:0b:84:f1:bb:3e:07:2c:74:ee:75:7b:
6f:73:41:64:4c:e3:19:0a:22:94:3a:a8:4f:6e:b8:8a:cb:27:
25:7c:f1:ff:c7:83:22:ab:c0:c8:6a:ec:3b:62:13:a7:11:dc:
42:49:7d:2a:a6:73:cf:00:f4:e4:c1:56:d1:db:94:73:e2:fb:
21:de:34:a5:51:c6:56:ac:9d:ea:c6:a9:f0:c9:6b:5f:b0:67:
12:d2:67:b3:2c:e3:c4:4b:f1:fa:14:20:51:95:70:c3:30:38:
58:3e:ac:42:ad:b6:b8:9c:fe:c3:cf:0f:14:17:8d:f4:5c:f6:
93:bc:80:3b:00:06:30:67:ca:c1:37:97:f2:08:44:71:cd:91:
a6:7a:66:43:6e:60:2b:b9:74:99:46:0a:f2:c3:f5:ef:dd:51:
96:55:bd:08:58:00:4f:d6:89:88:c4:56:03:1a:cb:88:db:04:
d5:c2:66:96:2a:5a:ee:bb:56:9b:21:97:82:54:b7:d5:84:10:
bf:66:02:87:2e:c9:98:93:b5:96:a8:17:0a:a7:ab:26:6c:d2:
3f:58:0d:16
-----BEGIN CERTIFICATE-----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Generated at Wed Oct 30 05:33:21 2024 by rpki-client on console-fra.rpki-client.org