Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/1-D-RkliGygHi-WiGTu80br-y6w4.roa
File: 1-D-RkliGygHi-WiGTu80br-y6w4.roa (raw, json)
Hash identifier: wlh4rAzNe1ibvwABt8BKFI2VwE3CulJMF2Y6Ccc4S1Y=
Subject key identifier: F8:3F:91:92:58:86:CA:01:E2:F9:68:86:4E:EF:34:6E:BF:B2:EB:0E
Certificate issuer: /CN=bc8a3bc47d13c83f7d1cf72a137e0066f83d0608
Certificate serial: 01863BD459ADA03E673041F483322762BC05
Authority key identifier: BC:8A:3B:C4:7D:13:C8:3F:7D:1C:F7:2A:13:7E:00:66:F8:3D:06:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vIo7xH0TyD99HPcqE34AZvg9Bgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/1-D-RkliGygHi-WiGTu80br-y6w4.roa
Signing time: Fri 10 Feb 2023 14:56:57 +0000
ROA not before: Fri 10 Feb 2023 14:56:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9076
IP address blocks: 212.104.0.0/20 maxlen: 20
212.104.32.0/20 maxlen: 20
Validation: Failed, certificate revoked on Fri 10 Feb 2023 15:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3b:d4:59:ad:a0:3e:67:30:41:f4:83:32:27:62:bc:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc8a3bc47d13c83f7d1cf72a137e0066f83d0608
Validity
Not Before: Feb 10 14:56:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f83f91925886ca01e2f968864eef346ebfb2eb0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f5:47:ac:c3:3a:47:42:03:e5:65:8a:aa:3f:
b3:b8:e8:7f:7e:0e:87:a2:be:32:ad:59:f6:c1:ef:
40:6a:34:4b:e9:88:83:fb:28:99:2b:be:92:c4:41:
fa:17:ab:e1:41:44:58:8e:6c:9e:de:da:80:8a:1b:
9e:e8:da:0a:ab:ef:5a:f3:5f:c3:9b:c8:99:65:50:
b2:a2:35:a5:30:06:a8:0e:da:1c:74:15:3f:e6:f9:
b0:40:55:d2:69:59:cc:89:3c:97:3c:dc:9c:cd:78:
8b:c5:a1:44:47:f7:af:07:6b:13:29:15:46:05:37:
29:f5:d2:4c:cd:db:02:d4:7a:46:1c:60:d9:5f:7a:
6b:c8:08:5b:63:04:9d:7c:96:72:7d:3f:7d:32:be:
e7:df:3b:f5:27:9c:1f:69:2a:59:58:15:44:cc:6a:
57:95:94:ac:a1:49:6c:1d:20:79:36:bf:49:71:8b:
6f:84:fe:ac:1a:b7:89:76:46:9c:6c:1d:78:00:15:
b6:1d:0c:b0:cb:6e:36:ae:fd:a7:59:69:e7:a6:ea:
10:f8:35:0a:94:1f:fa:b2:9b:7b:ed:8d:c1:a7:5b:
1f:14:5b:0e:d4:44:7c:de:70:16:c4:74:0a:47:29:
41:4c:90:49:43:a3:49:21:46:38:fd:f6:80:6f:91:
23:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:3F:91:92:58:86:CA:01:E2:F9:68:86:4E:EF:34:6E:BF:B2:EB:0E
X509v3 Authority Key Identifier:
keyid:BC:8A:3B:C4:7D:13:C8:3F:7D:1C:F7:2A:13:7E:00:66:F8:3D:06:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vIo7xH0TyD99HPcqE34AZvg9Bgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/1-D-RkliGygHi-WiGTu80br-y6w4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/vIo7xH0TyD99HPcqE34AZvg9Bgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.104.0.0/20
212.104.32.0/20
Signature Algorithm: sha256WithRSAEncryption
b6:59:75:c2:88:d8:1f:1d:a3:08:5c:1a:cc:a7:3a:41:de:a2:
e6:df:a2:4a:16:82:f9:cd:78:ab:f9:f8:64:df:85:0c:eb:27:
a3:e7:5e:48:e2:d2:75:84:bb:20:f7:40:45:0b:2f:88:81:31:
cb:76:f9:f0:41:c2:bf:33:07:88:b8:6f:23:7c:92:1d:e8:d6:
d9:0a:aa:bb:26:31:9c:68:cf:b6:96:71:2e:5d:a1:3d:03:af:
60:06:f9:a8:75:cf:45:0c:f4:52:f4:5a:8f:4a:95:95:aa:e7:
98:6d:ba:19:cc:16:0b:f5:bc:e6:94:5e:05:e9:09:2b:46:18:
b1:9a:26:f6:1b:5a:7d:49:b8:b3:9f:33:e6:f2:fc:af:7a:4a:
9c:9e:fc:53:77:70:97:5b:d0:8a:62:6a:a0:fb:ab:66:f8:55:
2b:64:9e:82:28:46:88:b6:d1:16:27:64:2e:7c:13:de:b0:49:
79:9c:53:6e:c2:8c:48:e9:59:6a:8b:d7:4c:53:6e:88:60:c2:
62:82:30:b2:2f:e6:b6:0c:21:d4:aa:1c:e7:06:be:e2:d0:c2:
33:cd:6e:08:13:e8:4f:1f:7c:b2:bb:61:43:35:4f:24:f0:6f:
00:76:cf:f2:dd:4a:62:10:7f:39:2e:d7:3b:a6:d5:74:ba:39:
96:45:b1:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:15 2024 by rpki-client on console-fra.rpki-client.org