Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/wq_4yYqWuMteamkjdWYI1uSn8aQ.roa
File: wq_4yYqWuMteamkjdWYI1uSn8aQ.roa (raw, json)
Hash identifier: Yjht+jkhA65Ok1jutBpnsUswUakhlg5r+HN6wt+AMuU=
Subject key identifier: C2:AF:F8:C9:8A:96:B8:CB:5E:6A:69:23:75:66:08:D6:E4:A7:F1:A4
Certificate issuer: /CN=6640f89ce22645b97297d7803726dc2fb0e5f4b9
Certificate serial: 018AF21AB809EC67C4B425450B39281A4809
Authority key identifier: 66:40:F8:9C:E2:26:45:B9:72:97:D7:80:37:26:DC:2F:B0:E5:F4:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZkD4nOImRblyl9eANybcL7Dl9Lk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/wq_4yYqWuMteamkjdWYI1uSn8aQ.roa
Signing time: Mon 02 Oct 2023 20:35:51 +0000
ROA not before: Mon 02 Oct 2023 20:35:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197644
IP address blocks: 212.64.199.0/24 maxlen: 24
212.64.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Oct 2023 20:11:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f2:1a:b8:09:ec:67:c4:b4:25:45:0b:39:28:1a:48:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6640f89ce22645b97297d7803726dc2fb0e5f4b9
Validity
Not Before: Oct 2 20:35:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2aff8c98a96b8cb5e6a6923756608d6e4a7f1a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:75:44:e2:6d:96:f3:78:9e:ca:f0:d5:a4:9d:
2c:12:ff:5b:ee:3f:8e:8e:6c:5a:54:76:96:45:35:
23:4f:31:2f:cd:00:8c:de:10:1b:d8:0f:b3:ad:15:
73:8c:df:b8:4d:29:00:c3:ba:d0:8f:6f:f4:45:13:
02:78:ae:df:71:66:c1:fc:1e:97:02:f7:f7:1a:3f:
f1:da:87:20:c6:90:5d:63:26:7d:93:ad:24:2d:a8:
03:bc:dc:2d:95:84:22:b8:c6:5a:f9:69:17:74:3d:
3e:3a:46:5e:47:d0:f1:94:d2:b0:e9:9c:78:e5:db:
e9:07:06:de:86:42:39:51:e2:79:81:5a:ec:12:d3:
17:ad:75:95:19:35:4b:cf:28:39:af:0b:d9:00:ae:
35:94:86:dd:f0:06:33:63:9d:c8:48:68:f0:95:40:
ab:7d:48:5f:12:fa:86:f1:03:dc:80:04:06:a7:cd:
6a:53:77:aa:46:08:76:41:33:ec:b2:e3:39:71:cf:
b5:64:8e:f0:43:2c:e9:5c:9a:4a:b3:78:b7:2a:9d:
25:2f:b5:f1:74:cf:26:06:a7:85:ee:c3:44:a4:b1:
03:f1:e1:01:c8:51:19:3f:e2:ac:6c:c5:ff:76:d5:
21:2e:e1:22:85:9d:d5:d9:17:35:8e:23:e7:14:59:
c6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:AF:F8:C9:8A:96:B8:CB:5E:6A:69:23:75:66:08:D6:E4:A7:F1:A4
X509v3 Authority Key Identifier:
keyid:66:40:F8:9C:E2:26:45:B9:72:97:D7:80:37:26:DC:2F:B0:E5:F4:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZkD4nOImRblyl9eANybcL7Dl9Lk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/wq_4yYqWuMteamkjdWYI1uSn8aQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/ZkD4nOImRblyl9eANybcL7Dl9Lk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.64.199.0/24
212.64.201.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:bb:5b:ad:d3:5b:10:a2:a4:2a:d5:a4:b4:c1:af:1c:e7:3a:
58:5a:73:3c:f0:c8:11:62:1d:63:99:f8:ff:0e:cf:9b:e8:1a:
f7:da:60:9b:57:a4:46:2f:bc:33:99:0b:8a:50:81:9f:91:00:
71:1f:08:53:fb:ad:04:27:ea:d2:2b:7d:f5:dd:10:1a:3d:85:
7a:49:b9:45:5f:16:c3:6d:0c:a8:4c:3f:5f:c0:37:ed:97:9f:
63:ea:d4:62:0a:4a:2c:e1:fd:d5:3f:3b:86:b0:87:b6:32:c2:
1c:c8:4e:a7:1b:45:d6:14:02:2b:fb:0b:b4:80:f7:2a:ce:ec:
6d:ca:04:de:d7:32:11:ce:66:dd:59:94:c9:e4:87:d7:1f:01:
a6:d4:55:03:e9:7f:e3:5f:54:40:47:fd:24:82:3c:f3:a2:16:
48:6c:11:32:95:5c:76:86:11:3f:28:12:19:37:43:8b:de:d1:
02:07:4c:3f:0d:fe:60:0f:0f:6a:fa:19:45:b5:af:e9:a1:d5:
74:dc:00:2a:fb:9a:71:b2:57:54:5e:47:47:a7:5c:8a:f3:0b:
83:04:8f:52:e5:f1:06:78:b0:f3:cc:a9:a8:1b:88:5b:90:dc:
fc:6e:6b:28:c4:00:ab:a4:dd:97:38:2f:f1:1a:21:9f:32:e9:
35:48:fb:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:14 2024 by rpki-client on console-ams.rpki-client.org