Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/idAFibM_5XGFFWsd99V6lOFkslU.roa
File: idAFibM_5XGFFWsd99V6lOFkslU.roa (raw, json)
Hash identifier: E7QlPHtEjmsquqytN/CWuu82iLNR/ALMqGvfdhuED7w=
Subject key identifier: 89:D0:05:89:B3:3F:E5:71:85:15:6B:1D:F7:D5:7A:94:E1:64:B2:55
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 01856E38C54428524029C05D51212C389884
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/idAFibM_5XGFFWsd99V6lOFkslU.roa
Signing time: Sun 01 Jan 2023 16:44:52 +0000
ROA not before: Sun 01 Jan 2023 16:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5089
IP address blocks: 212.111.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:c5:44:28:52:40:29:c0:5d:51:21:2c:38:98:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 1 16:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89d00589b33fe57185156b1df7d57a94e164b255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6c:e7:3e:6b:6d:23:6f:a2:9c:a9:1d:d2:f0:
93:3e:58:4f:c8:13:be:4d:bb:5c:62:b9:0e:a7:b3:
02:58:20:0c:c3:59:e6:ab:ab:ea:b9:f2:f8:ab:6e:
12:a7:16:40:dd:31:dc:56:c2:57:66:3a:44:3e:25:
5d:b9:71:ce:bd:2e:4a:e5:74:af:30:93:12:51:a1:
7e:75:86:68:35:d7:b4:1c:b3:5d:07:4a:15:02:38:
c4:c2:7f:41:5e:78:9f:39:2d:0d:69:6f:a0:2c:07:
6b:e7:43:52:da:b6:d8:39:b4:06:db:5e:79:11:6b:
61:b7:32:d3:a7:67:db:bd:b7:cb:15:f2:2f:c1:73:
c5:08:f3:e3:df:b8:b9:fc:84:dc:75:27:2a:f6:7a:
46:67:06:e5:0c:95:5d:5f:29:66:41:a7:99:47:e1:
7f:4f:3a:78:93:c8:94:34:f8:ba:fd:21:ca:04:41:
1c:d0:60:6f:46:8f:df:1d:8d:82:d2:a1:6f:bb:67:
00:2f:35:10:ae:7a:b4:e0:82:31:8b:44:39:84:ed:
80:69:28:95:24:7c:85:aa:e0:ba:95:b3:76:2d:85:
9b:9b:a8:a6:01:2f:ed:44:46:0f:7c:d4:ed:d9:0f:
e1:cb:c7:ed:6d:ce:43:13:28:b1:0e:2d:8c:f2:7e:
a9:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D0:05:89:B3:3F:E5:71:85:15:6B:1D:F7:D5:7A:94:E1:64:B2:55
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/idAFibM_5XGFFWsd99V6lOFkslU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.111.215.0/24
Signature Algorithm: sha256WithRSAEncryption
31:0f:ea:66:e3:9e:e5:87:6d:6e:42:7d:6d:f8:71:8c:bd:bf:
11:21:bf:5c:e5:9a:be:47:2b:2a:d2:d8:4f:7f:6d:53:44:f7:
0d:df:dc:ee:62:ea:18:db:72:a7:9a:7e:ab:ca:84:74:8d:67:
9c:39:ab:d2:8c:52:b7:6a:bf:73:9a:ec:86:08:d4:e6:e9:70:
dc:07:39:98:21:f1:af:98:19:32:da:93:88:d3:2a:c4:e7:d2:
92:5f:63:9b:53:80:11:e3:dd:60:cf:5c:60:aa:e5:d4:23:5a:
97:df:7f:76:58:94:53:f9:d0:4d:74:b2:80:ce:45:80:3b:b6:
c0:d4:07:96:36:4b:6e:6a:f4:b5:95:30:60:5d:9a:e1:bc:c1:
92:6c:24:bd:74:2b:13:4d:90:42:26:f5:db:54:8b:2e:c6:04:
c4:ca:fa:0a:e4:a3:3d:62:32:21:4c:42:aa:03:ab:e7:6c:87:
e4:74:93:90:8d:69:40:42:cf:83:4a:04:37:30:fc:c3:1e:c7:
c1:b0:52:6f:a1:38:63:0c:99:90:5f:54:b1:95:81:8b:f8:de:
fd:69:46:fc:6f:12:16:36:f2:56:98:84:87:80:25:62:cb:a2:
81:da:89:38:61:cf:84:19:a2:84:45:a7:98:64:7d:98:7d:d1:
5d:5d:ec:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:43 2024 by rpki-client on console-fra.rpki-client.org