Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/Dk75T4hdeOCl4kPNlazOzPeIlW4.roa
File: Dk75T4hdeOCl4kPNlazOzPeIlW4.roa (raw, json)
Hash identifier: b8AvxmKcfckRe0Yr+wDnYrwe8MY7C+g+WbhG7bPVAKU=
Subject key identifier: 0E:4E:F9:4F:88:5D:78:E0:A5:E2:43:CD:95:AC:CE:CC:F7:88:95:6E
Certificate issuer: /CN=cd68f7a391b7b1649ed4903482d3e931ed34e3d8
Certificate serial: 018570DE2D1F420E03B5564FED76D435C5A4
Authority key identifier: CD:68:F7:A3:91:B7:B1:64:9E:D4:90:34:82:D3:E9:31:ED:34:E3:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/Dk75T4hdeOCl4kPNlazOzPeIlW4.roa
Signing time: Mon 02 Jan 2023 05:04:46 +0000
ROA not before: Mon 02 Jan 2023 05:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 196730
IP address blocks: 212.59.248.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:de:2d:1f:42:0e:03:b5:56:4f:ed:76:d4:35:c5:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd68f7a391b7b1649ed4903482d3e931ed34e3d8
Validity
Not Before: Jan 2 05:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e4ef94f885d78e0a5e243cd95acceccf788956e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c6:41:75:b9:34:b6:f0:e5:64:ff:33:e9:a6:
18:ce:03:91:c4:e1:57:ec:27:64:86:46:f7:69:f8:
94:c7:7b:6d:16:fe:41:d7:bf:93:f9:81:8c:80:34:
40:f2:7c:06:13:ff:74:0e:d4:23:4b:1e:58:f1:37:
b1:fc:94:d3:94:f2:cd:13:d3:fc:de:c1:e8:49:3a:
2d:74:89:1b:b8:e3:26:1d:42:2a:ae:48:9e:ed:d6:
fe:5c:8d:b0:35:ab:a5:be:f4:69:5f:dc:c4:28:f0:
84:8b:0d:46:84:fe:cd:03:25:00:46:eb:aa:b1:19:
8e:6f:98:fc:07:70:2b:a7:f4:f2:f6:10:ac:e8:55:
48:cd:6f:ec:3c:3e:c7:b8:40:a8:7f:07:0b:c5:f0:
8a:99:c2:e2:2e:23:6c:7b:8a:6d:1a:5d:38:d3:6f:
9d:1c:a1:f7:dc:a3:ff:96:97:fc:73:c2:cf:7c:18:
61:bf:9f:49:fb:14:c3:e5:6d:8f:1b:aa:2a:af:35:
19:fd:a6:fd:69:2d:57:17:16:9b:ec:6f:dd:cd:ac:
18:68:d5:49:7b:00:d5:ca:8e:9d:f4:5e:59:97:f5:
0b:28:ba:44:0b:d1:34:f4:e4:62:1b:b3:1a:2b:e9:
52:cc:7a:11:74:6d:cf:17:3b:ca:72:8e:07:a8:fe:
48:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:4E:F9:4F:88:5D:78:E0:A5:E2:43:CD:95:AC:CE:CC:F7:88:95:6E
X509v3 Authority Key Identifier:
keyid:CD:68:F7:A3:91:B7:B1:64:9E:D4:90:34:82:D3:E9:31:ED:34:E3:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/Dk75T4hdeOCl4kPNlazOzPeIlW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.59.248.0/22
Signature Algorithm: sha256WithRSAEncryption
52:42:77:3d:12:48:87:9c:00:20:ce:79:d7:b6:9f:7d:2c:fe:
67:dd:e9:20:88:47:ff:e1:1c:b4:13:cb:14:3e:bb:7b:ca:11:
12:8e:5d:2d:fc:8c:29:d8:0d:b6:58:13:3d:b2:cf:65:1f:8e:
d2:9b:02:29:9e:9a:b6:74:8b:b1:43:15:67:62:76:3d:7b:83:
7a:78:72:27:11:17:10:4a:b8:df:d9:30:68:d8:bf:f5:eb:b5:
10:25:68:29:42:45:f1:75:06:a5:8e:73:c0:a6:17:28:b3:7d:
76:44:b0:ed:9a:40:a9:5a:20:32:e5:ee:3b:16:88:aa:f0:6b:
58:d5:af:c5:e6:2c:c0:55:53:c3:0c:35:0f:60:c8:00:d8:ab:
c9:f9:1c:cb:f9:76:79:86:f8:71:78:95:43:9c:8a:06:25:42:
c5:36:d0:bd:97:ee:d0:3a:e3:c4:fb:55:8d:89:db:a9:ea:19:
45:ef:47:81:15:32:db:8c:16:d7:52:a7:d9:69:1c:45:b5:61:
b5:e0:af:1c:e5:7e:12:2d:4a:81:c7:06:15:aa:dd:bc:f7:69:
71:59:f3:d0:f3:0e:45:99:6d:4c:51:a5:23:23:24:8e:62:20:
b7:23:c2:ca:e4:88:eb:60:5c:b2:c2:b3:5d:ea:2c:84:e3:71:
00:d2:12:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:00 2024 by rpki-client on console-fra.rpki-client.org