Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/UoMqO3vvL9X0Pu1aysnUlAkUgRs.roa
File: UoMqO3vvL9X0Pu1aysnUlAkUgRs.roa (raw, json)
Hash identifier: BSlBF9ZMwRRSXGIoOtslc1ddjFn9S1hGyQY4u0YLbWY=
Subject key identifier: 52:83:2A:3B:7B:EF:2F:D5:F4:3E:ED:5A:CA:C9:D4:94:09:14:81:1B
Certificate issuer: /CN=7c673daad6d9317f0101d41a042a61e57689453a
Certificate serial: 01856F5DB3EDA9EBEABFBA2F0435095BA223
Authority key identifier: 7C:67:3D:AA:D6:D9:31:7F:01:01:D4:1A:04:2A:61:E5:76:89:45:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fGc9qtbZMX8BAdQaBCph5XaJRTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/UoMqO3vvL9X0Pu1aysnUlAkUgRs.roa
Signing time: Sun 01 Jan 2023 22:04:49 +0000
ROA not before: Sun 01 Jan 2023 22:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 203.12.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:b3:ed:a9:eb:ea:bf:ba:2f:04:35:09:5b:a2:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c673daad6d9317f0101d41a042a61e57689453a
Validity
Not Before: Jan 1 22:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52832a3b7bef2fd5f43eed5acac9d4940914811b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f9:5b:ff:50:7c:56:92:d7:c1:9b:38:74:6b:
07:ad:85:b0:e3:39:78:cb:c6:ba:06:01:a0:7b:b4:
f2:d7:36:c7:eb:56:19:70:ed:8e:ea:92:cb:f9:97:
ca:49:f8:64:17:b8:9f:81:ee:12:4d:e4:82:86:bd:
e6:58:5d:f4:f4:e1:12:99:b5:e8:b7:5f:83:c6:47:
f0:63:c2:ff:02:7d:44:71:19:0a:c1:39:72:ef:7a:
f9:ff:eb:96:ea:f6:f1:04:11:d5:29:fb:d2:d7:85:
f9:cb:45:30:d7:18:00:38:27:1f:85:bc:fa:f6:22:
f3:42:11:27:2a:ae:fe:70:1e:fd:f2:ea:e2:14:1f:
15:c3:d0:77:12:1a:fa:d7:b0:2a:cf:96:23:4a:28:
6b:8f:d0:2b:1a:a1:df:db:68:07:41:fd:8a:ca:75:
19:f1:ae:62:46:a4:80:e4:4c:6e:6e:3a:90:43:34:
92:2f:b0:5b:eb:c9:1e:f0:c2:30:72:04:83:f8:9e:
54:2a:fb:fc:c3:0d:4b:81:57:92:ab:64:e7:de:81:
ff:48:42:ea:d1:ce:4e:aa:0f:d9:5f:a3:8e:70:2c:
50:41:d5:93:c0:cd:0a:26:4c:86:64:4f:a5:f4:d0:
5a:1d:59:e6:be:29:df:44:9e:fe:db:f5:b2:97:b2:
3a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:83:2A:3B:7B:EF:2F:D5:F4:3E:ED:5A:CA:C9:D4:94:09:14:81:1B
X509v3 Authority Key Identifier:
keyid:7C:67:3D:AA:D6:D9:31:7F:01:01:D4:1A:04:2A:61:E5:76:89:45:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fGc9qtbZMX8BAdQaBCph5XaJRTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/UoMqO3vvL9X0Pu1aysnUlAkUgRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/fGc9qtbZMX8BAdQaBCph5XaJRTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.12.218.0/24
Signature Algorithm: sha256WithRSAEncryption
95:bf:1c:4a:0c:65:a9:fb:d2:b8:1f:85:b6:85:bd:63:16:a0:
e8:9d:f0:18:14:bd:4e:af:99:94:3a:1c:25:62:da:c0:5f:49:
d2:e4:7a:c9:e2:4a:88:4c:db:f2:59:47:33:29:bf:75:51:ec:
6f:69:ce:c2:66:67:57:a3:04:e3:3a:ea:c6:30:26:f1:c0:7a:
c5:8e:40:61:3b:80:f2:b3:49:05:0c:27:72:ad:d4:38:74:dd:
5c:c7:71:14:f9:8f:c2:e4:80:99:3c:3f:4b:93:d8:fc:c4:75:
98:94:0d:da:75:fb:42:8b:19:2b:61:cc:69:19:47:7e:cb:b3:
7d:c9:59:ee:57:21:6c:f7:f2:5a:4e:4f:2e:fd:8f:bb:93:0d:
d1:b0:cf:3f:52:88:bc:43:10:aa:1a:6c:8e:88:bc:14:74:7d:
f4:a2:c6:70:2c:49:19:81:e8:67:1c:01:b0:54:e3:56:75:ca:
f2:b3:09:ec:53:dc:f5:b9:a5:aa:79:02:d7:ac:df:9f:57:7d:
17:9c:f4:8c:3e:65:2c:50:ca:11:46:d2:f0:db:f5:b4:d2:aa:
39:e2:ae:0b:81:db:fe:71:7c:f8:ef:12:b3:a9:1d:44:9d:51:
fa:83:49:79:79:81:d5:2a:ee:f7:8a:58:ac:1a:c3:ef:d2:02:
68:06:75:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:41 2024 by rpki-client on console-ams.rpki-client.org