Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/1-4EfBLF-s0Jpq5gHroU1NDW90l0.roa
File: 1-4EfBLF-s0Jpq5gHroU1NDW90l0.roa (raw, json)
Hash identifier: U+k6uHVeXgJqqIHXJt5uAp8dehTnJJpTMq0XkceT5ZQ=
Subject key identifier: FB:81:1F:04:B1:7E:B3:42:69:AB:98:07:AE:85:35:34:35:BD:D2:5D
Certificate issuer: /CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Certificate serial: 0187A031A803E581E98752AB1C6A3747701D
Authority key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/1-4EfBLF-s0Jpq5gHroU1NDW90l0.roa
Signing time: Thu 20 Apr 2023 19:43:41 +0000
ROA not before: Thu 20 Apr 2023 19:43:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 212.116.242.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a0:31:a8:03:e5:81:e9:87:52:ab:1c:6a:37:47:70:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Validity
Not Before: Apr 20 19:43:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb811f04b17eb34269ab9807ae85353435bdd25d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:11:13:01:d3:3f:52:3a:f3:74:69:85:0a:78:
d2:89:34:ed:31:69:a0:4f:bf:d3:06:b5:22:b8:6f:
f4:66:cb:38:dd:ec:35:64:bc:99:1b:30:a9:e9:03:
7f:90:9c:a0:04:34:fb:08:0c:0f:60:dc:c1:61:03:
04:67:f1:f0:18:61:f2:38:78:5d:4f:b0:d5:a7:1d:
f5:40:32:b8:1b:ce:d9:5e:56:a7:c6:6d:1f:ee:98:
40:4d:0e:d9:93:0d:63:d0:4c:8b:aa:48:c0:9a:4c:
3a:4d:04:03:2d:6e:f1:c9:65:51:59:e1:4e:39:44:
17:e4:92:55:70:32:a2:8d:70:23:12:d2:ad:7a:64:
6d:23:69:fb:0d:1e:a7:e7:eb:b6:53:c4:34:52:e3:
c8:8a:e9:20:87:16:57:04:c6:6d:78:c5:b7:83:07:
85:5a:f2:e1:e0:a5:c3:e8:49:2a:f3:41:5f:af:95:
16:fb:9d:ec:44:af:c1:f1:d4:ef:71:16:b0:ee:78:
5f:57:26:be:cc:86:89:b5:a9:09:7a:c9:df:28:ba:
3c:59:db:a4:1c:ec:11:38:dc:e7:98:51:64:87:27:
87:54:a2:1b:7b:ef:bb:fa:75:71:fc:ab:16:23:55:
0e:09:01:1c:a5:84:d5:8a:5f:6d:f1:22:08:7e:2c:
c6:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:81:1F:04:B1:7E:B3:42:69:AB:98:07:AE:85:35:34:35:BD:D2:5D
X509v3 Authority Key Identifier:
keyid:3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/1-4EfBLF-s0Jpq5gHroU1NDW90l0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.116.242.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:38:e0:43:b7:ed:76:c4:bd:93:51:61:07:c7:fa:d4:b0:bc:
8f:bc:09:bb:02:e6:c3:89:3b:e0:52:58:7b:27:39:3d:ef:45:
98:bf:7c:ea:0c:dc:18:fd:b1:7a:07:4c:9f:11:e9:66:e7:c7:
37:82:3c:c5:db:75:e9:b1:3f:af:3c:8a:ed:6f:04:ad:06:f1:
8b:25:03:f7:21:88:f8:86:84:94:b2:c4:62:53:9e:35:bd:69:
cd:a0:52:7d:b1:d4:1e:c2:cd:ab:81:f3:9a:c4:09:60:32:52:
fe:47:96:49:d3:d0:3e:5c:83:53:90:79:50:52:48:17:6a:27:
66:13:43:9b:64:a8:3b:49:3d:59:94:f1:a0:9b:96:fe:b4:d4:
bb:e1:1c:2f:e5:a3:16:28:64:52:03:db:4b:40:d8:2f:3d:5b:
df:eb:d9:e5:01:8d:d9:0f:cb:86:70:2b:e6:8e:22:c3:ff:70:
bb:fa:83:38:33:56:1b:77:70:c3:0a:d5:b7:55:35:4b:5b:ef:
54:59:d7:4f:5f:23:3e:21:15:e4:07:d7:ba:67:98:d5:62:b8:
0a:40:88:bd:f8:8a:bd:b8:f3:e3:24:d7:7f:f9:75:c8:d2:bc:
41:44:8f:73:8c:c8:63:6e:98:b1:bc:39:dd:b7:5d:6e:0c:f3:
f4:1e:42:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 24 18:01:50 2023 by rpki-client on console-fra.rpki-client.org