Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/q-Tuwby8_znSG0TyDYBi79R_GJQ.roa
File: q-Tuwby8_znSG0TyDYBi79R_GJQ.roa (raw, json)
Hash identifier: j4vtkXmSUqZipD0lSDPJc0GfGM/729Tc9PXRBHSOuQk=
Subject key identifier: AB:E4:EE:C1:BC:BC:FF:39:D2:1B:44:F2:0D:80:62:EF:D4:7F:18:94
Certificate issuer: /CN=6640f89ce22645b97297d7803726dc2fb0e5f4b9
Certificate serial: 01856CAF09ED63F9E0404E3B830E0E73F903
Authority key identifier: 66:40:F8:9C:E2:26:45:B9:72:97:D7:80:37:26:DC:2F:B0:E5:F4:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZkD4nOImRblyl9eANybcL7Dl9Lk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/q-Tuwby8_znSG0TyDYBi79R_GJQ.roa
Signing time: Sun 01 Jan 2023 09:34:48 +0000
ROA not before: Sun 01 Jan 2023 09:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42216
IP address blocks: 212.64.222.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:09:ed:63:f9:e0:40:4e:3b:83:0e:0e:73:f9:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6640f89ce22645b97297d7803726dc2fb0e5f4b9
Validity
Not Before: Jan 1 09:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abe4eec1bcbcff39d21b44f20d8062efd47f1894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:76:e9:62:b6:e0:82:75:f7:f3:b4:63:71:c1:
0e:ab:2d:bd:b5:46:32:fb:ae:90:c0:5f:99:78:73:
36:e1:be:df:b4:ff:f1:86:f6:ca:5b:db:32:12:06:
d8:6b:36:b3:0e:34:cd:9a:d0:50:e9:db:b7:78:0e:
e8:41:6b:13:f3:d3:77:70:12:76:61:5a:83:79:cf:
dd:45:e8:7f:ac:d4:22:07:c1:4e:48:c4:dd:96:bb:
27:8d:be:7f:c4:31:71:4d:84:88:d5:6c:bb:21:1c:
89:0d:e9:29:76:81:d3:61:43:a4:fa:7f:49:f8:e2:
bd:aa:96:7b:ea:23:37:ac:6f:30:2d:15:2b:2b:0a:
ed:6e:18:25:39:0b:e5:ad:cd:9d:5f:a3:61:39:aa:
a0:26:b6:ba:da:94:a3:79:86:c9:b4:45:f1:a2:e8:
57:09:7b:39:39:e8:38:05:34:3b:a3:71:63:0c:cb:
d2:9e:c1:21:ec:21:ea:ed:fa:91:5b:d8:f8:dc:21:
e7:e8:3f:e5:43:e2:e7:d3:5a:d6:86:6d:39:ee:68:
87:d4:e3:37:41:64:eb:8d:91:7b:32:75:cc:d9:77:
74:15:26:69:85:72:2b:a1:79:a0:d4:3a:52:46:32:
8e:e3:3a:0d:00:fa:40:83:7b:5c:85:8e:15:a6:20:
65:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:E4:EE:C1:BC:BC:FF:39:D2:1B:44:F2:0D:80:62:EF:D4:7F:18:94
X509v3 Authority Key Identifier:
keyid:66:40:F8:9C:E2:26:45:B9:72:97:D7:80:37:26:DC:2F:B0:E5:F4:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZkD4nOImRblyl9eANybcL7Dl9Lk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/q-Tuwby8_znSG0TyDYBi79R_GJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/ZkD4nOImRblyl9eANybcL7Dl9Lk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.64.222.0/24
Signature Algorithm: sha256WithRSAEncryption
37:6a:d0:18:29:68:f8:45:05:54:55:f0:23:3d:8d:a2:5f:a4:
65:0a:b3:09:51:d1:b9:ae:8e:c9:31:dc:cc:19:64:41:0c:34:
06:fa:72:a9:76:8b:43:cb:8f:95:ab:cb:7e:0e:65:8d:db:81:
3c:22:a0:bc:99:57:3b:9d:16:e7:c9:25:72:c3:36:71:b7:35:
84:50:4b:82:4d:ea:fd:9e:44:d2:ba:e5:51:58:be:a4:54:ac:
90:06:5e:0c:98:41:1c:1f:e1:bd:ad:04:65:24:0f:69:6f:97:
80:9c:2c:63:f6:b0:f0:52:86:b5:98:b8:8b:a4:44:cc:20:b0:
41:83:2b:b5:e8:dc:c2:b5:d7:bb:a7:cd:c7:d2:5c:0b:c1:7d:
f2:a6:97:a5:b5:85:e8:51:f6:d6:d5:82:b1:c0:ba:a6:b1:53:
af:b0:0b:de:74:04:89:6b:93:3d:c3:66:c8:01:04:7c:f5:2a:
d6:f6:32:8c:7b:a6:c0:73:5b:a5:9d:77:e9:f7:86:87:7c:ab:
e1:8d:aa:2a:d8:3d:67:02:48:a2:7f:1c:12:09:8f:6e:24:d4:
b8:73:14:ba:2d:4d:47:c4:6f:8a:12:1a:50:8c:d8:05:3a:e5:
43:7d:7e:1f:a7:67:30:af:cb:3e:da:78:9f:1b:23:fc:91:51:
60:70:a9:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:14 2024 by rpki-client on console-ams.rpki-client.org