Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/Ur6YQIkzvOlRjlCAGteoQHkhHK4.roa
File: Ur6YQIkzvOlRjlCAGteoQHkhHK4.roa (raw, json)
Hash identifier: GaI3Nbfr06ve0bDKdO3OmtjqmloKIjL3Dsky9Y3fk6k=
Subject key identifier: 52:BE:98:40:89:33:BC:E9:51:8E:50:80:1A:D7:A8:40:79:21:1C:AE
Certificate issuer: /CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Certificate serial: 018987C7CA546FAFBB24B73EF9BD44463A4A
Authority key identifier: AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/Ur6YQIkzvOlRjlCAGteoQHkhHK4.roa
Signing time: Mon 24 Jul 2023 12:02:44 +0000
ROA not before: Mon 24 Jul 2023 12:02:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19812
IP address blocks: 212.118.247.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:87:c7:ca:54:6f:af:bb:24:b7:3e:f9:bd:44:46:3a:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Validity
Not Before: Jul 24 12:02:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52be98408933bce9518e50801ad7a84079211cae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d8:89:cf:ae:79:cc:ca:ef:12:e3:e8:75:a5:
7c:70:bc:58:ec:75:e5:cd:04:13:d1:ae:d8:7b:82:
6a:a8:50:3f:42:58:49:4e:10:44:90:c5:c0:3b:b8:
48:bd:f6:48:a3:de:a1:36:3e:72:b5:c5:1d:ec:bb:
32:83:5b:9b:dd:b0:e2:0a:30:24:f0:70:26:87:ed:
ec:c5:12:24:71:dc:b1:e6:f7:66:93:54:f1:56:b4:
07:6e:be:03:70:e9:2c:f7:83:8c:df:9a:d6:88:25:
b3:81:2f:d2:6a:9d:93:c0:67:87:80:03:f6:ef:2b:
98:b3:82:89:87:14:f9:08:73:54:2f:36:5f:87:29:
b6:75:13:81:71:74:40:e3:fa:14:7f:68:58:eb:ed:
0c:a4:b3:33:91:75:04:14:78:17:fc:89:db:0b:be:
3d:d3:1a:3a:9f:bc:21:0c:14:98:01:f0:1b:56:33:
93:6b:f6:1c:67:5e:5f:91:53:c4:3c:35:c2:e2:3e:
1e:03:60:18:ce:bb:7f:1d:68:7d:e7:33:45:88:3d:
a9:50:36:91:88:c7:ce:ba:60:1b:9e:ac:42:79:0a:
c6:5c:f9:24:67:56:fd:cb:9a:d8:30:80:62:8e:10:
b1:67:b6:8d:cf:a7:b5:5a:4a:6d:99:be:eb:79:b6:
2a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:BE:98:40:89:33:BC:E9:51:8E:50:80:1A:D7:A8:40:79:21:1C:AE
X509v3 Authority Key Identifier:
keyid:AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/Ur6YQIkzvOlRjlCAGteoQHkhHK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.118.247.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:b1:a9:73:17:e3:d6:4a:07:1e:54:8f:a7:31:ea:2e:0c:16:
ec:5b:82:97:b2:37:b7:88:f4:2d:c5:ac:61:24:63:ca:de:09:
88:11:6d:96:12:26:8b:6c:70:12:27:a7:14:57:74:79:f1:4d:
2b:93:af:2b:4f:12:bd:c8:aa:e4:89:bb:1b:07:04:86:38:7e:
9f:8d:3e:c8:20:23:01:98:02:63:a6:57:d5:4e:14:88:ac:59:
d3:47:70:55:f4:01:6f:55:bb:29:c0:1e:89:fc:b6:b2:23:09:
5d:36:3b:b0:08:1a:9e:25:f1:da:ae:0d:55:db:b4:24:b5:a2:
3b:e9:85:ce:11:fa:22:5a:de:0c:c9:bc:b7:f0:f3:77:38:47:
7b:3b:dc:95:66:23:b6:62:9a:4d:ec:3f:58:18:47:a6:86:4c:
67:64:98:30:81:12:59:d3:3e:13:e8:d4:42:a0:c6:18:8f:13:
88:81:1a:04:32:c8:61:8b:23:a7:cc:80:8e:2a:c0:38:17:69:
c8:d0:f1:3c:2d:6e:4f:3e:49:5e:72:fe:2f:1d:75:c8:ee:bb:
bc:b0:1f:69:e3:3d:49:3b:03:0e:7f:f7:40:c7:2a:d1:d0:29:
7a:b6:48:37:9f:53:46:c3:5d:a0:42:c5:7f:54:6c:5a:b2:3d:
56:80:f4:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:28:09 2024 by rpki-client on console-fra.rpki-client.org