Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/5e2619-d72b-410b-b9e8-f93d1f815b7d/1/_tWbnYej6hLL5l_LhnAR1FD6Gns.roa
File: _tWbnYej6hLL5l_LhnAR1FD6Gns.roa (raw, json)
Hash identifier: n8ksWjWeKp0xX0//csecsBexHYEdXfPWow13RqmdzTE=
Subject key identifier: FE:D5:9B:9D:87:A3:EA:12:CB:E6:5F:CB:86:70:11:D4:50:FA:1A:7B
Certificate issuer: /CN=cfde85bbd478f5e842f4c4f8d85225d100e0f4df
Certificate serial: 0185730CB91717219756266A2104E6388316
Authority key identifier: CF:DE:85:BB:D4:78:F5:E8:42:F4:C4:F8:D8:52:25:D1:00:E0:F4:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z96Fu9R49ehC9MT42FIl0QDg9N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/5e2619-d72b-410b-b9e8-f93d1f815b7d/1/_tWbnYej6hLL5l_LhnAR1FD6Gns.roa
Signing time: Mon 02 Jan 2023 15:14:51 +0000
ROA not before: Mon 02 Jan 2023 15:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 212.104.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:b9:17:17:21:97:56:26:6a:21:04:e6:38:83:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfde85bbd478f5e842f4c4f8d85225d100e0f4df
Validity
Not Before: Jan 2 15:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fed59b9d87a3ea12cbe65fcb867011d450fa1a7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:78:ed:f9:fc:9a:61:84:c6:f6:69:27:f6:bc:
42:0a:78:b5:81:68:24:06:24:78:ae:4d:ca:71:56:
e2:a1:96:d1:8c:ff:73:c9:fa:fa:2d:48:fc:09:b3:
54:9d:5f:fb:87:69:e7:42:2f:24:ac:32:97:f1:5e:
eb:b6:70:6d:5a:fb:51:58:e5:45:92:b0:58:08:65:
8c:fb:ed:ec:38:f0:27:f8:96:b5:73:e8:11:15:8d:
d7:d5:c6:0d:62:66:e5:f4:01:5c:75:41:e9:ac:3f:
3c:0c:40:fa:76:93:bd:3f:d6:ba:65:b5:80:e5:60:
8f:d1:a9:b2:be:ec:74:7d:4c:63:10:69:2a:45:d7:
89:37:77:d1:de:90:70:98:e7:30:c2:99:a0:6e:61:
68:9f:9d:d9:97:db:e4:b4:be:4e:0d:35:1a:18:f7:
fe:c4:33:18:c7:b6:55:40:97:69:30:fe:7f:cd:96:
70:03:fb:33:79:85:ab:e0:c4:36:d9:d8:44:96:1f:
15:f1:ef:d9:ee:a5:20:10:7a:29:ec:89:8a:b9:70:
1c:fd:89:05:41:92:9c:2a:36:72:24:fc:68:e3:11:
32:53:a7:ac:67:86:4d:7a:31:8f:11:93:5e:f5:39:
78:54:55:8c:32:e6:4f:a9:d9:60:a8:af:4c:f0:9f:
2a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D5:9B:9D:87:A3:EA:12:CB:E6:5F:CB:86:70:11:D4:50:FA:1A:7B
X509v3 Authority Key Identifier:
keyid:CF:DE:85:BB:D4:78:F5:E8:42:F4:C4:F8:D8:52:25:D1:00:E0:F4:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z96Fu9R49ehC9MT42FIl0QDg9N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/5e2619-d72b-410b-b9e8-f93d1f815b7d/1/_tWbnYej6hLL5l_LhnAR1FD6Gns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/5e2619-d72b-410b-b9e8-f93d1f815b7d/1/z96Fu9R49ehC9MT42FIl0QDg9N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.104.209.0/24
Signature Algorithm: sha256WithRSAEncryption
00:74:35:fb:f4:3c:de:af:c0:78:d6:c5:22:ae:40:a8:e2:11:
66:20:86:0f:65:ad:b4:bc:e0:6e:3a:6c:4e:f7:62:82:ea:46:
9d:a1:31:dc:cf:88:67:62:18:c6:4d:65:df:08:69:59:5b:df:
6a:85:88:c8:aa:03:8d:0d:77:fc:9d:22:23:92:02:42:a2:9b:
b9:c5:d2:0c:c7:c8:0e:ff:d6:ae:48:df:fa:ef:47:26:87:c4:
3a:18:d6:80:66:ca:e8:c3:1b:14:09:fb:33:6f:d1:f5:f5:cd:
9f:1e:68:b7:8a:9c:27:f7:99:58:4b:5a:a8:85:f2:b4:8e:57:
1c:39:1e:b4:b6:dd:a8:5a:0f:de:af:de:47:18:23:1b:55:f6:
85:5d:fa:93:03:14:69:d6:16:bc:29:2d:c9:d6:ec:dc:6c:20:
d4:a9:bb:6d:a4:b5:eb:d7:12:b1:61:bb:fd:02:23:ef:a5:22:
57:44:4b:8d:f5:13:e3:6e:65:5b:04:8d:41:0c:47:76:f3:bf:
fb:c1:1a:a9:a0:a0:6a:7b:6c:e1:f5:51:c9:1f:bd:88:02:b9:
13:b4:a3:dc:34:a4:7f:5c:61:8b:d3:b9:ed:1c:aa:17:84:05:
43:7f:cd:c7:f9:9d:ec:0e:e4:06:7f:56:a9:39:0f:af:70:f4:
1a:94:a9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:36 2024 by rpki-client on console-fra.rpki-client.org