Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/b7392f-8c88-4c38-915e-0cf77c1e8584/1/eKXAzMvUw5nxLDVcikujm1wofns.roa
File: eKXAzMvUw5nxLDVcikujm1wofns.roa (raw, json)
Hash identifier: 4W71+kLHRBnaKd0p79fwQeMzxtgyj0U6rv0tc0Y1dbk=
Subject key identifier: 78:A5:C0:CC:CB:D4:C3:99:F1:2C:35:5C:8A:4B:A3:9B:5C:28:7E:7B
Certificate issuer: /CN=9ce4dd86bcfd8b8f506a408051605ec74db6cea0
Certificate serial: 01856C0A5CA2633CE29248881B0F20EBFBC4
Authority key identifier: 9C:E4:DD:86:BC:FD:8B:8F:50:6A:40:80:51:60:5E:C7:4D:B6:CE:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nOTdhrz9i49QakCAUWBex022zqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/b7392f-8c88-4c38-915e-0cf77c1e8584/1/eKXAzMvUw5nxLDVcikujm1wofns.roa
Signing time: Sun 01 Jan 2023 06:34:56 +0000
ROA not before: Sun 01 Jan 2023 06:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 212.52.29.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:5c:a2:63:3c:e2:92:48:88:1b:0f:20:eb:fb:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ce4dd86bcfd8b8f506a408051605ec74db6cea0
Validity
Not Before: Jan 1 06:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78a5c0cccbd4c399f12c355c8a4ba39b5c287e7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:32:48:79:10:1b:dd:eb:f2:31:8f:08:53:a8:
d8:36:76:5a:74:69:3a:4c:23:be:8c:ac:4c:db:d0:
52:d0:8f:39:5c:50:09:58:42:b5:f4:16:a4:55:2c:
5c:64:44:e4:93:4c:71:d0:ac:6e:40:70:08:90:33:
7b:e8:96:ae:ec:bd:c4:22:6d:ae:fa:7a:1a:92:cd:
d1:03:66:a9:8a:be:b6:7b:0e:6e:70:79:03:66:07:
fe:4b:be:5e:75:01:9e:fb:f3:33:92:95:45:5e:7f:
0d:f5:c7:6b:b4:b3:77:f6:44:f9:27:9d:7b:ad:66:
83:78:ea:0e:0f:a6:0f:5b:37:9e:f3:7f:81:8f:2e:
2f:fb:b7:b5:76:25:27:58:ee:b9:fa:fb:b5:0a:4e:
aa:a3:17:7d:d1:9f:0e:e0:e0:e7:1c:27:4b:4d:3c:
17:c5:21:36:da:18:3e:1e:43:81:fd:97:45:23:90:
80:e3:04:61:9e:43:ad:61:00:f4:7d:fa:c8:98:e4:
f1:e4:98:57:0a:70:86:cd:e3:1d:ad:45:19:f1:26:
15:ab:44:b9:26:bb:bc:7f:b1:53:1a:ce:d3:17:88:
3b:3a:05:9e:f0:f6:13:d1:b9:d3:8b:c7:79:32:ca:
07:05:34:16:9e:1f:c4:c1:b3:8a:1d:e7:79:db:ef:
8a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A5:C0:CC:CB:D4:C3:99:F1:2C:35:5C:8A:4B:A3:9B:5C:28:7E:7B
X509v3 Authority Key Identifier:
keyid:9C:E4:DD:86:BC:FD:8B:8F:50:6A:40:80:51:60:5E:C7:4D:B6:CE:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nOTdhrz9i49QakCAUWBex022zqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/b7392f-8c88-4c38-915e-0cf77c1e8584/1/eKXAzMvUw5nxLDVcikujm1wofns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/b7392f-8c88-4c38-915e-0cf77c1e8584/1/nOTdhrz9i49QakCAUWBex022zqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.29.0/24
Signature Algorithm: sha256WithRSAEncryption
10:71:d5:cb:13:2e:e8:4a:4c:f7:ba:db:85:90:44:c6:38:c0:
f6:ab:a5:27:f8:b3:a8:17:ac:37:40:2b:44:c5:44:30:cd:6f:
a0:8f:31:ba:28:32:a5:58:2f:98:7b:eb:37:6d:55:c1:c7:80:
49:b5:ec:90:cf:ec:94:6b:f8:a8:86:26:c9:80:27:d1:fb:d0:
90:5c:c4:1d:ee:29:0d:55:c7:a1:96:e9:ff:ca:6c:f5:fb:c2:
42:99:b5:f0:0a:96:dc:cb:f2:fc:c5:af:a2:34:19:4a:59:94:
e8:ad:b1:3e:48:65:7b:5f:15:6f:6e:58:16:7e:07:2c:1b:37:
27:f0:5a:03:bb:49:b8:40:ca:93:bc:7b:0c:3f:64:38:95:ff:
e1:a9:0d:38:e8:db:26:cb:08:71:5e:86:c5:a4:0d:c2:fd:f5:
50:67:d7:e0:e0:1e:6e:c1:ee:bc:f5:38:7a:69:13:9f:19:65:
c2:20:bd:e0:de:7b:89:d1:fc:d7:94:8e:a6:91:9b:04:c9:f5:
8f:15:fe:86:20:21:9a:26:7d:06:9e:68:77:28:8f:c7:02:36:
93:bc:88:41:8b:22:43:62:d4:8b:1f:1f:4e:b5:ee:90:50:ea:
0e:f1:e6:c8:9d:7f:f7:a8:14:d6:cc:e4:17:7e:83:14:ee:95:
1c:4e:c8:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:15 2023 by rpki-client on console-fra.rpki-client.org