Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/1bZy8FX8svPKM8IFYCIcV6mvbD0.roa
File: 1bZy8FX8svPKM8IFYCIcV6mvbD0.roa (raw, json)
Hash identifier: M9iXiBYr2iJFUr4AlQjwR9FEzWuzt9b/CjNDhIollkE=
Subject key identifier: D5:B6:72:F0:55:FC:B2:F3:CA:33:C2:05:60:22:1C:57:A9:AF:6C:3D
Certificate issuer: /CN=1003cd25315330350d73f2a3579aa95e052b718d
Certificate serial: 0190349F5159054579E55586100BE47E90FD
Authority key identifier: 10:03:CD:25:31:53:30:35:0D:73:F2:A3:57:9A:A9:5E:05:2B:71:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EAPNJTFTMDUNc_KjV5qpXgUrcY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/1bZy8FX8svPKM8IFYCIcV6mvbD0.roa
Signing time: Thu 20 Jun 2024 07:49:34 +0000
ROA not before: Thu 20 Jun 2024 07:49:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16116
IP address blocks: 212.90.108.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 13 Oct 2024 08:03:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:34:9f:51:59:05:45:79:e5:55:86:10:0b:e4:7e:90:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1003cd25315330350d73f2a3579aa95e052b718d
Validity
Not Before: Jun 20 07:49:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d5b672f055fcb2f3ca33c20560221c57a9af6c3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:65:a3:73:6b:20:af:c0:e7:3f:65:82:8b:2b:
60:5c:2b:58:44:c6:95:62:ba:a5:e6:55:7b:4a:05:
36:f4:95:26:9b:61:66:0d:c9:39:d3:d8:40:fa:3a:
9c:be:a0:0e:66:8f:34:b6:46:85:3a:f9:f0:34:a1:
00:c2:9a:30:6c:59:d9:14:d1:5d:4f:b5:3f:ef:35:
64:11:f9:fe:fd:a8:94:cb:fe:b0:11:84:b0:aa:be:
b3:78:79:6d:6e:8e:08:b4:66:ca:0c:de:29:85:03:
8e:b5:3c:f4:44:6e:16:1d:d1:7d:a2:3c:9e:d1:47:
5c:63:69:67:39:e0:82:ad:f2:98:72:ef:54:be:ed:
87:8e:2f:87:90:c9:19:b6:db:07:44:1f:41:ff:7a:
7b:d3:08:8f:ee:15:24:cf:8c:ac:18:c5:a3:cb:90:
a2:ee:f1:68:4e:81:3b:e6:7c:a1:a9:f9:b6:65:c6:
47:15:01:78:71:17:b4:a0:dd:b8:db:f1:c8:8b:dd:
93:c3:43:f5:b6:77:ff:84:47:19:fe:dd:3a:13:a7:
6d:d1:3a:6f:ad:de:39:e4:73:5c:cc:15:ea:6d:4d:
be:5c:56:b8:0d:84:5e:85:f1:76:0b:0d:10:87:d3:
67:48:2d:51:1d:8d:ed:cb:24:23:5c:ff:b3:d4:4c:
22:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B6:72:F0:55:FC:B2:F3:CA:33:C2:05:60:22:1C:57:A9:AF:6C:3D
X509v3 Authority Key Identifier:
keyid:10:03:CD:25:31:53:30:35:0D:73:F2:A3:57:9A:A9:5E:05:2B:71:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EAPNJTFTMDUNc_KjV5qpXgUrcY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/1bZy8FX8svPKM8IFYCIcV6mvbD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/EAPNJTFTMDUNc_KjV5qpXgUrcY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.90.108.0/22
Signature Algorithm: sha256WithRSAEncryption
44:17:fc:9a:e1:41:8c:3b:35:6c:eb:8b:49:ea:0f:9b:44:8f:
e4:99:a8:b6:b8:ff:cb:be:06:4d:0e:bc:93:3c:f4:fe:23:be:
6b:79:16:bd:d0:71:05:2b:1f:e2:a0:9a:b7:26:ca:f2:96:82:
19:40:81:6f:fc:9b:4c:25:fe:7e:e6:b6:0d:17:8c:83:ed:19:
00:f4:4c:02:31:29:7b:b2:e8:02:c8:33:24:1c:65:98:43:d4:
20:fe:84:c6:cb:d6:26:4c:5c:0d:43:7f:7c:e0:f5:39:d8:a2:
ec:ba:cb:05:3c:5f:96:4e:b0:1c:47:20:fc:6f:70:c8:05:98:
1a:5b:b6:f6:85:ae:ef:76:a5:9f:1d:45:fe:06:e5:ba:38:35:
9c:63:6b:43:02:5c:c1:3e:82:70:87:04:55:cb:2c:96:13:d1:
ff:d1:1d:58:0f:f7:a2:c6:78:20:89:8f:f6:ff:2b:6d:53:f1:
4e:9c:12:38:73:b8:19:7d:20:3f:f5:c5:97:7e:c0:06:db:58:
5c:f5:56:21:1b:b9:f0:c9:06:ba:fe:02:b9:80:9d:d4:16:4e:
6a:14:65:d4:7f:49:33:82:de:ee:73:9e:f6:aa:57:e6:9d:bf:
cb:d0:13:c0:17:b4:74:7e:45:e6:11:68:58:72:bd:0a:e8:06:
57:f7:4e:9b
-----BEGIN CERTIFICATE-----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Generated at Sun Oct 13 09:30:02 2024 by rpki-client on console-fra.rpki-client.org