Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/2426f1-8f2a-49ff-8643-193ad5c79b83/1/4mjQIyYDwsO5PLK5F8ttzMO4zvA.roa
File: 4mjQIyYDwsO5PLK5F8ttzMO4zvA.roa (raw, json)
Hash identifier: fxosmGNHLhNAYEsD2mWu5v5PSaljMcKxsezL2OdA/YU=
Subject key identifier: E2:68:D0:23:26:03:C2:C3:B9:3C:B2:B9:17:CB:6D:CC:C3:B8:CE:F0
Certificate issuer: /CN=96e82ab648b8b3f8857569c39af9544adfc17c01
Certificate serial: 01857042947D42001C0B41186C28472AD77E
Authority key identifier: 96:E8:2A:B6:48:B8:B3:F8:85:75:69:C3:9A:F9:54:4A:DF:C1:7C:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lugqtki4s_iFdWnDmvlUSt_BfAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/2426f1-8f2a-49ff-8643-193ad5c79b83/1/4mjQIyYDwsO5PLK5F8ttzMO4zvA.roa
Signing time: Mon 02 Jan 2023 02:14:49 +0000
ROA not before: Mon 02 Jan 2023 02:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9103
IP address blocks: 212.109.128.0/20 maxlen: 20
2a00:6c40::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:94:7d:42:00:1c:0b:41:18:6c:28:47:2a:d7:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96e82ab648b8b3f8857569c39af9544adfc17c01
Validity
Not Before: Jan 2 02:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e268d0232603c2c3b93cb2b917cb6dccc3b8cef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e8:17:7a:aa:f2:82:5f:75:63:6f:66:45:9b:
f6:c7:9e:9f:7f:f1:2d:2f:28:02:ae:34:86:1e:88:
58:0a:60:10:b3:48:7b:8b:81:f3:a4:01:75:19:44:
e8:22:cc:5f:7f:3c:37:98:8a:cb:17:a2:1a:24:b5:
36:42:b7:ad:75:dc:0d:21:2e:a1:18:63:61:b5:c5:
09:30:42:1d:f5:36:29:b2:9b:a8:fd:f3:be:f1:7e:
33:e3:5c:a9:f3:55:a5:0c:7f:dd:5b:3b:69:14:5f:
1f:03:c4:a5:e1:bf:8e:75:32:f4:91:90:d6:a5:a1:
64:d4:08:73:ce:64:5b:24:98:28:ff:15:13:8c:01:
dd:16:d4:87:ac:20:21:7d:26:f8:84:8f:3a:e8:55:
4f:e7:d3:ae:80:e5:48:e1:55:f7:42:b0:63:3e:8d:
22:4d:7f:d5:cc:5c:ce:40:dc:23:84:e8:83:7d:1a:
6a:2b:af:42:7e:3b:33:ae:0f:2f:14:51:7c:28:cc:
8b:e5:d2:5d:b9:14:70:c7:4d:3f:58:3f:2a:ae:53:
d9:39:8c:ce:9b:d6:b1:90:a3:ed:af:38:92:48:42:
54:96:e2:70:49:eb:58:d2:36:43:b0:97:b5:be:89:
d7:3b:83:3a:65:31:a8:00:0e:1b:d5:48:e6:97:97:
79:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:68:D0:23:26:03:C2:C3:B9:3C:B2:B9:17:CB:6D:CC:C3:B8:CE:F0
X509v3 Authority Key Identifier:
keyid:96:E8:2A:B6:48:B8:B3:F8:85:75:69:C3:9A:F9:54:4A:DF:C1:7C:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lugqtki4s_iFdWnDmvlUSt_BfAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/2426f1-8f2a-49ff-8643-193ad5c79b83/1/4mjQIyYDwsO5PLK5F8ttzMO4zvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/2426f1-8f2a-49ff-8643-193ad5c79b83/1/lugqtki4s_iFdWnDmvlUSt_BfAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.109.128.0/20
IPv6:
2a00:6c40::/32
Signature Algorithm: sha256WithRSAEncryption
89:66:a5:1a:68:43:2d:d5:46:6c:b1:6c:f3:56:7a:37:4a:99:
d4:8d:0e:2e:e2:29:64:c5:af:91:5b:3d:b0:aa:7e:d6:68:61:
69:97:2f:f9:2b:1a:12:aa:84:97:34:26:70:d4:7e:90:4f:19:
9b:37:87:50:48:7b:e0:2d:b7:2c:65:26:33:0a:bf:fd:66:23:
56:ad:3c:62:ed:41:59:f9:81:ab:21:71:c3:41:f6:36:ef:8e:
8c:8f:b0:d5:ee:c3:7b:fe:0d:18:44:e2:19:fa:16:33:af:89:
59:5f:92:87:ff:25:80:48:32:d2:63:c2:4f:1c:5f:23:2a:b4:
ff:be:a7:25:64:59:5d:e1:62:56:37:da:3f:05:94:60:db:6a:
99:46:7c:83:84:76:8d:42:1d:5c:80:f2:36:ba:8f:71:da:0d:
bd:dd:e5:71:d4:a2:a9:fe:7d:ad:a2:7a:4b:a1:b8:e3:a9:52:
14:41:af:66:cb:ea:ee:61:f8:58:2e:c1:df:fd:9b:6c:b5:46:
07:83:1a:35:e9:29:3a:6b:56:60:4b:8d:9f:5e:bd:c9:dd:db:
ac:e0:20:b5:60:6d:1d:c6:f1:ce:86:b9:87:29:47:a4:4a:31:
7b:90:6e:9f:be:41:0a:59:02:f0:07:7e:29:93:53:9e:b0:6a:
3b:08:20:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:03 2024 by rpki-client on console-fra.rpki-client.org