Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/huIoxTzvSZLDP3PiBCGita7a-RU.roa
File: huIoxTzvSZLDP3PiBCGita7a-RU.roa (raw, json)
Hash identifier: 6iVp1uknyO9DqKTV08iynoDdfgRgDSQSjMPPzPlXaQo=
Subject key identifier: 86:E2:28:C5:3C:EF:49:92:C3:3F:73:E2:04:21:A2:B5:AE:DA:F9:15
Certificate issuer: /CN=bc8a3bc47d13c83f7d1cf72a137e0066f83d0608
Certificate serial: 01863BE3C89EAEB0822092B7727F103DA930
Authority key identifier: BC:8A:3B:C4:7D:13:C8:3F:7D:1C:F7:2A:13:7E:00:66:F8:3D:06:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vIo7xH0TyD99HPcqE34AZvg9Bgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/huIoxTzvSZLDP3PiBCGita7a-RU.roa
Signing time: Fri 10 Feb 2023 15:13:49 +0000
ROA not before: Fri 10 Feb 2023 15:13:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28716
IP address blocks: 212.104.56.0/21 maxlen: 24
212.104.16.0/20 maxlen: 24
212.104.48.0/21 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Apr 2023 09:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3b:e3:c8:9e:ae:b0:82:20:92:b7:72:7f:10:3d:a9:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc8a3bc47d13c83f7d1cf72a137e0066f83d0608
Validity
Not Before: Feb 10 15:13:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86e228c53cef4992c33f73e20421a2b5aedaf915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:09:29:b1:fb:57:d1:40:b5:d5:4a:8c:54:1b:
cd:23:ee:4e:a0:98:5b:2d:02:9b:6f:37:d7:71:6e:
b5:33:51:0d:51:c5:76:3b:50:77:94:7e:81:77:c1:
dc:b2:41:5d:c1:0c:98:43:77:df:79:5c:ca:a4:a4:
bb:19:be:e2:8f:39:46:06:28:b5:0d:5c:12:27:66:
d0:2d:f9:f0:d0:3f:c7:35:34:bd:32:09:2a:c8:3a:
9e:29:5e:4e:02:8f:35:0f:32:4f:77:e5:5b:26:7d:
eb:b8:cd:f6:58:75:7d:3f:03:f0:b3:7d:d1:11:2e:
af:aa:06:50:21:fd:89:db:b8:88:9f:6a:19:1a:ee:
1d:15:25:c7:68:94:f6:7e:94:7c:93:4c:0f:bc:35:
8b:2f:00:5a:02:99:9d:6c:f8:18:e2:94:b1:95:7a:
c3:cd:57:2b:04:6b:64:67:bd:ef:c4:03:40:6b:58:
57:eb:16:08:b4:34:c5:4e:54:09:a2:bb:81:ba:db:
52:0c:29:30:34:07:ef:56:62:86:f1:da:1a:61:ac:
37:19:b7:48:58:7d:94:53:98:46:86:c3:23:7a:c9:
fb:d9:cd:95:25:14:6e:e8:b9:51:ee:95:04:f9:23:
37:18:46:0e:db:e1:b6:7e:e0:5d:3b:aa:84:1f:3a:
c8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E2:28:C5:3C:EF:49:92:C3:3F:73:E2:04:21:A2:B5:AE:DA:F9:15
X509v3 Authority Key Identifier:
keyid:BC:8A:3B:C4:7D:13:C8:3F:7D:1C:F7:2A:13:7E:00:66:F8:3D:06:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vIo7xH0TyD99HPcqE34AZvg9Bgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/huIoxTzvSZLDP3PiBCGita7a-RU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/vIo7xH0TyD99HPcqE34AZvg9Bgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.104.16.0/20
212.104.48.0/20
Signature Algorithm: sha256WithRSAEncryption
89:c0:3a:ed:43:76:63:f1:ba:89:d8:76:5c:a7:85:36:52:19:
bc:4e:81:28:df:1b:a3:16:c3:f0:de:bb:14:39:2f:b6:32:cc:
68:33:7c:2c:88:37:68:22:90:60:bc:38:8c:b1:43:04:9e:fc:
80:cc:e3:4d:3b:9e:10:dc:44:ac:46:a3:10:ea:fb:15:4a:52:
35:c4:6a:98:48:d4:9f:7d:65:d9:5a:05:b9:c0:1f:3e:c6:12:
34:26:58:3f:f0:11:0c:7c:dc:86:7b:61:3e:36:22:0a:27:fb:
50:4e:83:1b:1b:82:32:9a:0e:4c:fc:47:9b:e9:90:3f:d5:fe:
5e:a7:cf:f5:73:7f:68:e9:0b:ba:13:f6:68:0e:00:73:aa:35:
d2:ef:2a:01:dd:7a:12:b4:17:e3:fa:5b:54:c6:2b:92:fe:a8:
72:1d:0f:d8:b1:d3:15:cf:2d:15:47:d9:5d:cb:76:9e:e8:d0:
4e:e3:0a:6d:75:2a:ef:c1:4e:19:29:91:57:ec:78:ad:56:ce:
f8:7b:c7:97:d1:0c:91:dd:cf:ac:4c:80:47:28:73:2b:9b:ab:
3c:df:59:44:4b:e0:d3:8c:90:be:85:c6:e0:48:3a:97:99:22:
4c:0e:8a:f2:58:21:70:f5:44:3f:f3:83:9e:76:8e:63:32:1d:
75:ff:b3:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:15 2024 by rpki-client on console-fra.rpki-client.org