Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/zwHvuWmilTmZdU5vTnjTriOI4lc.roa
File: zwHvuWmilTmZdU5vTnjTriOI4lc.roa (raw, json)
Hash identifier: Ii9EFCwFO7iS+woKP+N8Fe0eAwAAKOy3tyxLk/qBACk=
Subject key identifier: CF:01:EF:B9:69:A2:95:39:99:75:4E:6F:4E:78:D3:AE:23:88:E2:57
Certificate issuer: /CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Certificate serial: 0188EEF5A89C4144E00EB43ACCA9D60E8371
Authority key identifier: F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/zwHvuWmilTmZdU5vTnjTriOI4lc.roa
Signing time: Sat 24 Jun 2023 19:50:56 +0000
ROA not before: Sat 24 Jun 2023 19:50:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399471
IP address blocks: 123.253.212.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ee:f5:a8:9c:41:44:e0:0e:b4:3a:cc:a9:d6:0e:83:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Validity
Not Before: Jun 24 19:50:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf01efb969a2953999754e6f4e78d3ae2388e257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1f:3a:f4:19:3a:e7:57:3d:21:f0:8b:0e:61:
7e:5c:b9:a5:b5:c1:98:ef:07:62:aa:b5:24:79:db:
ec:bc:6d:cc:b6:d2:d2:f6:e8:a5:23:b6:bd:23:45:
9a:33:d6:42:c6:37:e7:ec:da:1c:a6:20:3d:07:fe:
90:6c:1a:2a:43:91:77:67:e9:6b:9f:f4:be:40:30:
50:7b:3e:59:bb:b2:f8:f3:64:5f:45:1e:83:12:5d:
77:0d:86:22:76:03:b5:e9:ee:11:61:79:9f:60:0f:
d4:b4:65:17:6b:82:34:94:e3:1f:4b:25:98:e0:5f:
97:37:90:a5:50:ec:8d:2f:9f:58:38:ee:2c:fc:86:
bf:93:c3:bd:df:3b:a1:40:f6:4d:53:da:b4:58:99:
b4:4e:c2:90:4c:80:4e:0e:df:7a:90:56:ea:8d:c4:
c3:e4:df:0c:11:03:d9:5a:3e:85:85:c2:34:86:89:
aa:13:99:ba:be:a5:5b:85:8d:69:78:e8:5c:48:aa:
1f:0f:79:ce:20:6c:64:5d:69:bf:e5:43:06:48:ab:
f9:8f:7d:9f:a4:e6:8b:8a:e4:1e:83:de:7e:f9:ad:
5b:9d:bc:2c:1f:b2:2b:2d:41:b3:35:9a:78:4a:7a:
da:5c:40:c6:aa:ce:59:d0:91:74:e2:b2:51:8d:39:
ec:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:01:EF:B9:69:A2:95:39:99:75:4E:6F:4E:78:D3:AE:23:88:E2:57
X509v3 Authority Key Identifier:
keyid:F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/zwHvuWmilTmZdU5vTnjTriOI4lc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/8E6yBPNYAEeIIk4vsY5NXnS-v40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
123.253.212.0/24
Signature Algorithm: sha256WithRSAEncryption
83:0f:3f:11:5c:04:98:17:5f:bc:57:b0:39:85:cc:8e:dd:8d:
40:91:89:52:a6:a9:1b:f6:a6:64:63:e9:aa:81:c6:bf:47:8e:
81:d3:32:19:14:9b:bd:2b:ce:92:b1:a3:35:ff:eb:d0:dc:bb:
95:4d:b9:a8:fd:7d:8c:62:16:27:4d:d5:c9:d3:ff:ca:56:f0:
ad:31:82:67:3f:7e:6b:b9:b8:91:b4:fd:a9:95:41:77:9e:a3:
69:d5:3e:9e:d8:6c:69:99:88:93:fe:c2:db:c3:24:4c:44:8e:
2b:f3:fe:5b:da:e8:3a:98:54:0d:30:9b:a1:68:4e:39:4e:04:
28:69:0b:8d:40:e6:19:d0:e6:32:be:2d:17:22:27:e0:68:4f:
5c:3a:3a:ef:f8:08:81:e0:5f:ce:30:b2:bb:52:12:c0:74:8a:
3f:7c:29:cf:fa:37:0a:e2:52:13:db:ca:43:3a:d1:f4:53:b3:
db:db:4f:b6:0f:70:dc:e6:d9:ca:05:43:76:1f:b2:ec:9d:ad:
13:f9:7e:8d:c0:fc:e1:34:a2:1c:2a:cc:5f:de:08:d7:fd:ee:
af:a8:e2:fc:fa:e3:50:44:04:a1:a9:c9:4c:03:7e:44:62:77:
78:0a:63:6f:53:3d:be:20:f7:f7:26:18:e9:e8:be:73:78:54:
21:68:09:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:33 2023 by rpki-client on console-ams.rpki-client.org