Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/2ba25a-0abd-4550-bca4-0b7f15b509cb/1/68C-7aHOGPO3SasS96EvwxicmdU.roa
File: 68C-7aHOGPO3SasS96EvwxicmdU.roa (raw, json)
Hash identifier: 5NQ8zIS9LIC3OV9SVCPOqG33VtqxTawzVzwH3YxP8hg=
Subject key identifier: EB:C0:BE:ED:A1:CE:18:F3:B7:49:AB:12:F7:A1:2F:C3:18:9C:99:D5
Certificate issuer: /CN=a7aee67620d9c0ae63d295785c9d956f063c21c3
Certificate serial: 0185719588584D6BA957852A1280DD6C835C
Authority key identifier: A7:AE:E6:76:20:D9:C0:AE:63:D2:95:78:5C:9D:95:6F:06:3C:21:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p67mdiDZwK5j0pV4XJ2VbwY8IcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/2ba25a-0abd-4550-bca4-0b7f15b509cb/1/68C-7aHOGPO3SasS96EvwxicmdU.roa
Signing time: Mon 02 Jan 2023 08:25:03 +0000
ROA not before: Mon 02 Jan 2023 08:25:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8879
IP address blocks: 212.101.192.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:88:58:4d:6b:a9:57:85:2a:12:80:dd:6c:83:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7aee67620d9c0ae63d295785c9d956f063c21c3
Validity
Not Before: Jan 2 08:25:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebc0beeda1ce18f3b749ab12f7a12fc3189c99d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a9:f8:51:3a:50:d7:b3:d2:bc:e7:f9:28:61:
1d:6d:25:c6:c8:4b:43:ff:eb:8f:da:da:0d:80:73:
20:b5:51:74:aa:b6:64:53:f4:a1:e7:6e:93:b1:fd:
f4:72:bd:53:77:83:dd:e0:7b:23:12:fb:11:a6:28:
31:ac:47:9f:22:a6:81:4b:9e:35:8f:b9:3c:50:2c:
70:7b:1c:3f:c0:21:ae:ed:9a:7d:b5:61:4a:62:cd:
e8:5e:c7:38:21:74:fb:b0:a8:38:a4:b7:cc:b2:13:
4e:8f:d7:bb:76:83:45:04:30:ab:8c:98:10:8d:df:
33:fe:a0:82:b3:20:4f:87:70:cf:2e:67:2c:17:3a:
ab:f8:e8:a9:26:62:41:52:d0:54:44:d3:dd:34:a4:
1a:f9:27:ac:8f:d3:69:1d:86:df:4c:38:06:50:5c:
43:9e:54:df:2c:da:82:6c:a5:ad:46:98:e0:3e:d6:
4a:c5:f7:3a:a4:bc:f3:d9:c4:8c:b4:91:dc:4d:b5:
3d:01:67:a5:7d:68:41:44:bc:63:bd:3b:d1:af:94:
c5:15:c4:35:26:88:78:9e:2c:c5:78:cc:ef:ee:92:
80:46:f8:1c:15:4b:c7:8b:ad:1b:04:be:09:bf:86:
c6:5f:43:22:0e:6c:69:5a:97:64:a1:16:b7:cd:ee:
41:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:C0:BE:ED:A1:CE:18:F3:B7:49:AB:12:F7:A1:2F:C3:18:9C:99:D5
X509v3 Authority Key Identifier:
keyid:A7:AE:E6:76:20:D9:C0:AE:63:D2:95:78:5C:9D:95:6F:06:3C:21:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p67mdiDZwK5j0pV4XJ2VbwY8IcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/2ba25a-0abd-4550-bca4-0b7f15b509cb/1/68C-7aHOGPO3SasS96EvwxicmdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/2ba25a-0abd-4550-bca4-0b7f15b509cb/1/p67mdiDZwK5j0pV4XJ2VbwY8IcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.101.192.0/19
Signature Algorithm: sha256WithRSAEncryption
a0:a7:f0:2a:ff:f3:1b:28:59:c1:1e:50:cb:8a:25:67:9e:02:
89:09:bd:de:a1:7b:61:98:f7:21:b0:f7:5a:76:e0:f6:46:f8:
ca:6e:93:48:dd:49:74:a3:d3:39:7d:a7:d3:39:d2:45:96:5d:
47:dc:59:1a:57:f1:60:c3:49:72:ea:10:c5:c6:61:70:6d:ad:
e1:4c:8d:f1:99:b1:ac:35:b9:44:6d:3d:34:35:69:16:cb:59:
e8:fd:91:02:8a:4d:91:97:46:09:7a:7d:d3:06:5d:8a:29:7e:
50:ee:e3:dd:0b:18:fb:8c:e9:e9:97:df:11:1f:4c:0f:ab:ad:
a9:1c:49:6f:34:15:05:c0:ed:29:2f:e6:2e:a7:88:c2:6f:81:
0a:ac:fb:3f:02:a0:05:51:82:5e:18:31:e7:3e:5d:54:a4:51:
87:3d:14:ba:9d:60:67:1d:0d:b7:05:b1:34:f1:f8:bb:59:45:
bc:b0:37:33:f1:cf:f9:03:0d:55:c1:b7:8b:bb:86:68:5b:88:
45:6a:1d:dd:ca:c2:1c:e7:bb:bd:7e:96:a8:6a:f5:7f:7f:67:
b5:10:fe:87:f7:e9:e9:e9:1c:6f:4f:33:6b:ae:b6:30:50:bb:
42:10:cb:a2:d7:0d:c2:ec:9d:ff:4d:d8:47:d4:e1:e1:0e:29:
5c:57:30:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:41 2024 by rpki-client on console-ams.rpki-client.org