Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/h2n4KHsX-yejm-9o3E3h5u-Hw9E.roa
File: h2n4KHsX-yejm-9o3E3h5u-Hw9E.roa (raw, json)
Hash identifier: qBY0rFvMsGN0sxDEpUj4791F3XIlxPe7IBGAxAdw2tc=
Subject key identifier: 87:69:F8:28:7B:17:FB:27:A3:9B:EF:68:DC:4D:E1:E6:EF:87:C3:D1
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018DE6A4111C88582403945C95F7AFB6A9DE
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/h2n4KHsX-yejm-9o3E3h5u-Hw9E.roa
Signing time: Mon 26 Feb 2024 18:18:48 +0000
ROA not before: Mon 26 Feb 2024 18:18:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205663
IP address blocks: 212.16.86.0/24 maxlen: 24
212.16.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 17 Mar 2024 15:27:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e6:a4:11:1c:88:58:24:03:94:5c:95:f7:af:b6:a9:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Feb 26 18:18:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8769f8287b17fb27a39bef68dc4de1e6ef87c3d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:93:b7:24:7c:69:ad:32:3e:d6:c0:e9:31:75:
9e:ad:47:7f:5e:d9:7d:6d:74:c9:06:0a:56:dc:e8:
1e:b1:9f:b8:10:85:29:3c:e0:e2:c6:a1:af:1a:4f:
e6:b7:91:b0:d9:9a:02:9c:9f:99:2e:a4:44:7f:40:
81:cb:e5:3d:02:5e:e8:2c:b2:ca:f9:18:49:5e:87:
c8:6e:30:e5:4c:0b:89:ae:40:ed:fe:17:34:de:33:
4a:73:71:37:85:98:83:4b:e2:00:b6:7d:10:e9:e1:
97:2c:68:74:54:a4:ab:bf:a6:66:f7:5c:9d:e8:a2:
95:e5:1c:4b:1f:3c:d0:b5:8e:31:fe:5b:99:ea:da:
f6:e1:2c:6a:8e:eb:65:49:9d:cd:c2:67:75:92:3e:
7f:7b:2c:c1:7f:73:75:53:ff:7f:0f:ef:16:eb:67:
bc:a1:c2:ef:da:a6:6d:37:54:0c:79:8f:da:1b:7e:
67:ee:80:78:9e:56:41:69:e4:e5:b9:c4:08:40:44:
2a:bb:1a:59:e3:63:55:65:59:9b:15:1d:d0:e1:23:
e0:25:54:f8:78:a9:9d:a7:d7:a0:47:2b:cd:24:ce:
bd:25:8d:d1:a6:a5:93:28:a7:50:7c:a0:7f:21:36:
76:f4:04:de:e4:83:92:23:95:89:0c:87:b4:a1:4b:
fb:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:69:F8:28:7B:17:FB:27:A3:9B:EF:68:DC:4D:E1:E6:EF:87:C3:D1
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/h2n4KHsX-yejm-9o3E3h5u-Hw9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.16.86.0/24
212.16.93.0/24
Signature Algorithm: sha256WithRSAEncryption
91:b9:fc:3c:f9:52:0b:95:70:6b:15:63:94:09:99:2c:b6:9c:
61:92:8c:81:58:f8:94:8b:53:8e:25:d1:f6:f4:be:46:55:fa:
10:b3:2d:a2:6a:f2:01:ac:3a:3a:8b:f7:2e:cf:b2:ad:68:2b:
3f:4f:75:7a:92:b1:36:70:10:15:d0:1e:ca:71:78:2c:c0:9e:
77:c4:87:5d:a3:39:b2:0b:d3:de:19:c7:af:0e:e9:00:37:41:
77:25:28:bd:07:4b:2e:05:a2:90:c8:9c:c7:22:6c:43:9d:b7:
56:36:a9:9f:9a:4d:94:f0:5f:fb:fc:a4:8c:1d:4f:29:44:9a:
0c:60:84:e3:74:d0:dd:c2:f0:98:81:3b:bc:e3:81:a0:de:9c:
1c:d6:e6:e0:08:a7:ac:6f:26:12:ce:86:9d:8a:f2:31:cb:92:
75:f2:59:ba:d7:57:af:08:b4:7c:19:b7:d0:30:b1:48:09:2c:
08:9d:72:29:56:23:9a:b8:32:02:83:82:1d:5d:e1:35:5e:c9:
0f:0e:c4:0c:4c:c4:fe:07:47:16:96:f8:f7:33:5a:7e:ee:23:
b7:03:d2:cc:61:e1:82:77:90:ce:83:26:94:81:6d:a9:f1:1d:
7e:e8:6e:1b:ee:fc:1b:66:4c:66:24:be:4d:8b:1a:36:a1:3c:
ce:11:a1:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 17 16:41:57 2024 by rpki-client on console-ams.rpki-client.org