Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/f565d7-32af-4be1-82ac-b602cedac36c/1/S12XH9OV9_ZrgzUAMoumPml6egU.roa
File: S12XH9OV9_ZrgzUAMoumPml6egU.roa (raw, json)
Hash identifier: njvGYwYHqs9kWW55I/m5JMOkrAd3nEej6uthYFeWFCA=
Subject key identifier: 4B:5D:97:1F:D3:95:F7:F6:6B:83:35:00:32:8B:A6:3E:69:7A:7A:05
Certificate issuer: /CN=a3787d2be6eac36c1d2780f786b87c9e153e81f1
Certificate serial: 01856D8AFF7193B15B2577599D7190744997
Authority key identifier: A3:78:7D:2B:E6:EA:C3:6C:1D:27:80:F7:86:B8:7C:9E:15:3E:81:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3h9K-bqw2wdJ4D3hrh8nhU-gfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/f565d7-32af-4be1-82ac-b602cedac36c/1/S12XH9OV9_ZrgzUAMoumPml6egU.roa
Signing time: Sun 01 Jan 2023 13:35:03 +0000
ROA not before: Sun 01 Jan 2023 13:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61344
IP address blocks: 212.66.61.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:ff:71:93:b1:5b:25:77:59:9d:71:90:74:49:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3787d2be6eac36c1d2780f786b87c9e153e81f1
Validity
Not Before: Jan 1 13:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b5d971fd395f7f66b833500328ba63e697a7a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ec:aa:96:ec:e4:32:c5:80:4e:fa:4c:d3:71:
57:bf:17:2e:48:fe:5b:88:ac:e9:5d:0d:4c:35:7f:
53:ed:4a:dc:cd:27:3d:73:1d:69:28:7e:ce:0d:c4:
7f:42:56:be:11:45:bc:97:c8:ca:bf:db:15:f3:81:
70:37:bd:ba:69:0f:76:6c:95:34:3d:2c:ec:3f:02:
ba:12:8e:83:e9:58:f9:99:96:a5:9e:cb:27:63:88:
77:82:d8:78:f5:2c:7e:f8:86:d2:3c:f2:53:bb:cd:
1c:f7:8a:cd:78:20:6e:6a:39:7a:64:d5:10:75:30:
13:48:2e:89:f0:36:f6:76:95:c4:96:2f:2d:1c:c9:
f8:87:46:7c:db:df:d0:a0:fd:1e:25:59:aa:9e:ee:
cb:17:96:57:a4:ff:ee:98:3e:29:dc:d9:8c:79:da:
76:aa:b8:95:59:b7:89:dc:96:6a:6f:39:77:fb:f0:
e3:1e:11:86:7e:ae:c1:1b:78:42:4d:ea:5f:be:87:
72:c7:af:f9:de:ba:5b:1c:8c:a4:66:b6:12:c8:55:
df:08:c2:09:83:a1:2d:3e:2d:fa:69:42:bd:f0:93:
b3:9a:bf:0a:7c:69:4d:1b:2c:18:de:b9:07:01:20:
ba:15:9d:94:6a:f3:cb:4d:6d:58:5c:dc:9f:1e:d9:
dc:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:5D:97:1F:D3:95:F7:F6:6B:83:35:00:32:8B:A6:3E:69:7A:7A:05
X509v3 Authority Key Identifier:
keyid:A3:78:7D:2B:E6:EA:C3:6C:1D:27:80:F7:86:B8:7C:9E:15:3E:81:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3h9K-bqw2wdJ4D3hrh8nhU-gfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/f565d7-32af-4be1-82ac-b602cedac36c/1/S12XH9OV9_ZrgzUAMoumPml6egU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/f565d7-32af-4be1-82ac-b602cedac36c/1/o3h9K-bqw2wdJ4D3hrh8nhU-gfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.66.61.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:56:cf:46:2a:59:92:b8:70:91:fe:64:ad:b4:47:57:ad:0b:
1d:03:fe:18:de:48:e8:79:2c:8d:54:ad:8c:8b:8b:de:09:c7:
d7:9a:f2:bc:48:57:2b:bd:0b:09:5e:b9:06:62:b9:7b:46:bc:
b7:64:95:95:6f:21:9f:bd:5a:77:aa:dd:62:75:04:de:43:e5:
3e:b9:0e:24:8a:c4:3e:45:d5:1e:08:a9:5f:d7:01:6f:62:1d:
6d:1f:e8:3b:f4:65:05:78:01:53:81:8e:01:e3:db:b2:4c:88:
9e:f7:01:92:87:4f:8c:65:b7:2f:6f:f1:48:7a:ad:02:64:b2:
a8:5c:20:dd:4a:e4:62:05:6c:dd:04:8a:6d:a2:11:f8:af:5f:
51:db:55:7b:8e:16:d7:48:1e:e9:61:79:f0:ef:47:47:d4:63:
80:b3:e1:88:8e:cd:30:7d:1e:97:41:3f:8a:9a:20:4c:4e:a4:
ae:f9:a3:da:f1:db:ce:ec:77:35:71:1a:2a:3a:a9:97:2e:da:
9a:3d:51:cf:4c:bd:2e:ba:ee:ef:08:c7:85:5d:5e:cc:67:19:
bd:c1:7c:17:de:84:ef:7c:f7:e4:7f:8c:71:8b:85:4a:87:d1:
31:8e:12:21:8d:80:32:54:48:1a:d6:fc:69:4a:d3:ef:b6:f6:
fa:9a:3b:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:20 2024 by rpki-client on console-ams.rpki-client.org