Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/47f768-f7a0-4500-bca7-dd919589a27f/1/lC2R9Wt14MSyPCFMkTYE2btJqGU.roa
File: lC2R9Wt14MSyPCFMkTYE2btJqGU.roa (raw, json)
Hash identifier: 4EByy/8u5TXWzyyHq8mjeyDDiQaL28Fm7kFLHsdfFWk=
Subject key identifier: 94:2D:91:F5:6B:75:E0:C4:B2:3C:21:4C:91:36:04:D9:BB:49:A8:65
Certificate issuer: /CN=bf8c64350a0dfd68a043b221f1860b480ae352de
Certificate serial: 01856C411C554916E7A3973245314FE477E2
Authority key identifier: BF:8C:64:35:0A:0D:FD:68:A0:43:B2:21:F1:86:0B:48:0A:E3:52:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4xkNQoN_WigQ7Ih8YYLSArjUt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/47f768-f7a0-4500-bca7-dd919589a27f/1/lC2R9Wt14MSyPCFMkTYE2btJqGU.roa
Signing time: Sun 01 Jan 2023 07:34:44 +0000
ROA not before: Sun 01 Jan 2023 07:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 212.23.205.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:1c:55:49:16:e7:a3:97:32:45:31:4f:e4:77:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf8c64350a0dfd68a043b221f1860b480ae352de
Validity
Not Before: Jan 1 07:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=942d91f56b75e0c4b23c214c913604d9bb49a865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a4:df:20:b2:b5:4d:82:14:42:e1:06:73:93:
2f:9d:33:db:da:95:f1:41:4f:77:a8:64:01:53:50:
e1:58:aa:fb:a5:63:92:20:16:73:05:41:d4:8a:bf:
8e:f4:05:d0:32:64:7e:1f:cf:b8:eb:92:96:d0:7d:
bd:17:90:5b:c7:83:6c:fe:e4:1e:ed:69:3d:30:41:
28:ea:33:8c:d3:ff:3b:bc:af:6c:85:0b:45:51:17:
71:12:01:42:1c:45:d8:8b:25:18:00:41:8d:bf:f3:
92:a8:af:13:b4:70:6e:5d:d5:81:36:60:ae:a3:ee:
d1:ce:51:bf:7c:71:88:80:8b:f0:40:bb:9e:d2:70:
9d:20:32:9e:75:d4:8d:fa:68:9c:09:84:bf:66:d6:
30:02:51:4c:ed:67:38:ed:e3:9e:77:63:c2:fe:f5:
b6:6d:fe:e6:e1:3c:5d:61:d0:c3:54:7e:fd:b1:0c:
a3:94:ee:b0:4f:a7:fa:e4:17:03:6c:e3:4d:b4:e5:
73:dd:b6:1f:e1:d1:85:c2:2f:d3:32:fe:f7:f0:dd:
a4:72:5a:26:b5:cc:b9:32:c6:a7:93:b6:02:3e:03:
53:5b:c4:31:93:2e:33:53:b5:de:e6:6f:1a:d0:e9:
e1:4a:7e:89:6e:ae:71:76:9f:ae:fa:37:9e:97:c1:
bb:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:2D:91:F5:6B:75:E0:C4:B2:3C:21:4C:91:36:04:D9:BB:49:A8:65
X509v3 Authority Key Identifier:
keyid:BF:8C:64:35:0A:0D:FD:68:A0:43:B2:21:F1:86:0B:48:0A:E3:52:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4xkNQoN_WigQ7Ih8YYLSArjUt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/47f768-f7a0-4500-bca7-dd919589a27f/1/lC2R9Wt14MSyPCFMkTYE2btJqGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/47f768-f7a0-4500-bca7-dd919589a27f/1/v4xkNQoN_WigQ7Ih8YYLSArjUt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.205.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:5f:0b:8c:4d:32:aa:8f:5c:50:47:f9:2f:93:5e:e3:ba:be:
25:19:81:95:97:86:ab:aa:f2:a9:e3:ef:c6:ad:4a:a9:56:a0:
f5:08:37:28:ba:1c:e5:ab:a2:1a:87:6d:6c:bd:16:b2:64:dd:
e9:57:0a:dd:32:ea:de:70:cf:8e:e8:11:9a:36:cd:24:f3:7f:
98:24:d8:36:e5:04:8e:51:85:86:a6:aa:fd:4e:09:23:ea:d5:
7d:d1:92:c8:e6:34:5f:96:e0:dd:3f:54:05:8a:d1:e8:11:23:
82:18:85:38:18:e7:e0:3d:4a:93:9d:9f:50:4f:dd:40:07:15:
82:cd:c5:c1:3f:e0:37:13:ab:50:8f:10:86:42:a7:4d:dc:eb:
cf:37:c7:6f:0d:7a:28:93:00:2c:a2:a2:5c:4a:43:c3:7e:85:
d7:8c:dc:81:da:d7:43:98:b2:28:3b:3a:33:a7:0b:fb:ec:b8:
1d:3b:35:b7:03:8c:1a:65:a4:bd:45:9e:f5:9f:a5:70:01:b0:
0e:00:76:d8:9e:e9:58:8f:7d:f2:d0:17:0a:d0:40:5e:7c:ec:
fb:b7:37:e8:23:6d:10:c2:41:6e:4f:cf:d5:0b:af:f4:73:1d:
1d:42:2d:bc:52:05:f6:ef:9a:5a:ee:83:a1:b7:74:b6:4a:ed:
1d:41:f3:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:41 2023 by rpki-client on console-fra.rpki-client.org