Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/8yUvxTx3iqD2seHAEh9aibYaxGI.roa
File: 8yUvxTx3iqD2seHAEh9aibYaxGI.roa (raw, json)
Hash identifier: DOedVZvZx3ZDp7kfAoU+7ZlIMLlPpPFlXt6AhT4sUNM=
Subject key identifier: F3:25:2F:C5:3C:77:8A:A0:F6:B1:E1:C0:12:1F:5A:89:B6:1A:C4:62
Certificate issuer: /CN=1003cd25315330350d73f2a3579aa95e052b718d
Certificate serial: 018B46824D48DD592B48E597FE916B624046
Authority key identifier: 10:03:CD:25:31:53:30:35:0D:73:F2:A3:57:9A:A9:5E:05:2B:71:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EAPNJTFTMDUNc_KjV5qpXgUrcY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/8yUvxTx3iqD2seHAEh9aibYaxGI.roa
Signing time: Thu 19 Oct 2023 05:57:06 +0000
ROA not before: Thu 19 Oct 2023 05:57:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16116
IP address blocks: 212.90.108.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:46:82:4d:48:dd:59:2b:48:e5:97:fe:91:6b:62:40:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1003cd25315330350d73f2a3579aa95e052b718d
Validity
Not Before: Oct 19 05:57:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3252fc53c778aa0f6b1e1c0121f5a89b61ac462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:91:2e:93:3a:a2:86:c7:93:e0:49:23:a8:8e:
23:a0:ad:d6:46:9c:ff:ce:b6:12:8a:dc:ce:62:6c:
16:d3:dc:98:2a:e2:56:69:20:36:75:2e:0e:6c:74:
aa:f0:f0:e5:00:82:27:8a:f2:3f:bb:96:c3:2c:5c:
87:52:7c:90:ed:e7:24:86:65:90:00:ac:26:52:9c:
94:a5:b9:2d:89:7c:51:9e:a7:bd:1a:ec:a9:c3:25:
27:53:03:79:89:74:86:91:77:a9:e2:d3:f3:24:87:
75:8b:13:b9:2e:9f:f0:4f:e5:b4:0c:00:80:33:84:
15:96:51:11:ce:20:3a:51:51:b8:cb:a6:6d:75:6c:
68:54:d3:d2:d2:9b:3c:c3:aa:ab:b3:29:6f:f3:4d:
24:42:d7:7f:31:aa:80:b3:75:83:7e:44:75:01:e1:
22:41:a6:c8:f4:c7:ca:28:61:89:cd:75:4f:d3:55:
8b:d6:90:b7:e7:08:29:be:b9:73:d4:e8:f2:91:60:
5e:40:6f:6d:72:4c:f3:16:88:53:23:11:63:e6:07:
30:c0:07:3e:e7:a8:e4:cf:12:3a:0b:f9:92:d8:be:
e7:70:53:5e:03:d8:bf:56:0f:89:be:a2:da:03:a2:
e0:6b:29:d9:70:f6:07:73:4a:cb:0f:a7:77:a8:8f:
0d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:25:2F:C5:3C:77:8A:A0:F6:B1:E1:C0:12:1F:5A:89:B6:1A:C4:62
X509v3 Authority Key Identifier:
keyid:10:03:CD:25:31:53:30:35:0D:73:F2:A3:57:9A:A9:5E:05:2B:71:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EAPNJTFTMDUNc_KjV5qpXgUrcY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/8yUvxTx3iqD2seHAEh9aibYaxGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/EAPNJTFTMDUNc_KjV5qpXgUrcY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.90.108.0/22
Signature Algorithm: sha256WithRSAEncryption
37:19:6f:f5:2b:6d:06:c0:b3:4f:5a:69:6f:2d:13:88:17:fa:
3d:19:6b:42:be:9d:3b:99:35:42:4c:93:52:36:80:f5:57:2b:
29:57:a2:02:1a:b2:91:8b:7b:9d:ba:1d:10:a8:af:c7:74:a3:
47:31:e3:35:c9:b5:51:ac:fa:05:22:b6:ed:f2:af:5c:83:4c:
5e:7c:01:64:b6:5f:63:fe:6c:d5:fc:35:db:e9:87:d1:19:3e:
52:b5:fa:ec:95:6f:70:df:d3:98:27:87:3b:f4:2d:c0:60:6b:
b0:65:17:08:f0:ad:ac:a7:53:4c:4c:15:d5:c7:c9:d5:fd:dc:
37:d2:a1:14:08:6d:bf:e0:5d:1d:17:92:77:18:1f:ee:1e:4a:
76:6f:75:46:c7:38:c7:8a:a8:1d:fe:02:8e:21:ab:cc:89:33:
73:86:cb:2e:1c:3e:b6:eb:b2:e5:23:6e:a0:3c:d6:57:76:e5:
02:a9:5e:72:e8:fe:55:0d:25:ab:15:13:4c:e5:a8:65:e4:57:
fe:c5:2e:ec:31:d1:c7:de:06:a0:93:02:96:65:41:ee:aa:32:
b7:f4:c4:f9:01:c7:e1:3c:d2:dd:62:27:48:a3:96:f6:9f:4d:
07:c7:f5:94:4e:7e:71:b6:84:bb:fe:ab:ab:e8:b9:51:93:38:
55:4d:2f:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:14 2024 by rpki-client on console-fra.rpki-client.org