Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/PsoD0L5UQj89VSOID_6QdCXsgj4.roa
File: PsoD0L5UQj89VSOID_6QdCXsgj4.roa (raw, json)
Hash identifier: 17FqdBSrte8fPKITi19tcrQd7xKfziC7N4r3ZDrwq08=
Subject key identifier: 3E:CA:03:D0:BE:54:42:3F:3D:55:23:88:0F:FE:90:74:25:EC:82:3E
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018DCB9A9FE79A6B60A4E69B06272BF1EBA5
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/PsoD0L5UQj89VSOID_6QdCXsgj4.roa
Signing time: Wed 21 Feb 2024 12:18:44 +0000
ROA not before: Wed 21 Feb 2024 12:18:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212027
IP address blocks: 212.16.80.0/24 maxlen: 24
212.16.87.0/24 maxlen: 24
212.80.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Feb 2024 08:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cb:9a:9f:e7:9a:6b:60:a4:e6:9b:06:27:2b:f1:eb:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Feb 21 12:18:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3eca03d0be54423f3d5523880ffe907425ec823e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c6:03:70:56:7f:b6:9f:1d:8a:7f:ae:39:76:
1d:5f:36:d9:06:8e:46:49:38:f9:36:77:c3:b4:48:
93:2d:46:03:17:f6:f5:94:13:1f:4a:84:39:85:15:
a1:b2:cf:53:22:45:24:ef:f6:15:da:16:8d:d6:a4:
d1:e3:0b:f5:2a:aa:63:69:2f:8d:75:84:50:4c:59:
5a:5d:f4:6d:4f:4b:c3:35:e7:37:e8:3a:cf:d7:ec:
ff:7f:6d:17:6b:7c:d6:26:a7:41:9d:c8:f1:18:53:
0e:ff:59:0e:ca:2b:1c:f0:eb:44:1f:28:9e:81:c1:
8f:66:ab:4a:20:5e:c0:aa:02:73:76:7e:cc:be:84:
87:a3:43:52:d8:a4:56:e3:1b:58:0c:65:67:3a:3e:
ba:b1:01:4c:6f:67:d4:0a:37:f9:63:a9:5d:b4:38:
f8:4a:e9:2d:5a:cd:50:d7:47:43:30:34:b7:ba:65:
8f:66:ac:5b:8f:72:90:ac:04:ee:b7:77:f6:d6:4f:
a6:b2:ea:2b:12:d7:eb:c9:9a:22:c1:53:0a:78:db:
b3:66:f0:5d:85:77:9b:ba:39:78:6d:07:5b:90:cc:
3d:1d:91:19:05:e2:0f:e5:fc:31:c4:bc:e3:0e:40:
ae:28:7a:34:6c:a9:1f:df:6d:a5:c6:fc:10:14:0b:
13:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:CA:03:D0:BE:54:42:3F:3D:55:23:88:0F:FE:90:74:25:EC:82:3E
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/PsoD0L5UQj89VSOID_6QdCXsgj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.16.80.0/24
212.16.87.0/24
212.80.6.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:5a:c5:e1:12:0e:7e:31:d8:58:0b:f8:f7:c3:fa:80:11:a5:
a9:30:9d:4e:27:70:2b:cf:d9:49:53:a8:c4:ae:d6:37:cf:de:
4f:d6:11:77:11:8e:50:5b:11:dd:d8:4e:8c:20:dc:5d:46:3b:
4b:fe:58:0f:21:57:33:fb:ed:1f:50:53:05:cd:95:e7:43:00:
44:91:1b:f0:88:1b:57:c8:fb:d3:87:05:90:a1:df:0f:cf:5c:
9a:3c:67:0e:91:b9:44:ab:f2:fa:05:51:db:79:69:10:64:ab:
f0:dc:f8:95:3b:80:9a:e2:9b:d1:11:07:4d:ad:fa:e9:c4:e1:
07:36:6e:3f:36:61:ea:98:43:dd:01:06:fd:3c:73:8e:98:80:
2c:e3:fd:65:f4:11:1c:7a:1a:ca:94:b4:79:1d:43:7a:f5:a7:
26:40:49:f5:9a:ec:71:db:25:d8:fa:31:24:95:f9:66:ce:8d:
39:f0:cf:cb:26:ff:b3:8f:ef:9f:58:42:99:f0:51:99:c0:c6:
40:fc:fe:ab:41:c0:4e:49:a4:75:1b:62:2a:23:92:a7:99:4d:
2b:7b:45:74:f0:b6:af:b8:b0:a5:c9:96:fe:90:c9:33:16:60:
54:7c:d3:33:3f:36:f4:c5:58:51:0f:f3:11:d3:65:50:ab:98:
00:dd:9e:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:24 2024 by rpki-client on console-fra.rpki-client.org