Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/FGHunvQa5gSboK6_bE3Yjk6UdpE.roa
File: FGHunvQa5gSboK6_bE3Yjk6UdpE.roa (raw, json)
Hash identifier: d4M/cZmEmG8c9c9xIQaDe1oKL6Wtq/xYI0MyMalvZTM=
Subject key identifier: 14:61:EE:9E:F4:1A:E6:04:9B:A0:AE:BF:6C:4D:D8:8E:4E:94:76:91
Certificate issuer: /CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Certificate serial: 018BD37144C5EED2EEDD6A39EACDC8ECA52E
Authority key identifier: 17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/FGHunvQa5gSboK6_bE3Yjk6UdpE.roa
Signing time: Wed 15 Nov 2023 14:44:57 +0000
ROA not before: Wed 15 Nov 2023 14:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 212.23.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Nov 2023 12:18:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d3:71:44:c5:ee:d2:ee:dd:6a:39:ea:cd:c8:ec:a5:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Validity
Not Before: Nov 15 14:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1461ee9ef41ae6049ba0aebf6c4dd88e4e947691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f5:79:c2:01:49:6c:0d:3b:e0:e3:6d:d5:f6:
2b:ed:fd:a6:ae:19:3c:d9:bd:00:fe:4f:27:8e:69:
0d:90:25:26:86:17:6a:e1:71:0d:99:a0:8b:35:4f:
60:b8:52:49:90:07:e8:30:83:bf:ed:64:90:71:1a:
74:37:9c:64:b4:9b:bd:5e:26:b4:a8:bd:cf:1c:96:
96:28:5e:32:f3:72:72:97:69:65:98:dd:6c:0f:68:
14:e4:99:f2:05:bf:91:97:26:e4:30:85:bd:37:b1:
76:3c:6a:41:e6:89:e7:84:50:8a:96:e8:a5:50:46:
c6:8a:fc:1a:4a:d5:cf:9d:12:ed:7e:5c:a8:1c:08:
fc:54:1a:43:5d:ec:26:d0:ac:24:3e:8d:d7:64:7b:
a0:c5:4e:d1:84:52:29:39:eb:db:d2:19:4f:c9:83:
f3:60:b4:4b:4a:7d:0b:81:b5:ac:e6:8c:c9:0c:37:
f5:41:43:41:0f:37:82:91:96:b3:34:39:d4:7f:ed:
6e:56:57:25:b3:e2:85:94:fe:b6:ee:5f:d4:47:27:
b4:fc:35:d1:c4:2d:ad:f9:ad:c3:0a:fc:f3:3b:30:
b8:81:1f:22:b3:a2:44:28:79:a3:f5:ea:12:70:c8:
38:24:01:20:af:94:2f:31:b5:cf:42:47:05:36:f3:
52:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:61:EE:9E:F4:1A:E6:04:9B:A0:AE:BF:6C:4D:D8:8E:4E:94:76:91
X509v3 Authority Key Identifier:
keyid:17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/FGHunvQa5gSboK6_bE3Yjk6UdpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.198.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:89:39:50:eb:10:8f:e3:ff:83:41:88:ae:15:e0:58:03:46:
fa:c2:ff:14:63:49:94:7e:e7:b8:40:98:00:18:60:3d:9a:60:
08:8a:07:64:68:25:ab:04:c8:c0:78:f4:2a:cb:0f:3a:71:51:
c2:05:7d:10:4d:fd:46:fe:cd:a5:55:97:e8:6c:a8:70:54:d1:
6e:93:71:ae:55:a0:76:fa:40:f5:96:7f:d8:b1:53:d0:e2:23:
cc:b6:63:14:91:11:3c:be:df:5f:9f:66:40:60:e8:9f:2d:8f:
81:28:b8:0d:42:09:06:b2:fc:ed:f8:d6:23:b8:42:e3:a3:b0:
d0:77:07:3a:85:98:79:33:f4:6a:e2:3a:3d:6d:a5:d7:7a:f9:
52:a4:a9:2d:8d:26:4c:56:5a:7e:23:49:40:e4:71:b6:2e:c5:
28:ab:b8:59:a0:b0:08:e3:bf:64:c1:50:54:79:27:62:27:c9:
b5:aa:8e:a0:22:e9:4b:09:5c:cc:d2:5f:f3:07:2b:50:e2:37:
86:fb:be:af:37:0a:5e:3d:36:58:d7:bf:46:2b:dc:fd:d9:2f:
4f:ad:90:dd:d4:c0:ce:9b:92:66:d6:cc:26:7e:00:d6:0d:d1:
38:b8:81:3e:24:1d:64:8f:a5:11:96:bd:27:b2:e2:91:d9:00:
93:1a:1f:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:06 2024 by rpki-client on console-ams.rpki-client.org