Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5af1d6-5597-4dcb-8c29-9f05f135dcf9/1/vihRd4TvqcVN5H6qT9HrUJ3jAbs.roa
File: vihRd4TvqcVN5H6qT9HrUJ3jAbs.roa (raw, json)
Hash identifier: YZH59Pq1scwlKBKhv7nRpyc/XmXRZt22oCWm+xWeJX4=
Subject key identifier: BE:28:51:77:84:EF:A9:C5:4D:E4:7E:AA:4F:D1:EB:50:9D:E3:01:BB
Certificate issuer: /CN=dce5472ebe12b4b570f82714387917ecb4c4de53
Certificate serial: 01856CEF064E79F75D4E2B669E44B6691484
Authority key identifier: DC:E5:47:2E:BE:12:B4:B5:70:F8:27:14:38:79:17:EC:B4:C4:DE:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3OVHLr4StLVw-CcUOHkX7LTE3lM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5af1d6-5597-4dcb-8c29-9f05f135dcf9/1/vihRd4TvqcVN5H6qT9HrUJ3jAbs.roa
Signing time: Sun 01 Jan 2023 10:44:42 +0000
ROA not before: Sun 01 Jan 2023 10:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29100
IP address blocks: 212.99.224.0/19 maxlen: 19
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:06:4e:79:f7:5d:4e:2b:66:9e:44:b6:69:14:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dce5472ebe12b4b570f82714387917ecb4c4de53
Validity
Not Before: Jan 1 10:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be28517784efa9c54de47eaa4fd1eb509de301bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b2:01:e4:ec:db:61:99:f9:db:9b:7d:5d:bb:
7a:f4:e0:35:30:47:36:0b:44:4b:a2:b1:6d:cc:5d:
83:0b:5d:1e:0a:b8:81:fe:d3:26:96:b0:81:07:4e:
e4:d8:d4:2e:e3:04:96:34:8e:fa:72:07:c3:75:ef:
81:3f:a5:33:e0:47:ef:ae:74:1d:92:3c:b9:38:db:
21:f6:01:1c:f9:3f:46:44:e5:a3:2e:7a:6c:20:28:
47:44:0c:1f:1c:7d:c8:fe:c6:f2:b6:1d:ae:c3:7d:
d5:2e:f1:7a:e4:84:85:eb:4b:3d:41:59:53:2f:ef:
e3:b6:6a:96:0e:fb:a8:6f:55:62:36:59:0e:8a:d9:
35:50:76:a0:1d:6a:56:19:d0:4b:59:c2:69:ba:82:
05:36:de:e5:fb:b7:77:82:ba:fc:24:01:b6:d3:d2:
c6:7d:99:5b:10:e3:66:bb:26:4a:d7:1b:c4:00:48:
22:6e:35:34:77:bc:1a:96:26:ab:4e:75:1b:3c:7c:
62:b9:9a:33:22:51:72:78:cf:c6:21:97:f2:0e:9d:
48:86:32:6a:ae:d4:34:4a:38:79:6b:67:3a:c8:21:
38:6b:7e:01:dc:e5:f0:5c:78:ef:74:3b:b1:d9:8c:
b5:db:8f:07:48:80:b3:76:04:88:cf:c4:fc:b0:5b:
4f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:28:51:77:84:EF:A9:C5:4D:E4:7E:AA:4F:D1:EB:50:9D:E3:01:BB
X509v3 Authority Key Identifier:
keyid:DC:E5:47:2E:BE:12:B4:B5:70:F8:27:14:38:79:17:EC:B4:C4:DE:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3OVHLr4StLVw-CcUOHkX7LTE3lM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5af1d6-5597-4dcb-8c29-9f05f135dcf9/1/vihRd4TvqcVN5H6qT9HrUJ3jAbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5af1d6-5597-4dcb-8c29-9f05f135dcf9/1/3OVHLr4StLVw-CcUOHkX7LTE3lM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.99.224.0/19
Signature Algorithm: sha256WithRSAEncryption
69:ca:ee:f4:f8:6e:ca:02:3b:3a:19:01:eb:05:21:fa:96:eb:
0a:fa:d5:6a:35:58:24:89:24:09:77:bc:17:28:88:fa:ab:da:
51:11:a7:50:af:5f:89:63:67:d2:9c:89:d9:5c:4b:65:34:32:
be:36:46:64:90:1d:a1:bd:1e:47:fa:c5:3f:98:93:14:df:33:
86:78:d2:d4:ce:49:6b:68:79:3c:ae:3f:2b:7c:b7:0b:44:13:
29:c7:5f:68:16:a0:21:0b:87:9d:33:b1:a1:ed:f1:99:e8:b3:
69:79:64:aa:49:30:1a:a8:fd:4c:41:70:5b:80:bf:7c:73:ec:
f5:dc:4c:11:67:92:79:69:03:21:77:ad:3d:33:2e:0c:fe:e4:
1c:4f:b4:34:18:f7:5b:bc:04:ff:99:5d:67:dc:06:19:09:ef:
54:1b:52:05:76:40:84:a2:9c:ac:d8:20:69:96:96:15:19:fe:
b6:99:69:2a:f7:06:ab:b8:b5:fb:5c:93:7d:f1:9e:80:21:56:
fa:8d:de:af:f6:db:71:e6:b0:5b:dd:7e:61:21:35:74:09:14:
42:6c:69:42:92:4e:4b:34:5d:d3:f2:30:06:50:33:53:7e:9c:
aa:6d:79:44:38:e6:da:97:35:12:9a:9b:5a:64:c9:6e:e2:6b:
bd:f7:a9:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:05 2024 by rpki-client on console-ams.rpki-client.org