Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/1lLTSGeOWmGZZhnJTs8Cq_OhCPM.roa
File: 1lLTSGeOWmGZZhnJTs8Cq_OhCPM.roa (raw, json)
Hash identifier: ASjBTwESh8WO7vtTNL+VhzKFezq7qrc6fax/LfqMBEc=
Subject key identifier: D6:52:D3:48:67:8E:5A:61:99:66:19:C9:4E:CF:02:AB:F3:A1:08:F3
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 01856DC1DC92AD93BCB8613B676FE3F27349
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/1lLTSGeOWmGZZhnJTs8Cq_OhCPM.roa
Signing time: Sun 01 Jan 2023 14:34:59 +0000
ROA not before: Sun 01 Jan 2023 14:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211712
IP address blocks: 212.22.89.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:dc:92:ad:93:bc:b8:61:3b:67:6f:e3:f2:73:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 14:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d652d348678e5a61996619c94ecf02abf3a108f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:6f:73:53:8e:69:bc:48:1a:b5:98:b9:6b:42:
cb:a9:6c:8f:9a:26:e7:86:78:04:0c:5e:ae:ef:72:
44:dc:3a:2b:9e:77:f0:78:5d:c7:09:26:a9:2b:1d:
75:8e:d4:c9:43:07:25:b5:c4:26:17:96:44:93:2d:
d1:b3:61:75:9d:5c:33:36:1d:61:7d:2f:b8:cf:02:
72:e5:b9:ec:8f:c5:b6:da:32:1a:23:e5:85:b6:62:
6f:db:3b:54:3e:99:6b:94:33:f7:ea:fc:f4:ca:8f:
73:90:6d:4b:aa:14:51:1c:13:9b:a0:72:e2:3b:fa:
82:cc:63:dd:50:43:4f:23:5a:b2:df:6c:d7:fa:b5:
e7:bd:23:f8:62:bf:93:32:d7:59:16:c6:bb:f4:d5:
75:29:ec:33:dc:e3:c4:06:8b:bd:62:f9:b5:d7:4a:
44:59:7c:c0:4e:04:b3:89:0a:d1:a8:40:e7:71:59:
de:0b:89:f5:69:a8:d3:63:2e:4d:40:b5:aa:e2:28:
ab:65:eb:45:3d:63:36:3a:3d:a0:44:87:30:c4:70:
50:f2:1a:27:cf:a1:02:82:26:f1:d4:50:79:df:78:
8f:3f:57:5f:dd:a4:28:bf:c2:e6:7a:a7:3c:1f:1a:
eb:dc:ce:b4:55:15:9c:2a:53:0f:c4:03:d3:05:0e:
d7:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:52:D3:48:67:8E:5A:61:99:66:19:C9:4E:CF:02:AB:F3:A1:08:F3
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/1lLTSGeOWmGZZhnJTs8Cq_OhCPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.89.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:43:df:08:1d:30:38:66:37:d1:de:13:96:1b:59:5a:15:cf:
bb:63:0b:65:bf:88:98:4a:61:fa:43:3c:32:8a:a8:06:33:59:
6c:04:d6:e3:f3:77:4d:6a:63:bd:8b:8a:d2:98:18:4f:2b:ba:
a2:bf:6a:82:ec:32:d3:c5:a8:01:af:db:41:9b:7a:f1:f4:8b:
43:e7:fe:b6:e0:c9:db:a1:36:1c:92:07:cb:c2:f4:d2:c4:2d:
66:5e:26:57:30:d1:39:55:90:a5:8c:54:5f:89:53:1f:0d:e8:
cb:97:e7:f2:4e:da:e7:f9:34:10:da:39:57:51:2a:6f:87:d5:
ce:2a:2b:98:8c:aa:c3:08:d2:6e:69:3c:11:e8:22:b3:54:07:
26:85:0b:a8:45:09:fc:09:d0:55:93:2a:bb:c8:76:b8:8a:33:
fa:87:41:0c:bb:f9:fd:84:cb:86:58:39:de:97:ee:99:56:d4:
da:13:03:22:b5:36:3c:8c:c3:34:12:4e:fb:7c:87:ba:80:a5:
8a:97:fa:0a:7d:70:56:8a:3a:72:25:cd:0e:71:fe:0e:53:e5:
fc:be:df:79:7d:b5:82:06:be:d1:3d:20:3f:65:20:e5:e5:80:
62:5a:5a:c1:86:3b:de:32:b1:ba:cd:ec:b9:e7:12:42:21:4a:
27:a9:1e:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:04 2024 by rpki-client on console-fra.rpki-client.org