Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/KUp8tiSDkXSLzB9Gc8seLYcCW_M.roa
File: KUp8tiSDkXSLzB9Gc8seLYcCW_M.roa (raw, json)
Hash identifier: nQ+Nw7v5Y+deLR9SywJS1NMPUHRdJwBSohrp1N7w5Cs=
Subject key identifier: 29:4A:7C:B6:24:83:91:74:8B:CC:1F:46:73:CB:1E:2D:87:02:5B:F3
Certificate issuer: /CN=6640f89ce22645b97297d7803726dc2fb0e5f4b9
Certificate serial: 018B06DC51207D56773F70A594CB498329A0
Authority key identifier: 66:40:F8:9C:E2:26:45:B9:72:97:D7:80:37:26:DC:2F:B0:E5:F4:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZkD4nOImRblyl9eANybcL7Dl9Lk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/KUp8tiSDkXSLzB9Gc8seLYcCW_M.roa
Signing time: Fri 06 Oct 2023 21:19:43 +0000
ROA not before: Fri 06 Oct 2023 21:19:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201707
IP address blocks: 212.64.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Nov 2023 17:53:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:06:dc:51:20:7d:56:77:3f:70:a5:94:cb:49:83:29:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6640f89ce22645b97297d7803726dc2fb0e5f4b9
Validity
Not Before: Oct 6 21:19:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=294a7cb6248391748bcc1f4673cb1e2d87025bf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3a:af:8f:01:b0:08:3e:ec:fc:31:48:7e:25:
05:a1:05:1f:d8:6f:18:53:27:06:63:3a:49:fd:0c:
83:01:f9:07:f4:42:fa:90:9e:c3:3a:68:88:4a:fd:
c4:48:f7:4d:8b:50:4c:33:31:83:5c:d0:fe:c1:dc:
ea:e9:50:f9:9a:85:09:34:32:53:9b:83:87:7c:6e:
50:1c:31:f5:3d:5e:15:d5:ab:8c:a3:64:d7:c8:7b:
ea:a6:51:07:2d:fb:73:1d:2a:90:51:c7:ab:31:ce:
60:ab:e7:00:3f:bc:4b:0e:c7:48:86:cc:e5:f0:9d:
0e:42:ea:d5:35:e1:61:f2:b0:57:1f:39:91:ae:fe:
57:15:ab:82:54:40:8f:24:f5:eb:b7:a5:fb:52:8d:
36:8c:4f:71:fc:73:b1:49:4f:e8:d1:9c:c8:a0:6e:
2f:a7:a1:5b:8d:52:58:72:2b:2f:2e:88:ce:09:51:
20:9f:ae:1b:89:43:5e:21:08:e9:e7:90:b2:b9:9a:
9f:d5:9f:e6:24:de:34:ae:4a:40:e8:f1:01:58:c6:
0d:77:72:61:95:d1:8d:8a:16:45:29:4d:ed:bb:02:
30:ea:40:05:db:f2:e9:31:27:2b:e4:9e:8d:aa:20:
53:4e:62:91:8f:0e:c2:84:50:4d:48:35:9b:b6:7c:
cc:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:4A:7C:B6:24:83:91:74:8B:CC:1F:46:73:CB:1E:2D:87:02:5B:F3
X509v3 Authority Key Identifier:
keyid:66:40:F8:9C:E2:26:45:B9:72:97:D7:80:37:26:DC:2F:B0:E5:F4:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZkD4nOImRblyl9eANybcL7Dl9Lk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/KUp8tiSDkXSLzB9Gc8seLYcCW_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/ZkD4nOImRblyl9eANybcL7Dl9Lk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.64.196.0/24
Signature Algorithm: sha256WithRSAEncryption
55:80:49:0c:ba:1a:f2:8b:61:fa:17:01:b0:23:76:ce:9b:4b:
71:d7:23:bd:fc:4f:8f:ed:22:ff:0a:06:d7:57:54:c8:a2:bb:
4b:33:a0:9f:df:9b:6f:65:a9:21:22:84:f6:45:f5:0a:c3:27:
f3:50:dd:3b:c5:e9:b8:61:18:b9:e3:84:82:a0:bd:c8:07:08:
01:ec:e9:90:f3:82:a3:1d:c1:dd:0e:68:06:a6:b7:5a:a7:ad:
2d:4a:c7:1c:49:b9:d0:59:95:cb:c0:41:a3:85:c4:a1:e0:2b:
bd:7a:5b:1c:b6:b3:93:8b:1e:43:4c:2b:71:1f:6b:72:fd:e7:
06:ad:82:f5:39:e3:3d:57:d0:19:ca:15:ee:05:ef:95:48:1a:
42:66:e1:0f:97:8c:12:8a:66:59:0d:7b:6f:4c:1b:d6:ca:67:
92:49:b1:d7:63:40:f6:1b:80:e9:7f:28:b9:11:b3:92:f7:be:
07:a0:98:0e:ba:ae:4b:e1:80:2d:fb:df:49:f4:64:e7:49:bc:
8d:f0:21:35:34:8b:37:7b:d2:55:c2:13:63:0b:2a:f3:2d:63:
33:bb:88:bd:a2:76:49:97:25:d1:11:3c:5e:43:99:b0:90:c7:
97:cf:79:17:29:dc:02:45:6a:6c:28:00:f7:93:35:b1:82:72:
e7:a9:0c:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:14 2024 by rpki-client on console-ams.rpki-client.org