Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/9YeB9oOzl3MsC8Gdl6lsbgR3nBc.roa
File: 9YeB9oOzl3MsC8Gdl6lsbgR3nBc.roa (raw, json)
Hash identifier: K0CYai/OPW1EoYgQEO1KdPUkTEgjp94jNwgBHu5DmzM=
Subject key identifier: F5:87:81:F6:83:B3:97:73:2C:0B:C1:9D:97:A9:6C:6E:04:77:9C:17
Certificate issuer: /CN=ef3e71b96992da3d91c88dd74ef41f9b95b9485b
Certificate serial: 0187BEC73FD4126559239173EC0F7217C52E
Authority key identifier: EF:3E:71:B9:69:92:DA:3D:91:C8:8D:D7:4E:F4:1F:9B:95:B9:48:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7z5xuWmS2j2RyI3XTvQfm5W5SFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/9YeB9oOzl3MsC8Gdl6lsbgR3nBc.roa
Signing time: Wed 26 Apr 2023 18:15:41 +0000
ROA not before: Wed 26 Apr 2023 18:15:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41994
IP address blocks: 212.163.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:be:c7:3f:d4:12:65:59:23:91:73:ec:0f:72:17:c5:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef3e71b96992da3d91c88dd74ef41f9b95b9485b
Validity
Not Before: Apr 26 18:15:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f58781f683b397732c0bc19d97a96c6e04779c17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:67:47:c0:85:0a:ab:a2:39:5d:87:75:95:17:
2a:aa:dc:32:2c:75:d6:da:10:7e:2a:40:ed:c3:87:
08:a4:bb:46:b2:55:11:9c:df:2f:ef:aa:6a:04:7f:
35:65:00:5f:4e:8e:86:56:cd:5b:b9:d8:0a:2b:38:
70:31:45:47:71:8b:65:79:00:eb:de:3e:35:60:55:
35:54:29:d0:46:5a:df:fa:7b:f0:41:e9:c8:62:91:
cf:23:c2:f5:1e:19:26:d1:9d:d1:a1:87:69:79:53:
66:04:2e:40:13:db:37:c9:46:16:a5:a8:83:62:62:
79:00:c7:8c:5e:27:08:b4:b5:c5:1c:31:29:24:c5:
42:29:80:4c:55:42:7c:e5:a5:9e:2f:ce:f2:69:da:
64:54:47:99:cb:2a:d0:a4:a5:31:72:9e:5f:8c:a7:
cf:ca:0c:b9:76:06:66:fd:9f:f9:3c:af:f7:88:32:
dd:ce:51:58:7f:89:9e:b6:eb:b7:d6:1b:03:fe:0f:
7a:97:cf:59:aa:64:65:df:af:fa:b0:a6:95:e7:a5:
93:20:b8:01:28:bc:3a:73:84:9f:76:cd:3d:1d:3c:
fc:2c:26:43:e5:6b:6f:ea:61:05:39:bb:5d:77:f5:
0e:08:34:84:f3:78:f0:b1:8a:9f:36:77:0f:6f:1b:
b3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:87:81:F6:83:B3:97:73:2C:0B:C1:9D:97:A9:6C:6E:04:77:9C:17
X509v3 Authority Key Identifier:
keyid:EF:3E:71:B9:69:92:DA:3D:91:C8:8D:D7:4E:F4:1F:9B:95:B9:48:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7z5xuWmS2j2RyI3XTvQfm5W5SFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/9YeB9oOzl3MsC8Gdl6lsbgR3nBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/7z5xuWmS2j2RyI3XTvQfm5W5SFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.163.10.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:6a:b8:ba:0d:1f:a7:3a:2b:4e:55:a8:29:cc:42:cb:2d:d5:
ec:78:7f:c7:ec:1d:8a:c0:ef:92:2b:fc:38:16:94:75:97:5b:
c6:d6:77:cf:4b:be:9a:15:72:86:71:72:cd:0f:43:b8:42:4b:
b9:1d:2e:2c:66:ec:1f:ca:60:fd:a2:1a:4b:ae:19:64:58:6c:
d1:c8:90:bb:8a:d5:5f:98:6a:7b:40:3b:7a:4e:b5:ab:1e:cf:
2d:aa:be:52:86:82:d4:2e:5d:11:80:1e:10:8e:32:0f:bc:6f:
ce:f6:48:68:7b:0f:63:96:bf:e1:89:9c:58:f5:39:96:72:e6:
b8:46:19:0c:28:5b:c9:3a:70:7b:56:44:c4:ce:5b:71:95:d8:
0c:67:14:42:e3:d5:97:70:27:b7:cc:9a:f9:89:71:fb:2a:7a:
e6:d2:0e:40:d8:78:04:87:bf:b3:ab:88:bf:9c:2f:93:1c:cb:
09:24:c8:c0:ee:db:e2:80:a6:48:be:97:94:24:6d:df:b5:90:
ad:d0:27:7d:65:68:a7:7d:82:79:d0:e6:18:28:32:76:ab:30:
29:6e:0a:02:2e:35:17:d6:c8:61:93:68:1b:08:c8:d2:c5:ea:
f5:e7:54:a9:08:e0:28:73:12:47:56:71:c5:f4:2a:17:bc:51:
b9:75:e4:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:03 2024 by rpki-client on console-fra.rpki-client.org