Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/CJDYdH5zk5gJ_B3wC30NZa8rJYw.roa
File: CJDYdH5zk5gJ_B3wC30NZa8rJYw.roa (raw, json)
Hash identifier: 5wd89p27kEhU9uMAJ1HHJ/hlbWpgqypryZ2cixYMOqU=
Subject key identifier: 08:90:D8:74:7E:73:93:98:09:FC:1D:F0:0B:7D:0D:65:AF:2B:25:8C
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 01857295AF5AF77573B8A26274E6B864A8DC
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/CJDYdH5zk5gJ_B3wC30NZa8rJYw.roa
Signing time: Mon 02 Jan 2023 13:04:50 +0000
ROA not before: Mon 02 Jan 2023 13:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43940
IP address blocks: 212.200.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:af:5a:f7:75:73:b8:a2:62:74:e6:b8:64:a8:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Jan 2 13:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0890d8747e73939809fc1df00b7d0d65af2b258c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:55:9f:d8:1a:c5:94:d4:e0:d8:da:b6:7c:10:
af:b1:bd:d8:7e:67:ed:0a:08:e5:bb:ec:fe:7c:6c:
95:cb:fe:49:63:f3:6b:79:15:cf:8f:ff:70:62:ad:
64:01:57:4e:74:6b:d0:e7:84:d5:ad:49:30:58:06:
22:42:ef:11:f1:a0:24:a8:dc:a8:b3:b3:96:f2:bd:
6b:cb:3f:f4:7e:56:7a:c2:e9:0a:38:c9:6d:5d:ef:
34:bc:5e:be:cb:93:f8:18:99:15:e0:f4:41:8e:3d:
87:31:1a:96:e3:dc:1c:c8:ef:8b:2a:d9:04:ef:1e:
f6:47:28:3f:3f:8a:1f:43:0e:af:fd:7c:22:1b:8b:
c9:50:b4:0b:75:6f:7a:f3:5d:49:30:90:e7:18:a5:
35:2a:51:a5:56:06:6d:31:de:6a:30:3a:7d:56:06:
07:a9:5c:74:d6:cf:f2:fd:3d:d0:e6:ee:50:27:9f:
6d:de:1a:bf:e8:ba:ef:76:c5:70:ff:b4:73:80:69:
22:64:b0:5d:b4:43:5f:2e:73:4f:c8:a5:c2:00:93:
19:13:5b:ff:09:09:c2:1d:ef:44:ee:62:a0:49:5f:
23:b7:ae:8e:ed:f5:e5:bb:bd:95:8e:1c:99:f2:81:
36:78:1f:04:5b:c3:3e:d4:4b:12:28:84:00:48:1f:
86:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:90:D8:74:7E:73:93:98:09:FC:1D:F0:0B:7D:0D:65:AF:2B:25:8C
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/CJDYdH5zk5gJ_B3wC30NZa8rJYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.200.246.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:73:48:8c:97:5e:78:22:1d:60:1c:08:e2:99:5e:6b:92:fc:
0b:9e:e5:00:74:c8:a0:36:05:dc:f3:93:13:5c:a3:9b:52:ec:
cd:42:ab:e0:9d:34:33:56:04:82:cf:4d:e4:08:2c:21:79:53:
f3:71:6b:c5:2f:d1:22:b5:db:00:02:b9:aa:73:ec:6e:e7:0b:
7d:25:43:9e:ce:37:dc:03:98:50:07:bd:18:5b:69:96:54:7f:
80:7e:5e:75:f4:50:8d:48:16:42:69:28:f7:15:fd:42:62:1d:
15:26:57:6e:3e:bd:2c:49:8f:bc:2d:27:fb:5c:8b:38:96:a8:
e5:58:b7:b3:b1:64:a6:a8:63:24:90:af:e4:9b:74:af:75:07:
84:16:7b:b4:12:3d:ef:1d:f1:ed:59:b1:7b:f1:5b:9c:99:d6:
61:43:81:cd:f9:27:08:f6:11:02:fe:5e:b4:00:8d:10:aa:4d:
e5:b6:1a:76:58:a2:33:67:3c:a4:af:9b:9f:f3:4c:df:ec:79:
5c:cb:ad:21:59:a6:14:46:58:fb:8a:de:fa:39:b2:91:b1:06:
4d:c0:d9:09:a6:8d:10:d2:0d:4f:e5:51:bb:1a:27:65:8c:64:
fd:17:fb:7f:19:3b:c8:77:27:4b:3b:1f:be:fe:31:10:3e:30:
8a:b8:0b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:32 2024 by rpki-client on console-fra.rpki-client.org