Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/RYat6PLpgGVXxNiP1MUcp6Lz4cA.roa
File: RYat6PLpgGVXxNiP1MUcp6Lz4cA.roa (raw, json)
Hash identifier: z0lGopst0eqAeGTDm32XR65EXzqe07BEizodCIrzYe4=
Subject key identifier: 45:86:AD:E8:F2:E9:80:65:57:C4:D8:8F:D4:C5:1C:A7:A2:F3:E1:C0
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018972350D8E2B8DEFE0A09C9D1B3E6DCE0F
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/RYat6PLpgGVXxNiP1MUcp6Lz4cA.roa
Signing time: Thu 20 Jul 2023 07:30:26 +0000
ROA not before: Thu 20 Jul 2023 07:30:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212370
IP address blocks: 212.119.35.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:72:35:0d:8e:2b:8d:ef:e0:a0:9c:9d:1b:3e:6d:ce:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jul 20 07:30:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4586ade8f2e9806557c4d88fd4c51ca7a2f3e1c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:93:f5:a4:b0:9e:35:da:43:27:74:b4:91:85:
9c:20:6d:d2:fb:0a:a4:b9:20:0f:6e:dc:2f:9a:47:
33:03:96:f6:c4:6c:9b:43:c4:4e:b8:d4:fc:4f:0f:
9a:0b:84:9f:cc:8d:04:c8:fe:5c:c1:45:20:38:55:
a6:62:19:56:1b:63:8a:65:fc:31:85:d0:39:cb:71:
f4:78:ce:8e:6e:8d:a4:ae:77:82:62:7f:41:d1:30:
52:87:43:0d:a0:ba:5f:71:a9:a8:4b:08:19:c1:f5:
dd:7e:72:d4:a1:2d:42:ed:ae:87:48:f9:fb:5b:1c:
8b:31:f7:b2:62:6e:98:38:73:99:39:53:02:b9:96:
96:b1:a0:67:a7:d9:84:35:46:51:5b:4b:8e:a0:33:
23:51:64:1e:10:61:ac:95:ac:d4:ca:82:8d:1c:c9:
db:aa:c0:d0:6f:6e:aa:7b:f4:a9:dc:4e:f1:79:68:
30:8a:80:ae:18:38:29:e4:11:c1:36:27:cf:37:dc:
71:0f:25:61:ee:6b:ef:17:68:cb:90:0e:db:a2:84:
bb:f5:b8:57:e2:f0:e9:cd:c5:6d:31:6d:87:3d:3b:
95:0d:70:58:97:cf:ee:9d:65:fc:f5:e9:62:62:22:
a8:a2:aa:e4:35:26:7e:cb:1c:cb:b8:95:b8:1c:66:
8d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:86:AD:E8:F2:E9:80:65:57:C4:D8:8F:D4:C5:1C:A7:A2:F3:E1:C0
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/RYat6PLpgGVXxNiP1MUcp6Lz4cA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.119.35.0/24
Signature Algorithm: sha256WithRSAEncryption
89:dd:26:8b:45:c3:24:c8:32:d1:9f:a1:78:09:33:61:c3:83:
d3:8b:00:b6:45:ad:58:d6:25:4d:20:d6:47:b3:1b:4c:fc:4b:
86:0d:0a:12:59:4a:6e:5f:7e:63:e8:50:3f:71:cc:ce:59:af:
af:c4:6b:d7:e3:1e:ee:b0:f9:51:3f:06:5e:a3:9b:34:98:39:
52:77:f8:98:94:af:75:16:ac:c5:97:29:ff:04:3b:9c:e2:5d:
2a:47:78:79:b7:5d:89:66:5a:42:56:91:94:ca:3c:68:7d:a3:
8e:94:07:05:a5:68:48:09:6f:6a:9f:64:ce:45:c8:7b:74:6f:
1e:c7:27:b3:bd:29:2a:80:6d:8e:5a:d6:42:0f:dd:da:70:63:
ae:75:94:79:6f:d5:cd:73:ce:78:d0:03:cc:42:f9:44:a9:55:
51:f1:48:3a:cf:01:2e:44:d0:1c:fa:ba:96:4e:4f:31:61:0c:
f0:e5:ef:75:36:4d:bf:ec:a4:93:a3:e1:06:1e:25:06:69:1e:
13:ce:79:62:45:69:23:e5:94:e8:d2:96:fd:63:3b:46:3b:1d:
24:37:f3:2d:87:55:14:a7:f2:dc:4f:be:ae:5e:26:b1:4f:1e:
0e:20:5d:e1:55:80:5d:b6:48:47:51:b0:b0:d0:1b:96:b1:60:
5c:52:30:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 4 08:52:10 2023 by rpki-client on console-ams.rpki-client.org