Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/0fe8ef-5911-44c4-afa3-79dfd14c3960/1/b0xXnx4dAaOH9rMsa5WDYt9cGmM.roa
File: b0xXnx4dAaOH9rMsa5WDYt9cGmM.roa (raw, json)
Hash identifier: +ibEY0bm/wEq5BIzLy9De9X6T3NX7hnVh+NoOPldPRQ=
Subject key identifier: 6F:4C:57:9F:1E:1D:01:A3:87:F6:B3:2C:6B:95:83:62:DF:5C:1A:63
Certificate issuer: /CN=d16bdf54381f63074adf9a1bd9777877a720046c
Certificate serial: 01933E82F56E758A197CAE54486ABB7CC5EE
Authority key identifier: D1:6B:DF:54:38:1F:63:07:4A:DF:9A:1B:D9:77:78:77:A7:20:04:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0WvfVDgfYwdK35ob2Xd4d6cgBGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/0fe8ef-5911-44c4-afa3-79dfd14c3960/1/b0xXnx4dAaOH9rMsa5WDYt9cGmM.roa
Signing time: Mon 18 Nov 2024 09:03:10 +0000
ROA not before: Mon 18 Nov 2024 09:03:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213854
IP address blocks: 212.104.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:3e:82:f5:6e:75:8a:19:7c:ae:54:48:6a:bb:7c:c5:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d16bdf54381f63074adf9a1bd9777877a720046c
Validity
Not Before: Nov 18 09:03:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f4c579f1e1d01a387f6b32c6b958362df5c1a63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1a:f1:ba:b8:3e:6b:a1:aa:23:8d:c2:75:84:
18:00:e6:7f:cd:42:2d:02:3d:5b:ab:c3:bb:14:07:
ff:24:07:20:9c:6b:44:be:7c:79:ce:4e:f5:df:b0:
97:9e:00:30:0c:76:b3:07:c6:b5:9d:cf:9c:bb:1c:
b2:34:aa:eb:65:bc:3f:c7:9e:8b:55:06:ed:9e:04:
3d:8b:02:1d:ba:ad:b0:71:85:2e:5c:fb:62:93:90:
f8:b4:73:3a:0c:99:3f:91:ed:99:b5:0a:34:f1:c2:
3e:11:55:25:a3:4f:78:37:49:c8:be:eb:39:5d:b0:
8f:2d:42:20:29:f4:1a:00:55:74:a3:de:1f:cb:35:
3d:22:82:9f:b4:2d:29:2c:4d:23:7b:62:5e:75:a1:
ae:44:4a:c4:33:2e:55:a6:35:1f:b4:bb:d9:23:5a:
ce:99:47:f8:8c:91:88:2d:01:14:ad:7d:c9:2d:a5:
9c:b6:21:fa:06:eb:e0:4e:43:2a:74:c5:7f:78:0a:
79:9a:57:a7:39:8a:1e:d0:bd:ef:55:5f:0a:e3:59:
0f:a5:23:e0:cd:4a:80:36:5b:d6:7c:4f:93:1e:3e:
a5:36:f4:21:d0:cc:7e:27:00:9f:f0:12:4d:42:f6:
2d:35:a6:d1:2c:9a:ac:7c:32:2e:89:29:40:b0:7a:
12:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:4C:57:9F:1E:1D:01:A3:87:F6:B3:2C:6B:95:83:62:DF:5C:1A:63
X509v3 Authority Key Identifier:
keyid:D1:6B:DF:54:38:1F:63:07:4A:DF:9A:1B:D9:77:78:77:A7:20:04:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0WvfVDgfYwdK35ob2Xd4d6cgBGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/0fe8ef-5911-44c4-afa3-79dfd14c3960/1/b0xXnx4dAaOH9rMsa5WDYt9cGmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/0fe8ef-5911-44c4-afa3-79dfd14c3960/1/0WvfVDgfYwdK35ob2Xd4d6cgBGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.104.137.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:5c:33:1c:da:7b:48:1d:25:34:fe:48:af:53:91:17:c5:2f:
19:10:60:15:47:e9:c2:83:d9:cc:8d:c6:7b:5f:ce:6e:5a:dd:
f4:49:36:48:14:43:a6:8d:81:8a:4b:6b:d9:36:9a:32:16:3a:
f4:b4:dd:da:76:58:9d:fd:27:8f:9f:26:14:dc:58:36:8d:44:
17:ca:7d:82:f5:ec:df:e8:bb:50:52:38:10:3a:ac:9a:c4:a0:
ca:4c:9b:81:68:79:a2:30:a0:a4:a6:3a:36:dd:ce:47:3e:c7:
57:6d:4a:a1:5c:fd:b1:a1:5b:ce:27:39:ac:34:4b:56:b9:63:
d7:46:02:5e:08:90:8c:7d:b9:fc:7a:0a:67:64:ee:3d:42:41:
06:04:95:9f:38:dd:1c:49:f5:11:e7:68:52:ef:01:bb:ee:0a:
0a:28:8b:bf:e3:b8:9d:f0:d6:e8:14:84:04:57:6f:f1:3d:d0:
a7:fa:f0:5f:ae:2a:12:1f:9b:1a:e6:25:1f:4f:c8:d2:33:15:
08:86:f7:bd:3a:67:5f:63:fc:89:81:04:ab:12:98:91:2d:f2:
1a:23:af:12:4f:13:dd:be:c3:fa:d0:3c:81:ef:f1:59:a3:91:
72:4e:63:4c:f2:ed:c5:f4:7c:11:0f:3c:5e:ad:8e:85:d5:43:
29:32:15:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:39:08 2025 by rpki-client