Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/i0luef-fpRqOpBPCeRf9M1tEodA.roa
File: i0luef-fpRqOpBPCeRf9M1tEodA.roa (raw, json)
Hash identifier: 0FnFVlhFYb8cW2aEZrJ5WWBobAJ2d22t7fozvBGcXiE=
Subject key identifier: 8B:49:6E:79:FF:9F:A5:1A:8E:A4:13:C2:79:17:FD:33:5B:44:A1:D0
Certificate issuer: /CN=7c673daad6d9317f0101d41a042a61e57689453a
Certificate serial: 01856F5DB33081F85DBA496EA0C1DEA7DA50
Authority key identifier: 7C:67:3D:AA:D6:D9:31:7F:01:01:D4:1A:04:2A:61:E5:76:89:45:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fGc9qtbZMX8BAdQaBCph5XaJRTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/i0luef-fpRqOpBPCeRf9M1tEodA.roa
Signing time: Sun 01 Jan 2023 22:04:49 +0000
ROA not before: Sun 01 Jan 2023 22:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 203.12.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:b3:30:81:f8:5d:ba:49:6e:a0:c1:de:a7:da:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c673daad6d9317f0101d41a042a61e57689453a
Validity
Not Before: Jan 1 22:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b496e79ff9fa51a8ea413c27917fd335b44a1d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8c:6f:39:f1:7c:c5:23:7a:9b:83:b6:25:a0:
df:6d:b6:b6:0d:12:e3:fb:2e:e4:2f:c2:7e:80:ec:
51:d8:ee:02:c5:b5:00:69:28:4c:5f:a1:0b:8f:46:
9d:5d:64:ef:7d:29:84:ca:45:03:1a:57:60:72:cd:
e3:bd:17:ad:0d:ab:7a:50:2d:9a:d1:01:10:a0:3f:
55:6a:3a:53:97:f6:c9:3c:ca:79:ab:78:c6:e7:39:
a9:8b:dd:8b:19:da:4c:4d:7a:9a:8c:32:95:22:c7:
6b:3a:43:93:e1:cb:46:8a:22:a2:16:3b:0f:e1:47:
25:f2:7a:45:1d:1f:a8:9e:ff:5f:cb:b0:12:97:50:
4e:c1:d6:56:21:d8:b4:58:b7:3e:c4:f6:93:f8:b9:
43:3a:8b:c7:35:a1:73:6b:bc:6f:a4:a4:60:52:96:
0f:0c:6c:e7:9e:34:22:63:61:1d:16:d0:0e:cf:b4:
a4:10:35:90:6a:66:2f:64:74:0d:9e:85:8b:dc:93:
d1:28:5c:eb:e0:8e:ae:8f:42:28:68:95:6c:f3:27:
d2:b5:87:31:81:ac:2c:5d:b7:9d:99:ec:64:62:53:
b4:0c:20:e8:5c:85:a5:4e:3a:00:b0:05:2c:7f:41:
70:93:a4:ab:6f:ae:ed:b4:20:c6:85:00:c1:56:50:
ab:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:49:6E:79:FF:9F:A5:1A:8E:A4:13:C2:79:17:FD:33:5B:44:A1:D0
X509v3 Authority Key Identifier:
keyid:7C:67:3D:AA:D6:D9:31:7F:01:01:D4:1A:04:2A:61:E5:76:89:45:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fGc9qtbZMX8BAdQaBCph5XaJRTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/i0luef-fpRqOpBPCeRf9M1tEodA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/fGc9qtbZMX8BAdQaBCph5XaJRTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.12.218.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:0c:60:58:74:d7:64:b0:03:04:fc:28:14:27:0c:e9:9e:a8:
df:b2:ff:16:8a:e8:6a:1f:eb:0f:a7:84:e0:58:5e:c0:a1:c6:
2f:c9:85:40:54:2b:de:7f:db:87:ab:b8:49:e8:b3:35:3e:bf:
f6:3c:b1:df:83:88:42:98:ba:8c:49:cb:65:76:95:ce:f0:67:
34:c3:fb:8a:f6:4d:62:0d:15:57:33:9c:07:23:21:be:1c:c3:
7a:35:85:f7:7b:13:8a:a1:a8:75:0b:80:6b:5c:26:ae:52:10:
40:35:5d:e5:60:3b:88:e7:3f:d4:2f:bb:d8:c0:3b:fb:0e:50:
75:5d:43:0b:0e:19:2c:11:18:d9:69:9a:e3:46:f4:23:15:79:
c4:a1:bc:49:12:04:46:5f:02:65:c8:92:64:c8:e2:6b:ad:90:
1e:4f:ca:b0:18:fb:d7:7d:af:b5:df:58:46:69:4e:f6:da:c9:
c8:63:f0:97:03:de:02:70:d3:94:ed:ac:6f:e5:f1:9e:56:a8:
9b:52:93:5e:66:c0:e0:b8:6c:ed:01:7d:ea:87:f4:cc:57:cb:
3e:8f:28:0d:35:06:91:40:ea:53:64:c6:6d:8a:dd:be:50:51:
02:49:ea:65:4d:dd:20:70:11:74:02:e7:93:54:4c:e0:cf:f2:
5c:57:e7:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:45 2024 by rpki-client on console-fra.rpki-client.org