Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/IeVR2Nrh7eVfVr4emxjuMe1H1pg.roa
File: IeVR2Nrh7eVfVr4emxjuMe1H1pg.roa (raw, json)
Hash identifier: G0M5W2cgg3cKk45fabP/jkhYuHEioSHSqA26hX2e20c=
Subject key identifier: 21:E5:51:D8:DA:E1:ED:E5:5F:56:BE:1E:9B:18:EE:31:ED:47:D6:98
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 018BE1EEFCF621F49822BD2401A72533BA48
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/IeVR2Nrh7eVfVr4emxjuMe1H1pg.roa
Signing time: Sat 18 Nov 2023 10:16:57 +0000
ROA not before: Sat 18 Nov 2023 10:16:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 212.111.220.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e1:ee:fc:f6:21:f4:98:22:bd:24:01:a7:25:33:ba:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Nov 18 10:16:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21e551d8dae1ede55f56be1e9b18ee31ed47d698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:4c:c6:45:b5:7b:1e:ce:10:07:a1:2d:0c:4f:
bb:47:f3:3f:84:cc:5b:25:40:5e:fa:2a:58:cb:76:
43:53:13:52:fb:cd:eb:a5:e6:12:d3:c9:e5:28:48:
72:e3:87:8d:52:33:03:f2:b2:aa:5d:d6:d3:e8:33:
ee:45:c7:bf:9d:0c:fc:c8:76:f8:6c:32:a5:0b:9e:
95:8f:5c:64:8d:f1:46:09:22:6c:05:0a:66:9f:64:
7f:86:db:ad:f6:89:0b:7e:ee:b9:73:c2:9c:31:10:
4e:1e:4c:a0:1b:47:a3:c4:a4:6a:51:e6:a4:3e:22:
53:86:62:71:15:08:69:9a:90:fa:c1:64:77:57:01:
0e:30:29:53:5d:50:59:5b:96:59:5b:ff:b9:a0:ea:
2f:8c:f5:11:6f:96:ac:74:b5:27:ed:7e:6e:c1:04:
f3:2c:c0:90:60:b6:f5:65:80:e0:82:31:d0:3c:8f:
68:33:1d:58:b6:05:f8:0c:e3:e4:03:17:95:e2:5d:
37:81:ad:38:81:48:cb:a9:bf:a1:90:43:c8:39:f8:
5d:c4:9c:8e:b1:26:2e:e4:2c:e6:92:cc:55:f5:f2:
59:52:f5:56:10:78:51:ff:cf:e7:80:21:ac:f9:e4:
5e:33:a0:f4:53:59:87:0c:6c:8b:57:8c:69:f0:15:
7c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E5:51:D8:DA:E1:ED:E5:5F:56:BE:1E:9B:18:EE:31:ED:47:D6:98
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/IeVR2Nrh7eVfVr4emxjuMe1H1pg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.111.220.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:73:5f:eb:5f:87:67:d4:09:fb:40:65:11:d8:22:25:94:b2:
5e:57:b0:5d:9f:fa:26:7f:f6:4a:de:21:b6:0c:89:09:bb:8e:
37:95:a3:d9:27:40:2d:09:c3:f5:e4:b7:1c:09:3d:65:60:cc:
bb:af:1a:cc:58:ca:35:40:ab:51:46:ed:6e:be:bb:3b:86:21:
88:e0:1e:44:94:cc:55:f3:97:a8:c7:d4:46:f7:4d:3f:e8:83:
e4:75:b0:66:39:33:e1:71:20:82:37:f0:00:84:64:30:86:3a:
34:59:e9:e2:e4:e3:36:6a:f8:41:cd:bf:a5:7e:f8:5c:54:da:
15:1a:e6:6e:10:82:8e:6b:be:f1:90:74:fa:e5:68:d8:b3:33:
e9:ae:34:ec:c4:f3:66:cb:9c:ec:08:4f:08:d6:5c:b0:4a:f2:
c2:bf:49:5d:47:49:4d:ce:22:58:6c:a2:d4:eb:72:43:2c:4a:
2d:37:0b:87:02:79:4c:39:31:67:24:21:60:ca:bb:7b:78:64:
65:5f:64:52:4a:6a:b1:95:29:f0:8a:a0:fa:e0:8c:0d:fe:56:
fc:e2:70:89:e6:61:94:b6:6b:8c:d7:63:fa:4d:e1:78:17:96:
8d:df:4d:62:0f:46:e1:4b:66:51:40:ca:7f:a4:f2:88:96:a8:
bb:9f:52:f9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYvh7vz2IfSYIr0kAaclM7pIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5NDI2MzI1YWNiOGNlNjA5YTY4NmZhNjU1YjA1ODk2ODgw
OWIzNDYwHhcNMjMxMTE4MTAxNjU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMWU1NTFkOGRhZTFlZGU1NWY1NmJlMWU5YjE4ZWUzMWVkNDdkNjk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5kzGRbV7Hs4QB6EtDE+7R/M/hMxb
JUBe+ipYy3ZDUxNS+83rpeYS08nlKEhy44eNUjMD8rKqXdbT6DPuRce/nQz8yHb4
bDKlC56Vj1xkjfFGCSJsBQpmn2R/htut9okLfu65c8KcMRBOHkygG0ejxKRqUeak
PiJThmJxFQhpmpD6wWR3VwEOMClTXVBZW5ZZW/+5oOovjPURb5asdLUn7X5uwQTz
LMCQYLb1ZYDggjHQPI9oMx1YtgX4DOPkAxeV4l03ga04gUjLqb+hkEPIOfhdxJyO
sSYu5CzmksxV9fJZUvVWEHhR/8/ngCGs+eReM6D0U1mHDGyLV4xp8BV8UQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCHlUdja4e3lX1a+HpsY7jHtR9aYMB8GA1UdIwQY
MBaAFBlCYyWsuM5gmmhvplWwWJaICbNGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQt
MDNmNGM3MTEzYzM0LzEvSWVWUjJOcmg3ZVZmVnI0ZW14anVNZTFIMXBnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQtMDNmNGM3MTEzYzM0
LzEvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC1G/cMA0G
CSqGSIb3DQEBCwUAA4IBAQCoc1/rX4dn1An7QGUR2CIllLJeV7Bdn/omf/ZK3iG2
DIkJu443laPZJ0AtCcP15LccCT1lYMy7rxrMWMo1QKtRRu1uvrs7hiGI4B5ElMxV
85eox9RG900/6IPkdbBmOTPhcSCCN/AAhGQwhjo0Weni5OM2avhBzb+lfvhcVNoV
GuZuEIKOa77xkHT65WjYszPprjTsxPNmy5zsCE8I1lywSvLCv0ldR0lNziJYbKLU
63JDLEotNwuHAnlMOTFnJCFgyrt7eGRlX2RSSmqxlSnwiqD64IwN/lb84nCJ5mGU
tmuM12P6TeF4F5aN301iD0bhS2ZRQMp/pPKIlqi7n1L5
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:42 2024 by rpki-client on console-fra.rpki-client.org