Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/6KC1QBqzg6kBUfYQiWrsSk_yT-s.roa
File: 6KC1QBqzg6kBUfYQiWrsSk_yT-s.roa (raw, json)
Hash identifier: DtKIEjcSmT/Q0wkruodk5Dk2bFqmFAqre5iug7Ryohs=
Subject key identifier: E8:A0:B5:40:1A:B3:83:A9:01:51:F6:10:89:6A:EC:4A:4F:F2:4F:EB
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0185727A351990C2BDB34B45C2E5D5CAA3F7
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/6KC1QBqzg6kBUfYQiWrsSk_yT-s.roa
Signing time: Mon 02 Jan 2023 12:34:49 +0000
ROA not before: Mon 02 Jan 2023 12:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 212.87.192.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:7a:35:19:90:c2:bd:b3:4b:45:c2:e5:d5:ca:a3:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 2 12:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e8a0b5401ab383a90151f610896aec4a4ff24feb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ab:a2:ed:72:68:04:b7:7f:c7:0b:d7:18:4c:
8d:2f:25:9e:a7:a0:ca:bd:e2:68:07:c9:19:92:52:
c4:86:5b:09:8a:57:5c:f2:49:37:54:4c:1c:3a:b6:
ad:1b:47:a7:ec:29:5b:e3:97:fa:b6:e9:6f:dc:95:
44:e2:49:69:7a:40:44:e2:62:7e:09:56:90:59:54:
b9:10:30:1f:76:43:cc:21:11:84:50:45:1a:94:0e:
d5:29:f7:0e:65:12:ac:23:5a:32:47:94:ca:02:b0:
d8:9b:1d:53:e8:ff:56:2f:6d:d2:78:bc:9c:18:8a:
30:f4:93:38:af:1b:b5:33:59:29:7b:27:36:a1:98:
d8:79:20:fe:a2:5e:80:40:c3:0e:82:7e:f8:2f:0b:
9b:fa:cb:9c:be:06:18:cc:ab:83:a8:f2:2b:43:7a:
4a:2d:5d:18:f5:45:05:6b:62:b6:15:4d:e8:e8:d4:
36:29:f7:60:e3:ed:69:59:18:d9:12:9b:74:b4:fb:
8c:dc:75:01:6a:07:ca:a1:39:38:6d:83:83:6f:73:
99:7e:43:1a:38:5c:60:9e:f0:fe:44:5a:b6:b0:d8:
da:23:56:91:58:51:dc:9d:5d:25:9d:2f:5d:02:37:
40:21:b6:fa:a8:75:f3:91:58:3e:ee:7e:56:28:39:
3f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A0:B5:40:1A:B3:83:A9:01:51:F6:10:89:6A:EC:4A:4F:F2:4F:EB
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/6KC1QBqzg6kBUfYQiWrsSk_yT-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.87.192.0/22
Signature Algorithm: sha256WithRSAEncryption
36:00:98:ce:de:d2:8b:b9:51:cc:c0:bd:58:45:bc:d5:bd:bb:
1f:78:99:bd:3f:ee:16:b7:db:57:58:50:cc:4b:e8:f0:57:2e:
6a:53:c3:77:2c:99:9d:dd:f2:39:9a:33:ba:12:a0:0b:86:54:
cb:44:54:f8:57:ba:68:7b:b8:6e:9f:3a:b4:63:5a:9b:c6:49:
64:7c:61:e7:8f:89:d8:1b:7c:50:b8:89:fb:43:b1:6b:aa:a4:
18:d1:14:6d:ce:1d:c4:58:8a:23:af:87:f6:e0:c4:a9:d5:ee:
f9:d8:ec:d6:1b:8c:7f:46:20:93:52:5c:9c:ba:e7:9d:fe:40:
8e:ac:ce:a8:5e:da:7c:23:45:b0:b2:40:ce:ca:df:0f:a9:04:
c8:5d:10:5e:bc:79:7e:c2:f6:5e:74:9e:1f:14:a3:f4:32:26:
f0:5f:62:11:2d:fe:50:39:b6:3a:75:d1:94:93:4c:66:f2:aa:
fa:36:53:c0:93:be:9e:b8:44:3d:8d:63:67:15:c6:f4:39:a7:
9a:73:5e:2d:2b:db:db:27:a4:3a:be:a9:7f:04:b7:1c:59:a2:
78:5a:1f:ec:78:6d:f4:e5:68:ea:af:16:5e:bd:cc:44:4c:86:
aa:02:c7:fd:05:c5:1f:7d:33:6e:a5:1d:c4:b5:53:0c:24:ae:
a2:8c:8d:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:42 2023 by rpki-client on console-fra.rpki-client.org