Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/flujtzNhrKQWcMwEqwbA-9TKc08.roa
File: flujtzNhrKQWcMwEqwbA-9TKc08.roa (raw, json)
Hash identifier: 99chZ78Ha7iO0hgkc8ka8xsh/UzJJ7JsvrjmzRlSbBQ=
Subject key identifier: 7E:5B:A3:B7:33:61:AC:A4:16:70:CC:04:AB:06:C0:FB:D4:CA:73:4F
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 01896E27C41149BB3786401D1C0E3E3537BD
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/flujtzNhrKQWcMwEqwbA-9TKc08.roa
Signing time: Wed 19 Jul 2023 12:37:27 +0000
ROA not before: Wed 19 Jul 2023 12:37:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60528
IP address blocks: 212.119.35.0/24 maxlen: 24
62.197.129.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6e:27:c4:11:49:bb:37:86:40:1d:1c:0e:3e:35:37:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jul 19 12:37:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e5ba3b73361aca41670cc04ab06c0fbd4ca734f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:aa:be:5a:62:17:cd:cd:3d:b8:0e:ae:70:c8:
e7:f3:fa:7f:73:c4:ce:8b:e2:ad:79:ed:60:37:1e:
9a:64:a0:b6:30:d4:66:d3:ed:d5:e4:d3:f5:ac:58:
ce:89:f4:16:c1:ee:f6:2f:1b:c3:09:cf:f9:9d:09:
1c:ee:a3:30:ba:91:0e:ff:8f:3b:fb:84:24:9c:7e:
17:d2:4d:df:95:01:06:71:7f:ee:9d:f9:3f:b0:e2:
c7:cf:fa:64:f8:81:55:33:d1:97:58:b1:77:48:db:
02:95:5e:16:7d:6e:5e:29:1f:1c:5d:8e:1b:8e:fc:
b8:81:b5:ca:0e:e6:6f:44:7a:d6:1a:77:2c:ab:e8:
fb:21:3d:83:90:3f:32:eb:e5:c7:de:0d:52:bb:51:
60:b9:cb:5d:5f:58:5e:e5:a6:9a:eb:db:20:78:0f:
68:49:3b:a7:1e:5d:fb:e9:fb:c3:30:b6:01:3b:7b:
5a:5a:58:10:46:f3:0b:12:11:3b:15:dc:d8:cd:b3:
08:d2:0a:ae:11:5a:b7:e2:56:ef:45:22:57:bc:36:
e8:de:d8:42:f8:fe:6f:90:ac:09:1c:f4:bc:a7:9c:
cb:d5:bc:1d:82:4a:7d:25:eb:61:6e:66:4c:3f:3c:
f0:45:95:4f:38:8e:33:09:77:9f:0a:ce:bf:5f:e3:
0a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:5B:A3:B7:33:61:AC:A4:16:70:CC:04:AB:06:C0:FB:D4:CA:73:4F
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/flujtzNhrKQWcMwEqwbA-9TKc08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.197.129.0/24
212.119.35.0/24
Signature Algorithm: sha256WithRSAEncryption
71:f4:90:87:a1:52:d1:54:bc:b2:9d:20:f5:9a:d6:90:a6:e3:
d4:92:6c:5c:c8:d7:ce:90:7f:05:0a:3f:4b:1f:0b:44:4d:3d:
a0:79:5a:7d:65:81:b2:5a:37:eb:83:93:c9:5c:db:79:84:b1:
32:76:f9:7c:48:03:b6:26:ed:e2:ae:59:8e:a8:71:78:37:88:
97:55:b7:81:4d:0a:97:82:db:93:65:70:90:73:68:f8:a5:03:
f6:4f:d7:0c:a0:ac:22:e4:53:4f:f8:46:ee:9d:2c:56:87:cb:
8a:5b:4e:fc:70:5d:63:6d:cd:1c:aa:5a:1f:5a:3c:b9:68:53:
e8:a5:99:93:db:6c:c5:c0:7e:bd:8e:02:74:1b:29:9b:93:1a:
05:1b:97:6f:2e:04:c3:4a:9d:ca:19:e8:b8:55:25:74:c6:a3:
1d:a1:f0:33:82:4c:4d:03:76:cb:88:3f:41:f4:7a:08:d0:a6:
ba:c8:f8:78:11:ae:60:a9:21:a2:59:3a:e4:5e:af:9e:dd:af:
35:6b:d6:13:51:db:88:2c:50:66:0f:ee:39:20:b3:81:92:82:
ed:9d:ad:8c:f3:f3:ed:6d:e8:e8:e3:36:89:28:bf:94:89:b0:
bd:77:0d:fc:5c:e1:7b:c1:3e:05:01:a6:22:1e:79:58:95:78:
dc:fb:01:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 4 08:44:48 2023 by rpki-client on console-fra.rpki-client.org