Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/qGvx5hZmOeOSkoFYcE6IkZodnO8.roa
File: qGvx5hZmOeOSkoFYcE6IkZodnO8.roa (raw, json)
Hash identifier: pGs7Kh1c0AqzImk8QuULgc+I6pwUPoEkEiZ//MSGchc=
Subject key identifier: A8:6B:F1:E6:16:66:39:E3:92:92:81:58:70:4E:88:91:9A:1D:9C:EF
Certificate issuer: /CN=6640f89ce22645b97297d7803726dc2fb0e5f4b9
Certificate serial: 0189E3901767DB140A63905D62F9AF0FBA46
Authority key identifier: 66:40:F8:9C:E2:26:45:B9:72:97:D7:80:37:26:DC:2F:B0:E5:F4:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZkD4nOImRblyl9eANybcL7Dl9Lk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/qGvx5hZmOeOSkoFYcE6IkZodnO8.roa
Signing time: Fri 11 Aug 2023 07:46:58 +0000
ROA not before: Fri 11 Aug 2023 07:46:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197450
IP address blocks: 212.64.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 11 Nov 2023 17:15:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e3:90:17:67:db:14:0a:63:90:5d:62:f9:af:0f:ba:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6640f89ce22645b97297d7803726dc2fb0e5f4b9
Validity
Not Before: Aug 11 07:46:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a86bf1e6166639e392928158704e88919a1d9cef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:f5:25:d6:30:12:89:d5:a4:9f:3d:f7:7d:86:
3a:93:c9:e8:36:d2:e8:c2:ec:69:20:c8:66:76:4f:
79:e7:e6:15:eb:04:20:c2:f0:0e:58:48:b4:ef:14:
dc:82:a0:82:f7:bb:cc:35:97:2a:a0:6c:93:a7:8b:
fa:ca:8d:47:49:bf:3b:10:79:79:2c:96:d2:f0:ed:
a0:50:f3:d3:a2:79:bf:0c:24:b4:72:05:8e:0a:f8:
ee:94:0d:39:0c:31:f4:0e:6c:9e:c7:c2:29:b2:25:
17:27:6a:e7:85:20:18:2a:da:0e:61:1e:02:77:2b:
52:73:87:a8:94:3d:02:c0:94:ea:70:60:c9:46:9b:
86:7c:d2:42:f4:5c:b1:cd:8a:bc:41:64:62:c1:83:
24:0d:b3:97:fc:c6:12:eb:52:b7:dd:f4:48:34:32:
8a:c9:ff:e6:f4:92:9f:d3:e1:a5:5e:47:86:38:75:
cb:13:8d:95:31:6b:d5:87:02:19:8e:b5:09:2e:22:
a8:70:5b:2e:f2:9a:15:a9:3c:56:c2:c0:8c:25:11:
c4:ff:b8:d0:db:e3:2c:bc:39:05:7c:47:af:55:18:
f3:a7:be:e2:1f:0a:fd:98:a5:4e:29:a9:91:02:a8:
b1:f0:60:14:87:85:20:a5:51:67:99:97:31:73:65:
b8:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:6B:F1:E6:16:66:39:E3:92:92:81:58:70:4E:88:91:9A:1D:9C:EF
X509v3 Authority Key Identifier:
keyid:66:40:F8:9C:E2:26:45:B9:72:97:D7:80:37:26:DC:2F:B0:E5:F4:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZkD4nOImRblyl9eANybcL7Dl9Lk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/qGvx5hZmOeOSkoFYcE6IkZodnO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/ZkD4nOImRblyl9eANybcL7Dl9Lk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.64.215.0/24
Signature Algorithm: sha256WithRSAEncryption
64:9d:ba:91:91:67:29:9d:4e:f8:2c:25:99:00:d4:28:01:6a:
46:7a:2d:25:a5:84:89:81:9a:a1:18:7c:42:29:e1:83:3f:34:
28:bd:57:14:a5:69:db:37:63:8f:ef:93:e5:d1:4c:4b:dc:56:
7d:fd:92:e4:62:3f:48:84:51:1a:63:2a:21:57:c5:cd:5b:38:
bc:2a:a2:71:32:4b:e0:9d:c3:7c:d6:a5:16:fc:9e:77:16:1d:
b6:02:97:20:47:d1:13:a7:47:d8:dc:72:03:5e:9f:76:b2:1d:
3c:4c:1e:98:9a:1a:da:be:aa:ca:aa:f6:c9:fe:4c:23:21:80:
22:5b:42:aa:d7:a8:07:60:c4:ad:8e:88:3b:25:16:67:c0:12:
2f:01:03:3b:0f:b4:c0:e1:58:89:c6:6d:de:30:a6:88:17:7b:
2f:78:d2:3e:b8:d5:c7:fa:7b:6a:6c:d5:bf:d4:e8:10:fa:25:
07:33:49:39:01:eb:4c:71:9c:6c:75:ef:6a:0c:e8:e6:de:ea:
1c:7c:c6:d8:e9:a1:b7:7f:fa:7e:31:03:e5:1b:6e:9b:ee:0c:
69:9b:ad:39:10:17:da:52:7d:1c:83:63:27:30:2d:9d:b9:38:
42:63:77:bd:12:42:c8:de:5b:51:23:3e:22:58:c1:d3:22:d3:
ca:14:f8:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:14 2024 by rpki-client on console-ams.rpki-client.org