Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/e96877-1133-4b29-a6ba-8453c0f135d6/1/fBBZUx-Chwjl6Yi8Chd23i8fd5M.roa
File: fBBZUx-Chwjl6Yi8Chd23i8fd5M.roa (raw, json)
Hash identifier: cdlTGchARMq01pZBzgl27TxOOakAJ3ta3dg78ItvzbM=
Subject key identifier: 7C:10:59:53:1F:82:87:08:E5:E9:88:BC:0A:17:76:DE:2F:1F:77:93
Certificate issuer: /CN=b0cc95fc42f3d81920f464b0f20c8a5203f21e30
Certificate serial: 018B9465B915B900C8AE132D67BDCEE2827A
Authority key identifier: B0:CC:95:FC:42:F3:D8:19:20:F4:64:B0:F2:0C:8A:52:03:F2:1E:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sMyV_ELz2Bkg9GSw8gyKUgPyHjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/e96877-1133-4b29-a6ba-8453c0f135d6/1/fBBZUx-Chwjl6Yi8Chd23i8fd5M.roa
Signing time: Fri 03 Nov 2023 08:56:16 +0000
ROA not before: Fri 03 Nov 2023 08:56:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42008
IP address blocks: 212.8.192.0/19 maxlen: 24
212.15.192.0/19 maxlen: 24
2001:ae0::/30 maxlen: 32
Validation: Failed, certificate revoked on Tue 07 Nov 2023 10:07:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:94:65:b9:15:b9:00:c8:ae:13:2d:67:bd:ce:e2:82:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0cc95fc42f3d81920f464b0f20c8a5203f21e30
Validity
Not Before: Nov 3 08:56:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c1059531f828708e5e988bc0a1776de2f1f7793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ff:6c:bd:1e:67:9a:08:05:6f:4e:94:6e:4b:
43:c1:df:fd:87:f2:81:1e:93:e7:6e:d7:3d:84:74:
bf:ba:da:47:d3:85:fa:51:3f:c2:a2:ad:2e:7a:0d:
fa:2e:cc:79:c6:0a:62:a1:42:91:46:4d:e6:29:2b:
92:8c:61:86:16:78:a8:21:fd:52:05:91:c4:ac:d6:
84:8f:4e:69:cf:33:a6:6d:3e:a2:e3:d2:df:03:f8:
e7:f1:e9:5d:a4:1e:eb:68:a5:7c:46:ec:16:fb:29:
68:79:bd:7e:b3:20:24:f6:ae:d1:7c:8c:a3:ea:dc:
45:1f:a3:31:81:64:10:76:d4:b1:e0:b1:b5:00:6f:
c7:b5:83:ab:08:96:39:f8:f4:7e:a7:8c:cd:a6:05:
95:e6:ab:3c:62:d3:6a:e3:ad:34:35:c4:82:e7:94:
45:08:fa:c5:73:50:cc:98:44:f4:cf:be:f0:46:a3:
7f:13:6d:65:a2:7f:41:87:3a:2a:10:fd:53:c1:6d:
4d:51:01:f7:e2:e8:19:62:94:76:21:ad:f0:ba:93:
08:26:65:5e:87:34:8f:57:da:a6:54:d7:1a:b2:74:
98:74:4e:dd:01:b2:9c:c2:70:cf:11:a9:10:bb:a0:
6a:d5:a4:73:fb:9b:68:35:3c:0d:46:a1:ff:ea:2b:
c7:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:10:59:53:1F:82:87:08:E5:E9:88:BC:0A:17:76:DE:2F:1F:77:93
X509v3 Authority Key Identifier:
keyid:B0:CC:95:FC:42:F3:D8:19:20:F4:64:B0:F2:0C:8A:52:03:F2:1E:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sMyV_ELz2Bkg9GSw8gyKUgPyHjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/e96877-1133-4b29-a6ba-8453c0f135d6/1/fBBZUx-Chwjl6Yi8Chd23i8fd5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/e96877-1133-4b29-a6ba-8453c0f135d6/1/sMyV_ELz2Bkg9GSw8gyKUgPyHjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.8.192.0/19
212.15.192.0/19
IPv6:
2001:ae0::/30
Signature Algorithm: sha256WithRSAEncryption
2c:a1:01:1e:2f:48:1b:4b:de:67:43:25:ff:8d:63:71:24:23:
a1:5f:ac:a6:54:f7:3d:4a:e9:5e:de:d5:5d:b8:a6:9e:ff:7f:
77:55:e9:45:16:87:6b:1b:d8:81:ff:52:e4:bb:78:23:ff:02:
ff:c5:7b:71:5a:68:bb:41:d6:f9:64:6e:81:32:76:b6:63:b3:
e7:a6:9a:a8:3e:42:87:37:6e:ee:22:07:54:7a:1c:86:f9:b2:
36:09:98:ad:be:37:13:c6:1b:61:21:03:17:af:2b:5b:0a:3d:
ec:28:9c:97:fc:96:74:2d:db:16:31:23:ce:65:ac:7f:15:ce:
cd:ba:be:d7:71:6d:d7:ef:56:c3:5b:9b:9c:7e:4b:d8:ab:0d:
71:66:13:ba:a1:58:c8:67:47:e0:1b:c6:d1:c8:24:5a:c4:2d:
23:45:fd:84:e4:05:77:34:16:2a:7a:48:9d:6b:3a:40:b3:48:
8f:45:f3:2e:26:95:b7:a3:8b:96:c1:8b:52:62:91:fa:ee:51:
7a:9a:ea:a6:81:e9:32:c5:1a:4a:76:32:a3:bf:f6:35:37:79:
de:10:50:c6:f4:2b:5c:e4:d1:75:ab:0a:67:e9:b0:36:ee:68:
06:30:b4:ef:53:ba:25:f8:12:68:5f:6a:0f:4c:43:8c:dd:84:
a6:b1:69:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:14 2024 by rpki-client on console-ams.rpki-client.org