Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/IcZWtKHjd5Hp6jZ3IgYW4reBFZk.roa
File: IcZWtKHjd5Hp6jZ3IgYW4reBFZk.roa (raw, json)
Hash identifier: 8oeYJ6jKFpCCSvtn7J/dsRGJKOiTe1KLn5R75ofet/0=
Subject key identifier: 21:C6:56:B4:A1:E3:77:91:E9:EA:36:77:22:06:16:E2:B7:81:15:99
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 01856DC1CD2A89CA8260F6E1EE3A19A68D97
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/IcZWtKHjd5Hp6jZ3IgYW4reBFZk.roa
Signing time: Sun 01 Jan 2023 14:34:55 +0000
ROA not before: Sun 01 Jan 2023 14:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48528
IP address blocks: 212.22.71.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:cd:2a:89:ca:82:60:f6:e1:ee:3a:19:a6:8d:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 14:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21c656b4a1e37791e9ea3677220616e2b7811599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c6:f8:23:69:6b:77:bd:5b:17:23:43:9e:b5:
9d:09:3c:ed:86:af:7c:0a:52:c8:d3:d5:e7:3d:74:
fb:ba:83:6e:ee:b1:6a:72:7e:bf:87:87:eb:7a:6f:
ac:f0:77:23:92:11:32:d2:f2:1b:1f:4f:a8:6d:95:
87:fe:fb:11:26:b6:e2:ad:c4:1d:83:a6:44:07:c4:
4d:49:d0:dc:61:f8:7f:42:03:33:de:d7:18:9e:e6:
d1:f5:61:2c:8a:3e:e3:35:4b:67:03:df:e0:72:2f:
23:80:a7:f3:df:8b:dc:d0:ba:63:2f:c0:ab:b2:7f:
bd:3c:c2:e9:60:e8:5b:88:0d:6e:4b:58:d6:f5:2e:
d7:8a:2a:4f:e9:c7:84:8d:91:1b:60:a8:ff:0c:ed:
49:e8:c7:b7:ba:ea:12:ba:21:b5:10:d9:58:ea:3d:
09:4c:3e:2b:aa:95:f6:a2:1d:92:85:27:21:28:22:
6d:a8:35:5d:b1:ab:13:5c:b2:09:57:c7:29:fe:45:
52:90:20:68:d2:5b:2c:12:fc:e3:35:d8:c8:95:fd:
9b:ca:01:f0:53:a0:7f:97:3e:6c:a3:32:1e:c6:81:
fa:8f:45:1b:29:6a:84:6e:4b:a8:23:d6:ac:cc:6e:
8a:8b:92:3d:ca:29:bc:7e:7b:21:cd:47:fe:66:15:
f7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:C6:56:B4:A1:E3:77:91:E9:EA:36:77:22:06:16:E2:B7:81:15:99
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/IcZWtKHjd5Hp6jZ3IgYW4reBFZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.71.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:7d:1f:9c:e9:50:70:72:19:21:e8:cf:cb:70:f4:bb:fe:d3:
fb:5d:85:31:b1:cb:51:c2:5d:d7:c5:29:ec:81:0d:03:73:1c:
b3:05:24:ab:e6:e3:34:cc:7d:b1:42:0d:6e:36:89:3a:6a:58:
5a:77:c6:ba:7c:22:b1:77:09:14:23:91:29:f5:9c:ab:02:9c:
24:93:c6:1e:d7:68:88:10:35:24:a4:0c:22:2d:10:e1:3d:c6:
a0:ba:0d:7f:72:3b:7b:f9:10:6b:c4:02:96:58:6c:7f:97:95:
64:3d:bd:38:4a:3e:b0:39:a0:cc:24:03:51:22:f8:23:5c:b3:
cb:81:b1:d8:6e:b6:62:f7:8a:fc:76:ca:16:cb:2b:3a:72:80:
45:e7:60:74:c4:9b:72:2f:e7:b6:99:3a:44:e7:0f:12:23:ab:
e7:e3:6d:d3:90:21:2b:e9:88:5e:ed:53:d2:32:2b:20:89:13:
93:7e:24:a9:05:e2:62:a9:4e:6f:ac:b9:a2:e2:4b:21:b0:04:
7a:e2:ee:80:11:8c:81:dc:35:0e:bb:93:f9:b2:f9:50:31:61:
8c:e1:b3:7d:9e:a9:2e:38:9f:5f:bf:7a:5a:47:92:db:4d:fd:
bd:85:26:f4:35:25:21:49:3f:7a:69:d6:cf:3b:e2:bc:ee:18:
ca:d2:a3:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:16:21 2024 by rpki-client on console-ams.rpki-client.org