Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/X52HMfTyfEEUthv2IDkgZXwica8.roa
File: X52HMfTyfEEUthv2IDkgZXwica8.roa (raw, json)
Hash identifier: IwQdBYd1mdt8v+TrTz5GGusHdliAzuCYSZUCHWU1BK0=
Subject key identifier: 5F:9D:87:31:F4:F2:7C:41:14:B6:1B:F6:20:39:20:65:7C:22:71:AF
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01895905614333BD007E02F55A7B050536A2
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/X52HMfTyfEEUthv2IDkgZXwica8.roa
Signing time: Sat 15 Jul 2023 10:07:52 +0000
ROA not before: Sat 15 Jul 2023 10:07:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200017
IP address blocks: 212.69.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:59:05:61:43:33:bd:00:7e:02:f5:5a:7b:05:05:36:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jul 15 10:07:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f9d8731f4f27c4114b61bf6203920657c2271af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:35:71:de:87:a1:c3:98:ca:4e:50:c9:16:ce:
49:19:99:db:67:37:32:2a:4c:6e:89:61:d2:a9:7c:
9d:54:63:16:90:fe:ff:9a:dd:fc:32:11:88:19:cb:
d0:42:54:0c:fc:80:e9:83:d7:59:8e:c9:2b:86:83:
29:2f:52:cc:b2:35:d8:91:b0:9c:e1:65:6d:c7:56:
b4:0f:a6:2b:c6:71:b1:94:da:92:1e:58:06:39:eb:
b8:ca:b9:c0:d8:78:37:f3:eb:12:ac:18:f4:9b:cc:
73:30:f2:50:46:25:f5:04:91:b6:01:7d:14:07:63:
3a:23:8e:3a:33:17:f7:dc:c3:8b:19:a8:17:ef:07:
64:e8:bf:a3:81:dc:68:38:9a:96:a5:07:ae:5d:37:
d5:8e:66:c2:07:33:47:74:68:f0:d0:55:f1:88:34:
f3:02:6c:7f:9d:cd:80:90:fb:7b:ba:61:82:82:cf:
fe:c5:0a:96:ca:9f:61:5a:bc:dc:17:d7:1d:de:b8:
9b:f1:27:37:84:5a:f0:ad:aa:85:95:d7:c3:02:f5:
15:69:de:fe:e3:06:26:75:30:26:c6:e2:70:0b:86:
9b:62:82:79:1f:de:ac:8c:cc:48:61:40:ed:26:f0:
0f:1b:23:ff:98:22:c2:25:3e:a5:32:4d:2b:d1:b7:
45:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:9D:87:31:F4:F2:7C:41:14:B6:1B:F6:20:39:20:65:7C:22:71:AF
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/X52HMfTyfEEUthv2IDkgZXwica8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.69.18.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:f4:ef:af:69:f0:0b:7e:cf:04:2f:1b:0e:29:16:14:ed:6b:
c7:49:41:1a:f4:80:5f:2e:0a:46:e8:07:ea:45:37:20:0e:31:
e2:34:f7:6e:c5:e4:68:eb:62:6b:a4:ac:4e:ba:fd:b8:40:47:
72:d3:06:12:00:83:b5:9c:ff:ab:01:ef:da:fb:b8:83:90:e2:
5e:5a:b4:ea:b2:2b:ae:04:8b:c0:f4:e5:9a:82:a1:74:83:6a:
7c:3c:13:be:5b:46:bb:32:e5:df:50:fb:af:77:3c:59:a1:52:
17:5d:d2:d4:52:e8:ba:92:2c:c2:ca:fb:a9:24:c1:8a:5a:39:
9a:57:3d:15:06:b5:17:80:33:ea:44:17:28:94:c7:33:55:28:
3f:20:8f:9b:29:db:30:02:fd:98:d3:6e:34:68:45:f4:82:61:
35:28:4c:b2:83:3b:ca:a7:a7:75:b7:09:96:31:d0:12:5a:f9:
f2:ba:5a:82:9a:09:90:d6:79:75:90:b1:52:1b:fb:ae:bb:b8:
fa:05:ed:19:ae:aa:e8:ff:42:bf:37:43:2e:b6:ff:9c:15:23:
e9:ac:73:09:1d:46:32:92:d2:dc:bc:e2:7f:1d:14:78:8b:8c:
fd:81:e5:f3:ed:95:6b:82:a7:df:f1:4b:73:9f:e3:cf:4a:9c:
0e:0c:87:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:04 2024 by rpki-client on console-ams.rpki-client.org