Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/jC2z-46KPxVBIFqitqMzp_4ajgo.roa
File: jC2z-46KPxVBIFqitqMzp_4ajgo.roa (raw, json)
Hash identifier: dYjWjkm3a0dKS08NmCTQXmZOBSF+aiIPDLkitDOf86s=
Subject key identifier: 8C:2D:B3:FB:8E:8A:3F:15:41:20:5A:A2:B6:A3:33:A7:FE:1A:8E:0A
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018E4D06A65263C5547EFCC2E2342EADAED0
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/jC2z-46KPxVBIFqitqMzp_4ajgo.roa
Signing time: Sun 17 Mar 2024 15:27:45 +0000
ROA not before: Sun 17 Mar 2024 15:27:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205663
IP address blocks: 212.16.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Mar 2024 08:54:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:4d:06:a6:52:63:c5:54:7e:fc:c2:e2:34:2e:ad:ae:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Mar 17 15:27:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c2db3fb8e8a3f1541205aa2b6a333a7fe1a8e0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:83:62:82:66:47:f1:3b:c5:95:65:93:a1:c0:
9b:4b:14:05:b4:71:1a:d7:3f:76:32:77:56:50:a3:
22:ad:8c:a5:86:ec:74:d0:f5:97:b4:ec:5c:2d:7a:
69:8b:db:ac:a0:17:e2:61:87:32:18:41:93:3f:a8:
ab:f8:4f:f3:c4:cf:3a:e4:5f:8d:46:0c:f2:fc:b5:
99:59:a1:48:9a:82:7d:ac:af:26:91:9d:ae:98:c7:
1b:a6:43:5c:28:22:94:47:7b:b1:b3:54:1e:ff:d0:
a0:87:29:99:68:3e:f6:c9:f3:cc:20:1d:9d:6f:c6:
90:34:a8:a3:f8:f2:38:10:f4:be:7d:de:c6:08:95:
7f:37:dd:76:4a:87:c0:17:97:94:58:6f:6b:9e:24:
d8:fc:39:26:b9:fc:98:8c:24:b0:0d:d2:9d:fc:5a:
bf:5f:90:cc:c0:ee:5e:30:ca:47:a6:66:50:c6:ea:
29:11:3c:e0:62:5d:60:8d:c5:35:70:e8:dc:88:b9:
68:63:7a:7c:6b:32:eb:8d:e5:d2:81:13:c9:fe:a6:
5f:ac:4f:c4:72:f3:50:b3:d5:85:f0:58:d6:8c:ab:
48:34:91:5e:75:19:bc:ce:ef:de:4d:b1:85:7a:07:
ea:81:95:c3:55:d6:15:da:cd:5d:c1:9a:5f:78:9f:
59:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:2D:B3:FB:8E:8A:3F:15:41:20:5A:A2:B6:A3:33:A7:FE:1A:8E:0A
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/jC2z-46KPxVBIFqitqMzp_4ajgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.16.86.0/24
Signature Algorithm: sha256WithRSAEncryption
87:fb:3c:f0:2e:0d:7d:b2:79:1b:68:88:c9:d9:df:de:28:dd:
60:93:8d:65:64:96:66:4c:ce:a6:af:8a:94:f3:f1:87:2d:c1:
9b:00:b8:2d:90:6a:5c:54:81:18:c5:b6:ad:81:29:06:e5:d4:
fc:51:b5:8d:8c:ee:99:35:a8:6d:f9:81:7f:f8:0f:49:59:3a:
e1:61:94:35:db:88:ce:13:36:3d:05:89:76:66:d0:c0:fc:fa:
ce:ac:85:cd:0a:75:2d:d8:b1:5d:3e:e9:a8:eb:d8:cc:c3:06:
e2:b0:75:71:d1:dc:0e:cf:03:37:e8:29:2c:e2:92:4e:0a:5d:
7f:1e:3a:a8:c2:f9:8e:02:ac:35:a4:e1:b8:59:71:90:25:20:
d7:9f:89:5f:e5:66:6e:22:45:ad:86:64:53:75:34:93:b7:b5:
3e:c0:60:f8:75:b0:63:22:c5:51:a7:c9:f9:0c:5f:a4:e0:87:
b9:47:a0:ec:9c:21:a9:39:25:12:b4:4f:74:67:37:d5:48:84:
57:72:b6:58:e4:59:ae:97:8d:e4:f2:dc:d8:02:a0:b9:46:c0:
b4:37:23:b4:b1:34:d3:42:63:9c:b9:a3:db:62:54:6c:b4:d8:
ba:c0:ed:79:fd:ff:ff:79:4a:73:56:e5:d2:27:bc:ce:de:78:
12:5d:d4:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:24 2024 by rpki-client on console-fra.rpki-client.org