Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/NxOvq8HHeLA1smG4DLyYaVy-Bqk.roa
File: NxOvq8HHeLA1smG4DLyYaVy-Bqk.roa (raw, json)
Hash identifier: U7iCL88M48XfHZBQC+8nSMJtpEb/ubNVfijqYfI+uu4=
Subject key identifier: 37:13:AF:AB:C1:C7:78:B0:35:B2:61:B8:0C:BC:98:69:5C:BE:06:A9
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 01903A4405351720BB144E79B1A22ACC9B7B
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/NxOvq8HHeLA1smG4DLyYaVy-Bqk.roa
Signing time: Fri 21 Jun 2024 10:07:34 +0000
ROA not before: Fri 21 Jun 2024 10:07:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 202.50.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Jun 2024 07:11:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3a:44:05:35:17:20:bb:14:4e:79:b1:a2:2a:cc:9b:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Jun 21 10:07:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3713afabc1c778b035b261b80cbc98695cbe06a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5c:8a:35:4c:f0:28:8e:01:95:cf:c8:6c:78:
5c:7c:ba:66:3d:f3:97:55:96:27:10:f8:df:d3:b8:
0c:ce:54:be:f6:79:61:69:b6:cb:15:aa:54:57:b5:
74:11:7a:cb:e6:7d:d3:18:fa:b4:47:2b:bf:63:05:
5c:c9:b1:79:00:a8:01:24:73:54:0d:1b:45:f3:1b:
eb:66:bb:f0:d5:36:2f:46:fc:a4:cf:33:65:3a:79:
a3:c6:fb:5f:3d:cc:3f:28:02:c3:85:18:23:ed:e9:
cf:1b:dd:3e:f9:82:37:7e:ba:0d:95:f4:d2:99:39:
9f:39:09:b0:7c:1f:7a:ca:2b:3a:43:7f:24:1b:ad:
5b:34:ba:52:b8:a3:00:f2:15:2b:e8:a7:2a:f3:4a:
80:9a:79:89:23:39:89:16:33:87:b5:0d:50:4f:b9:
8c:8b:dc:e2:5a:eb:98:da:91:58:ae:16:9b:b9:4f:
2e:5e:90:93:ce:78:23:52:53:9e:23:98:54:76:94:
b9:db:91:8d:13:42:af:96:54:ca:81:78:c0:cd:31:
08:20:c4:64:c1:9b:fd:88:8e:68:56:78:d9:b5:19:
55:cc:17:06:d0:74:de:20:d1:bb:2c:1f:e5:6c:05:
ce:04:c2:48:cb:19:90:26:43:2d:70:f0:2e:8f:21:
08:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:13:AF:AB:C1:C7:78:B0:35:B2:61:B8:0C:BC:98:69:5C:BE:06:A9
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/NxOvq8HHeLA1smG4DLyYaVy-Bqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.50.253.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:8e:58:5c:b3:56:bc:cc:7b:a8:f9:d2:b2:94:81:44:a9:70:
53:cf:c4:5f:70:e4:9f:1c:ed:18:53:85:d0:5b:2c:18:18:bc:
70:d7:5f:12:c7:6a:2b:a2:5b:e1:cb:24:b3:96:df:91:9b:67:
a8:35:91:55:64:18:ea:aa:9f:7f:ad:12:64:eb:2f:ef:a7:7b:
e3:7e:6b:76:c5:2e:a9:54:bf:44:a2:5e:45:72:30:0f:bd:84:
50:6b:5c:1f:a2:0c:52:16:1f:22:e2:9e:c7:d1:2b:af:63:e1:
c5:5a:e2:45:ed:3b:ec:8a:5b:9d:3c:f1:87:c7:f5:15:21:83:
4b:68:dd:d9:b4:ef:ec:2d:17:20:05:d5:33:c0:26:b3:a0:b8:
02:74:84:70:fa:54:88:bd:f0:5c:9e:46:27:32:75:61:70:ab:
c6:cb:fc:19:a6:a3:49:f7:1f:ca:18:5c:7f:40:77:89:6b:35:
98:f5:0c:24:76:52:dc:1a:59:63:16:53:0b:bc:57:39:ff:80:
61:4e:0e:e6:c9:9d:12:8b:41:79:a9:71:99:90:f4:c4:ee:ab:
52:51:43:1e:21:ec:b3:f2:21:c6:5e:ff:f0:a6:a9:21:39:51:
d7:fc:89:0e:be:6c:59:87:ce:00:36:27:56:0d:15:e0:14:8e:
79:1d:6e:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 11:54:51 2024 by rpki-client on console-fra.rpki-client.org