Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/374fd1-02c2-4671-bdc9-c3cc5de1ece9/1/knOTGw0zzjxZdY4CujX7kgKg4Lg.roa
File: knOTGw0zzjxZdY4CujX7kgKg4Lg.roa (raw, json)
Hash identifier: TN3LecjmoKoaPqiAx47FTqUT4WYCnl+nla1nkI5pZjk=
Subject key identifier: 92:73:93:1B:0D:33:CE:3C:59:75:8E:02:BA:35:FB:92:02:A0:E0:B8
Certificate issuer: /CN=8bdac18a7ad501ba7ea13567909f17e4f7327413
Certificate serial: 018C8BB0550BF54946D1B78E3E4510484176
Authority key identifier: 8B:DA:C1:8A:7A:D5:01:BA:7E:A1:35:67:90:9F:17:E4:F7:32:74:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9rBinrVAbp-oTVnkJ8X5PcydBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/374fd1-02c2-4671-bdc9-c3cc5de1ece9/1/knOTGw0zzjxZdY4CujX7kgKg4Lg.roa
Signing time: Thu 21 Dec 2023 09:23:58 +0000
ROA not before: Thu 21 Dec 2023 09:23:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213126
IP address blocks: 212.94.54.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8b:b0:55:0b:f5:49:46:d1:b7:8e:3e:45:10:48:41:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bdac18a7ad501ba7ea13567909f17e4f7327413
Validity
Not Before: Dec 21 09:23:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9273931b0d33ce3c59758e02ba35fb9202a0e0b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b5:5a:95:0c:5f:84:0a:34:91:05:91:f9:a2:
d8:93:c4:b5:c9:ae:24:48:c2:35:4f:69:f0:46:53:
91:61:c3:bb:d2:6b:35:a3:4e:d2:f9:19:6c:89:6d:
7a:16:9e:f3:8d:69:a8:e5:7c:85:4f:73:52:a9:82:
49:d6:07:b1:be:2a:af:14:36:51:4c:a0:5a:4d:cd:
bb:c6:bf:fb:d9:38:96:d8:80:e7:10:6d:47:20:c0:
81:a4:37:cd:d2:ef:17:39:1c:f0:0c:b6:4d:f2:ef:
39:3d:1c:e4:6b:86:8e:89:f8:46:6a:a2:89:d0:62:
8d:6a:e5:f4:a9:df:f1:4a:db:24:73:9c:7f:06:b6:
c2:d3:08:56:f3:db:c6:9d:b1:d1:19:05:9c:7a:6d:
fa:ea:a6:c2:35:c1:e4:6b:b0:ce:d1:41:84:0e:f6:
40:49:b1:62:7e:f8:59:2a:ef:0e:7a:af:7d:8d:c4:
ac:b8:56:07:c1:01:12:f8:02:2e:3f:da:3b:c2:36:
88:a5:e7:e2:9c:ee:12:d7:38:9a:5a:99:07:07:d6:
b1:ab:52:a3:1c:0b:b3:02:9b:84:25:b5:7e:56:cb:
c4:31:2d:1d:a4:ba:77:68:e6:44:28:40:b7:b5:97:
77:4a:61:d6:79:60:bc:f1:97:02:42:ac:0a:15:23:
8a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:73:93:1B:0D:33:CE:3C:59:75:8E:02:BA:35:FB:92:02:A0:E0:B8
X509v3 Authority Key Identifier:
keyid:8B:DA:C1:8A:7A:D5:01:BA:7E:A1:35:67:90:9F:17:E4:F7:32:74:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9rBinrVAbp-oTVnkJ8X5PcydBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/374fd1-02c2-4671-bdc9-c3cc5de1ece9/1/knOTGw0zzjxZdY4CujX7kgKg4Lg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/374fd1-02c2-4671-bdc9-c3cc5de1ece9/1/i9rBinrVAbp-oTVnkJ8X5PcydBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.94.54.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:34:87:62:63:3c:63:c6:3a:87:02:d9:7f:c9:c3:4a:37:9d:
1b:b1:cd:21:52:7d:ba:b5:9e:4e:b7:15:ff:d7:73:54:67:4e:
20:5d:d6:15:94:80:c0:4d:41:bc:0a:64:87:66:9c:2d:27:af:
97:ab:35:fb:67:5f:f4:c8:cf:3f:6b:32:af:09:4b:f6:ab:d7:
36:0d:80:0b:a0:9b:48:7b:61:9d:d6:f2:12:a1:82:e9:89:03:
06:d2:a7:8e:b3:b4:d5:3d:70:67:73:0d:98:4a:2d:b7:a2:d4:
c1:2a:f5:3b:41:c4:1f:c4:cc:ab:7e:ed:5a:11:30:24:89:ed:
12:fc:e8:0d:1f:aa:67:e8:a8:31:05:05:25:23:bc:93:df:d0:
89:e0:ae:b1:b7:85:15:e5:e4:1d:68:fe:e9:e6:fe:45:e5:c4:
eb:10:d6:40:01:42:cf:b6:db:7a:54:ea:d3:86:36:ea:5c:0a:
8a:10:dd:d6:df:ed:c8:5f:3b:8b:53:57:2a:ab:97:be:3f:6f:
36:48:0f:fb:f4:e7:ae:22:92:90:a2:89:21:9f:2b:4e:56:b1:
53:a1:be:02:84:7c:fe:da:92:b5:3d:50:bd:16:85:70:2a:1d:
1a:00:4c:e2:85:ed:e9:41:34:1b:2b:c6:f3:75:83:0c:c9:50:
af:a7:2c:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:54 2024 by rpki-client on console-ams.rpki-client.org