Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/hq0X1nxKpfeuZvxTzN-I5DTuHws.roa
File: hq0X1nxKpfeuZvxTzN-I5DTuHws.roa (raw, json)
Hash identifier: yPADE+QuoIcD7jo0x1ISsuphEEhiZ3FdNoExjQ5eOkc=
Subject key identifier: 86:AD:17:D6:7C:4A:A5:F7:AE:66:FC:53:CC:DF:88:E4:34:EE:1F:0B
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 018B85441F08F7B2FD8D66CDBD7102FDB2EB
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/hq0X1nxKpfeuZvxTzN-I5DTuHws.roa
Signing time: Tue 31 Oct 2023 10:25:15 +0000
ROA not before: Tue 31 Oct 2023 10:25:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209655
IP address blocks: 212.22.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:85:44:1f:08:f7:b2:fd:8d:66:cd:bd:71:02:fd:b2:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Oct 31 10:25:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86ad17d67c4aa5f7ae66fc53ccdf88e434ee1f0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6b:00:a1:ab:16:12:74:d5:be:0e:8b:84:bd:
89:29:92:52:d3:31:b0:9f:29:fd:a2:57:63:97:31:
52:cb:dd:f4:41:f1:e6:ec:af:a0:5d:8c:6a:bb:34:
c1:33:d9:51:23:1a:51:29:2d:c7:3c:f4:58:fb:7f:
6d:57:4f:8d:11:ea:f2:fa:65:86:28:9c:69:ec:19:
a0:f4:fa:1f:eb:f9:ed:f0:10:64:c6:44:bc:d6:3c:
ef:fd:d1:f8:6c:b9:1b:78:a8:99:df:53:45:20:04:
30:bf:da:31:9b:99:9d:9b:40:fd:c1:e2:af:38:ee:
46:d1:ad:fa:13:e1:8a:13:ca:4d:9e:0e:c6:80:37:
b6:b3:0c:08:8c:2a:7c:17:c7:85:ec:c9:86:3a:a1:
88:77:10:4e:47:f0:3d:86:a3:bf:7b:b8:d1:17:d9:
76:67:b6:4c:f8:4a:38:12:6e:94:7b:e7:a9:12:5f:
06:b9:71:8c:0d:9f:9a:8a:af:d6:98:b0:58:6c:d1:
75:69:84:be:16:ad:e5:b5:03:87:50:f2:3a:29:76:
7e:4d:cc:f9:f5:f5:6a:e0:b4:93:b9:14:be:ff:3f:
ce:45:a4:ac:f1:5c:2c:95:e2:c8:99:2b:b3:81:5d:
e2:17:b9:ff:fd:3e:07:ad:8b:32:f0:9e:ec:b0:09:
92:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:AD:17:D6:7C:4A:A5:F7:AE:66:FC:53:CC:DF:88:E4:34:EE:1F:0B
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/hq0X1nxKpfeuZvxTzN-I5DTuHws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.72.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:2d:26:d3:94:41:6d:13:61:a5:48:45:19:e4:81:d1:18:87:
d3:f5:52:ab:0b:0a:60:0a:e0:8d:39:47:9c:43:98:b6:80:80:
6d:ae:e8:d7:87:ab:b0:e1:bf:bf:7d:86:99:b8:21:45:47:e5:
39:1b:10:69:23:72:da:26:9f:e1:c1:38:38:20:f0:2d:4b:f3:
d2:49:2b:a7:95:92:41:95:68:c0:5e:82:56:ed:6b:32:20:d3:
9f:ab:e6:f8:39:06:9e:2b:bb:6e:87:f7:3c:16:bc:92:21:00:
a8:f6:cd:3a:bb:86:6a:82:d7:c4:2d:0e:cc:cd:68:0d:43:22:
6a:78:4e:c9:8b:f2:68:99:83:8c:01:c0:51:f6:f1:41:1d:54:
ae:cf:f9:06:51:de:d4:e8:7e:a9:43:29:88:6f:77:cc:96:22:
75:6b:ec:28:6d:fb:29:6d:ba:6f:44:e9:6b:dc:c6:51:b3:32:
b1:f9:be:fe:6b:fe:1c:dc:1e:ce:b2:4c:44:58:d8:53:c1:2e:
e9:96:d7:2c:a8:b8:60:cf:96:34:f2:0d:fb:a4:42:54:25:c3:
31:33:5f:09:ac:08:49:53:bd:30:84:6b:b2:ad:d5:98:f2:a0:
f1:ab:d7:c0:43:6d:19:bc:04:61:ba:06:f2:8c:b0:07:c2:46:
5f:04:e6:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:30 2024 by rpki-client on console-ams.rpki-client.org