Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/O0eb-fBdSJL9Ir8ZAAbNI-FACVc.roa
File: O0eb-fBdSJL9Ir8ZAAbNI-FACVc.roa (raw, json)
Hash identifier: TX+rXpdGBl84VG4AIREhX3W+uunPTGOY7LQaNrJe478=
Subject key identifier: 3B:47:9B:F9:F0:5D:48:92:FD:22:BF:19:00:06:CD:23:E1:40:09:57
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 0185710C327E863ACDD0435065114E8D1546
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/O0eb-fBdSJL9Ir8ZAAbNI-FACVc.roa
Signing time: Mon 02 Jan 2023 05:55:02 +0000
ROA not before: Mon 02 Jan 2023 05:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 212.60.16.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:32:7e:86:3a:cd:d0:43:50:65:11:4e:8d:15:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Jan 2 05:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b479bf9f05d4892fd22bf190006cd23e1400957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:77:a3:1f:12:2a:4e:64:93:b6:11:b9:f3:c8:
d8:96:4c:cc:20:5f:a5:fd:a9:24:60:1a:cd:94:ae:
f4:f6:70:b3:ce:20:cf:ca:5a:ae:eb:5a:57:1b:48:
6f:e2:72:51:7b:49:21:6d:eb:7d:08:0c:8b:04:dd:
0b:fd:b3:c6:ac:89:a9:d7:e1:97:fa:6e:73:d1:5c:
e4:4b:86:3b:74:2f:04:85:ff:68:30:b1:a7:6d:eb:
70:21:cb:ef:de:6b:a3:3c:6a:9b:28:98:a7:62:b9:
72:96:84:b6:f6:21:1d:39:d4:89:fe:5b:44:7c:0a:
1f:6a:db:3c:f5:f6:07:f4:44:df:5e:d4:c2:2a:7c:
0a:dc:30:fc:f1:23:84:02:b6:6c:8e:be:62:e3:60:
6e:e0:14:8f:45:ce:3e:94:b5:53:e0:eb:e5:26:f4:
5b:24:8d:88:7b:66:13:48:10:4f:35:e5:c4:b8:81:
2e:a2:ad:3a:7a:64:9c:22:87:86:6b:1e:bc:7b:22:
99:81:13:4b:60:28:f2:4a:b8:9d:a2:7c:a7:fe:3e:
47:e2:53:7b:f0:5c:16:4c:fd:b9:9f:02:69:60:c7:
67:0d:aa:0c:1a:c2:89:0f:9f:b7:dd:68:48:8b:47:
be:f1:27:e0:24:1f:bb:13:7c:90:3f:ed:d5:8b:6d:
da:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:47:9B:F9:F0:5D:48:92:FD:22:BF:19:00:06:CD:23:E1:40:09:57
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/O0eb-fBdSJL9Ir8ZAAbNI-FACVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.60.16.0/23
Signature Algorithm: sha256WithRSAEncryption
69:9e:1d:a6:b8:1f:a5:98:35:4d:d7:0b:54:6e:9c:0e:8e:a2:
66:88:97:55:f3:09:9f:14:95:97:0d:6b:70:fe:fb:62:98:b0:
3a:df:14:e5:29:fd:77:70:14:c3:a7:90:51:2a:84:23:57:e9:
49:1f:07:c4:fb:b2:94:f5:c4:cd:03:c4:5b:fb:3a:d2:62:59:
12:2a:4a:b6:58:88:d8:e2:dc:4a:b6:68:23:9d:0d:b8:5f:f8:
a5:95:cf:ec:83:87:57:bc:9c:58:cb:f0:a7:44:84:5f:86:af:
0d:23:52:a9:af:4f:d9:c2:d8:c9:ed:dc:0b:ed:83:4a:f5:61:
23:1b:04:4b:61:51:77:ae:e4:c5:a4:cc:8c:ec:2b:f8:5b:b8:
3f:56:c5:07:e6:cd:bb:70:91:3b:43:28:e4:c2:69:3d:7e:77:
48:4a:da:02:e6:04:2a:bd:f9:92:26:02:28:5f:de:32:d3:dc:
0a:f2:74:30:86:f8:63:38:b9:6f:0c:50:df:9e:55:43:b5:a7:
28:33:49:bb:80:9b:da:ca:80:cc:be:68:c6:63:9b:46:a4:be:
3c:8b:4d:a3:83:ea:17:80:79:bc:ba:2d:5f:ad:a5:f2:8f:0e:
e8:6e:dc:86:51:bc:1b:49:1f:dd:72:9d:b1:a1:af:cb:2e:62:
5e:7f:43:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:54 2024 by rpki-client on console-fra.rpki-client.org