Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/3qVhO95jaT_LZiek7MuvlEFQmY0.roa
File: 3qVhO95jaT_LZiek7MuvlEFQmY0.roa (raw, json)
Hash identifier: HCsaN106dEWbubYicVdzYV2CKMzfvWqCMnGAU5KbmNw=
Subject key identifier: DE:A5:61:3B:DE:63:69:3F:CB:66:27:A4:EC:CB:AF:94:41:50:99:8D
Certificate issuer: /CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Certificate serial: 018572B43A9B559F859AEF1229BC83902A1C
Authority key identifier: FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/3qVhO95jaT_LZiek7MuvlEFQmY0.roa
Signing time: Mon 02 Jan 2023 13:38:12 +0000
ROA not before: Mon 02 Jan 2023 13:38:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41726
IP address blocks: 212.70.184.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:3a:9b:55:9f:85:9a:ef:12:29:bc:83:90:2a:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Validity
Not Before: Jan 2 13:38:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dea5613bde63693fcb6627a4eccbaf944150998d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c9:5f:fc:71:02:77:8e:37:3f:66:9f:db:bc:
05:c9:a5:9f:07:b0:fa:b2:31:f1:66:79:e4:5e:53:
a7:bf:b4:73:1d:18:40:9f:66:08:5b:7c:f9:75:8a:
cf:25:fe:07:5f:74:6f:33:27:e1:c5:66:95:82:b9:
6a:e6:9e:a3:89:e7:97:62:4b:76:64:29:06:41:4b:
96:0b:ae:78:3a:87:13:e9:d2:b7:1a:a2:c9:b0:a2:
42:cb:32:79:27:1e:0f:af:42:ae:54:37:d8:ac:34:
a2:d6:83:db:8e:f9:3a:76:83:9a:22:45:d2:4f:4a:
bd:3c:4a:e0:76:6e:24:a5:02:0f:de:35:6e:03:03:
e0:27:da:b5:6d:9e:6f:07:a1:39:99:b2:ba:1e:6f:
2a:37:db:eb:b2:86:df:e9:09:44:1c:42:10:0e:e8:
7c:ed:2b:81:24:f7:ae:b4:98:fa:48:e9:65:fb:42:
69:5d:3c:f6:ca:0f:84:44:44:2b:39:48:92:3c:6e:
3b:f6:34:e6:5a:36:4a:f7:3f:60:dd:3f:f3:ae:89:
41:bb:1c:8f:c3:2b:a1:bf:2e:6c:f1:f1:b0:81:b5:
fd:48:79:fc:fc:ae:6d:6e:22:c8:bc:11:bd:b4:ba:
1f:53:16:39:2a:88:26:d8:6c:be:f3:58:2e:03:8c:
ff:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:A5:61:3B:DE:63:69:3F:CB:66:27:A4:EC:CB:AF:94:41:50:99:8D
X509v3 Authority Key Identifier:
keyid:FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/3qVhO95jaT_LZiek7MuvlEFQmY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/_2mO6y5J_LX5xlqZhXrynOBmQdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.70.184.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:b9:b8:8b:ba:e4:4a:b6:fc:8a:87:84:84:cc:76:bc:c6:f0:
71:0f:9e:44:34:54:c3:99:76:53:78:37:fb:1c:66:36:07:ec:
8f:04:af:8a:d5:75:1f:0a:1f:34:bd:6a:34:bc:40:18:e1:7d:
43:7b:5f:b5:15:fd:ad:e4:b6:11:f1:65:1a:f3:a0:08:22:c2:
35:83:c4:c8:e8:dc:fa:32:08:6b:0c:7b:0e:27:7b:69:4d:cf:
da:25:81:bf:35:21:3c:13:11:e5:9e:4a:2c:82:f7:d7:e4:ae:
92:17:31:f7:e1:95:e8:74:b0:47:57:0d:3c:29:96:0c:a1:64:
49:e4:c1:93:48:e9:a6:0e:11:b5:bd:be:33:0d:cf:e2:c2:08:
41:74:1e:2c:27:21:56:69:6f:5c:7d:37:72:b6:d9:5b:78:18:
4d:96:63:32:2c:54:c4:2b:38:65:0f:b7:87:7e:38:21:dd:f2:
e5:61:c6:53:2f:84:98:7f:bf:6f:d3:b8:74:03:09:ba:50:8c:
00:51:97:4f:cb:9f:f4:48:66:ac:44:52:25:33:54:f6:fd:e1:
4a:b4:ed:a9:ba:aa:38:95:92:94:5c:00:5d:4b:3b:e1:0b:19:
58:2e:f0:0e:72:97:51:23:0b:19:16:9b:ea:c0:e8:2c:7a:5a:
fc:3a:0a:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:39 2024 by rpki-client on console-ams.rpki-client.org