Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/HksAMXt9yQnY8w9OFBa_LVgTJjE.roa
File: HksAMXt9yQnY8w9OFBa_LVgTJjE.roa (raw, json)
Hash identifier: b5lAp2lX48Pmy00xrmYaiXiMVBEKi/dfq22YtW7EMhc=
Subject key identifier: 1E:4B:00:31:7B:7D:C9:09:D8:F3:0F:4E:14:16:BF:2D:58:13:26:31
Certificate issuer: /CN=6640f89ce22645b97297d7803726dc2fb0e5f4b9
Certificate serial: 018B8B73FC1B60231B5E5EABB821154C30A4
Authority key identifier: 66:40:F8:9C:E2:26:45:B9:72:97:D7:80:37:26:DC:2F:B0:E5:F4:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZkD4nOImRblyl9eANybcL7Dl9Lk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/HksAMXt9yQnY8w9OFBa_LVgTJjE.roa
Signing time: Wed 01 Nov 2023 15:15:16 +0000
ROA not before: Wed 01 Nov 2023 15:15:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197644
IP address blocks: 212.64.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8b:73:fc:1b:60:23:1b:5e:5e:ab:b8:21:15:4c:30:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6640f89ce22645b97297d7803726dc2fb0e5f4b9
Validity
Not Before: Nov 1 15:15:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e4b00317b7dc909d8f30f4e1416bf2d58132631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:61:47:93:83:10:68:06:83:47:28:fe:c7:7b:
d9:57:1d:0b:5d:d3:69:f7:16:4d:48:b0:00:c8:33:
dc:4f:f1:6e:b5:95:9d:c0:12:3c:03:a9:90:7d:4e:
a8:fb:40:9e:88:9d:21:21:b8:e0:09:ae:61:70:c5:
f7:47:dd:53:e9:07:24:a2:ba:38:40:f8:d0:46:79:
b2:ca:a6:d6:7f:8e:9a:3f:2f:69:da:aa:3a:d8:7c:
d5:74:32:a3:23:e3:5f:26:ae:c8:d7:4b:9e:d2:d5:
bf:9f:cf:5f:c0:40:6f:ec:ec:bb:71:4c:5c:6f:2b:
c1:21:05:78:6a:80:f1:ff:06:19:43:11:00:16:6d:
39:cd:53:83:e4:02:12:bc:db:02:a7:91:db:9b:24:
3b:32:9e:38:ba:c2:96:1a:92:0b:0d:f2:e5:da:96:
94:d7:5c:76:18:c2:ea:6c:ef:0d:77:36:3b:62:fd:
f5:0e:07:77:83:bd:a5:be:ba:1f:f5:04:65:51:4b:
17:51:7d:60:22:5e:98:75:a5:16:9f:54:bb:72:a8:
04:f8:74:e4:a8:69:b1:01:5b:ff:66:51:f3:b8:cd:
82:ff:fc:ef:b0:b5:ba:b2:7d:07:4b:7d:5a:e1:85:
97:9e:7e:58:de:0d:15:f6:72:e7:d2:b3:58:e9:d3:
7a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:4B:00:31:7B:7D:C9:09:D8:F3:0F:4E:14:16:BF:2D:58:13:26:31
X509v3 Authority Key Identifier:
keyid:66:40:F8:9C:E2:26:45:B9:72:97:D7:80:37:26:DC:2F:B0:E5:F4:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZkD4nOImRblyl9eANybcL7Dl9Lk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/HksAMXt9yQnY8w9OFBa_LVgTJjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/ZkD4nOImRblyl9eANybcL7Dl9Lk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.64.201.0/24
Signature Algorithm: sha256WithRSAEncryption
56:8f:36:f7:9d:da:90:6d:1e:2e:0f:a1:bd:be:06:8a:d6:e9:
4e:bf:4d:bb:39:ea:ce:18:7d:8f:28:47:6d:63:ef:22:4a:b8:
1f:5d:81:6a:23:c0:b5:9a:9a:2e:cb:68:da:40:24:59:5c:12:
3c:fe:57:78:b9:75:c3:48:5f:dc:d3:6e:10:8f:b1:61:6a:e0:
69:64:40:1a:5d:01:f6:4f:84:cd:fa:ba:3d:cf:e1:a1:29:a3:
99:bd:f3:4c:60:ec:4a:90:97:b2:7f:76:a2:7b:aa:db:5e:dd:
a5:4a:06:f0:54:53:a8:f6:15:6b:ef:dd:6e:ad:f4:e2:c2:10:
30:53:61:a9:78:71:31:ff:74:e1:39:7e:f9:80:5c:b8:9b:52:
47:5f:4e:de:03:ca:69:f6:31:9d:56:d6:c4:55:b1:77:ae:ef:
7c:91:e2:d3:c8:0f:ca:a5:86:3d:91:5d:60:df:02:85:df:cd:
e9:5b:b3:f4:b4:19:c9:a5:5a:7f:30:88:b0:45:7b:3d:33:1e:
02:c2:6b:9d:9c:e6:14:c9:e4:25:e2:90:c2:ac:0e:8c:59:29:
72:0c:88:5b:c6:1f:6c:ea:57:f4:bd:99:0d:35:59:e7:3e:e9:
52:7b:e3:41:1b:0e:12:55:f9:af:71:97:6f:3b:8d:73:13:f1:
12:5e:c2:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:48 2024 by rpki-client on console-fra.rpki-client.org