Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/MIDHjJGCe9n9HCNwbQcp7uzhizk.roa
File: MIDHjJGCe9n9HCNwbQcp7uzhizk.roa (raw, json)
Hash identifier: Y8t7Cbtyd4ONMs/s+LHefL5XkGfdZwCOlwms28PXBeY=
Subject key identifier: 30:80:C7:8C:91:82:7B:D9:FD:1C:23:70:6D:07:29:EE:EC:E1:8B:39
Certificate issuer: /CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Certificate serial: 01856FB12083D90B92880E24719714FADEB2
Authority key identifier: E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/MIDHjJGCe9n9HCNwbQcp7uzhizk.roa
Signing time: Sun 01 Jan 2023 23:35:57 +0000
ROA not before: Sun 01 Jan 2023 23:35:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208787
IP address blocks: 212.103.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b1:20:83:d9:0b:92:88:0e:24:71:97:14:fa:de:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Validity
Not Before: Jan 1 23:35:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3080c78c91827bd9fd1c23706d0729eeece18b39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:da:db:6f:ee:2a:2e:08:1e:94:85:fb:a7:79:
cf:4c:96:23:bb:54:c5:67:28:14:3f:74:1c:cd:6e:
34:76:4c:d0:4a:04:c5:6d:b7:53:80:0e:1b:2d:0e:
60:0b:2b:ab:34:44:2b:ea:ba:bf:2a:2f:fb:b9:a3:
55:11:81:18:72:5f:55:ef:47:16:17:56:e1:3c:89:
37:e1:fb:eb:dc:b3:d3:cd:35:84:27:c5:37:88:a3:
d6:6d:fd:e5:cd:38:df:5b:77:7a:e8:d7:2f:59:d8:
33:e1:37:b0:95:25:de:1e:a7:b9:27:1f:d3:c5:61:
dd:b0:5f:66:8f:a7:eb:89:13:60:d5:f5:87:da:d0:
e7:66:3f:e1:4f:7a:d1:b0:14:7e:42:74:60:b0:58:
6f:dc:a3:58:4f:9a:4a:c0:79:a0:ff:ea:77:25:96:
01:e9:4a:8f:ff:65:ee:ec:41:cf:e2:10:28:9b:c4:
05:03:37:c1:f2:3f:a5:a5:f1:44:31:4c:08:91:9e:
cc:94:9e:4c:cf:d6:84:20:b9:5a:52:a6:3c:e4:76:
68:61:bf:6a:e1:a2:6d:49:e0:f1:58:3f:74:c3:68:
a5:2f:c2:2f:50:02:b2:41:1c:d6:e4:07:77:c2:e5:
aa:5c:5a:a5:ca:e4:5f:da:05:d7:ba:9a:e2:47:52:
1e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:80:C7:8C:91:82:7B:D9:FD:1C:23:70:6D:07:29:EE:EC:E1:8B:39
X509v3 Authority Key Identifier:
keyid:E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/MIDHjJGCe9n9HCNwbQcp7uzhizk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/4tDEmg6X4NXzztO3trn3LKDLU9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.103.41.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:c9:ae:8f:e1:9e:cb:39:7e:dc:10:0b:c9:16:04:52:70:c7:
fa:cb:db:6e:16:1d:5d:25:e0:e5:17:ce:a3:c9:bc:83:b8:ab:
2e:c7:98:25:86:59:7f:5e:52:e1:a2:54:48:cc:15:da:76:f4:
c0:e4:ef:4d:ae:c4:21:17:44:f8:e5:fc:69:4a:9c:09:21:ba:
6d:41:76:77:ca:4d:be:6d:36:b7:41:4e:07:e6:8e:e5:78:d5:
70:bb:65:0e:d3:aa:a5:ab:8d:93:7e:3e:7a:84:ee:89:0b:f1:
82:b2:f3:fa:01:c4:e1:19:ea:b9:53:a5:28:ef:90:39:93:e7:
2f:e8:a0:07:02:e0:0a:2a:50:f4:88:45:01:67:cf:20:ea:24:
18:b5:4e:6d:db:97:cc:11:f4:9b:87:fe:3a:46:1e:5e:31:cf:
69:a1:96:31:cf:63:49:58:3c:c3:f9:dd:7e:13:16:cb:5f:0a:
37:fa:6d:63:d5:04:ec:f4:71:74:22:08:25:43:b4:36:6e:ab:
47:f4:2d:a9:bb:47:a7:a3:2a:6d:ed:02:a6:80:e2:91:58:6e:
97:b4:37:b7:e2:bb:ec:72:2c:ac:6f:31:00:0a:4b:25:da:97:
83:0f:a5:7d:8f:9e:7e:26:ea:a1:42:87:2b:c9:74:f9:a0:20:
e0:dc:ec:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:48 2024 by rpki-client on console-fra.rpki-client.org