Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/f52785-7aff-4e3b-9c24-1d0fbedf4b9c/1/W5nFOr-e8vDDzVtCMlPRegrMUOE.roa
File: W5nFOr-e8vDDzVtCMlPRegrMUOE.roa (raw, json)
Hash identifier: 8N4HgBDrMWEV/pAF7aoQxRYLJVl5BCP1KDOrEVDByYs=
Subject key identifier: 5B:99:C5:3A:BF:9E:F2:F0:C3:CD:5B:42:32:53:D1:7A:0A:CC:50:E1
Certificate issuer: /CN=390d4b34493382383a2096ea9e0f9b7f94f33280
Certificate serial: 01856FC294BB7A8165FB381BB4527F202975
Authority key identifier: 39:0D:4B:34:49:33:82:38:3A:20:96:EA:9E:0F:9B:7F:94:F3:32:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQ1LNEkzgjg6IJbqng-bf5TzMoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/f52785-7aff-4e3b-9c24-1d0fbedf4b9c/1/W5nFOr-e8vDDzVtCMlPRegrMUOE.roa
Signing time: Sun 01 Jan 2023 23:55:01 +0000
ROA not before: Sun 01 Jan 2023 23:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32181
IP address blocks: 212.60.18.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:94:bb:7a:81:65:fb:38:1b:b4:52:7f:20:29:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390d4b34493382383a2096ea9e0f9b7f94f33280
Validity
Not Before: Jan 1 23:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b99c53abf9ef2f0c3cd5b423253d17a0acc50e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cb:15:e5:4f:c9:cf:ff:2e:f6:05:5d:56:d7:
0c:39:31:5a:b2:2a:42:d7:6a:89:5a:97:dc:6d:61:
4b:b3:11:9b:1d:ca:51:fe:42:57:7d:b6:0b:1d:94:
37:3c:24:82:df:42:a9:85:1c:6a:18:91:dd:5e:8d:
b3:7a:b5:6b:e8:ba:17:ee:6a:04:6a:ae:b0:f2:1b:
d6:65:6d:e3:ed:89:5f:a9:df:73:d8:e0:56:8a:b8:
b6:8c:42:74:4d:f1:6c:68:10:91:d6:9c:f3:4c:c8:
34:ab:c1:6f:08:36:38:0a:ca:dd:48:a9:1c:14:f5:
6e:cf:47:17:3d:68:51:87:38:42:75:93:05:17:5c:
fe:7d:13:dd:fc:6e:8f:8f:7b:e7:93:11:29:d4:9c:
86:eb:06:62:89:b3:55:88:7e:3f:e9:0a:09:55:5a:
a5:c3:28:88:ca:28:1e:2b:93:9c:2b:26:5c:6e:ca:
21:c4:d9:d2:c0:d5:62:27:20:45:81:66:96:55:3d:
02:bf:75:d1:46:56:1f:1e:74:62:9f:6f:87:4f:dc:
6a:91:86:1b:24:c9:64:eb:b2:d4:61:3a:17:49:4c:
86:81:77:1c:b2:8e:76:40:68:40:8d:5a:e7:46:2b:
6e:51:a5:8b:08:1c:e7:8d:2c:40:68:00:bb:c2:40:
87:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:99:C5:3A:BF:9E:F2:F0:C3:CD:5B:42:32:53:D1:7A:0A:CC:50:E1
X509v3 Authority Key Identifier:
keyid:39:0D:4B:34:49:33:82:38:3A:20:96:EA:9E:0F:9B:7F:94:F3:32:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQ1LNEkzgjg6IJbqng-bf5TzMoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/f52785-7aff-4e3b-9c24-1d0fbedf4b9c/1/W5nFOr-e8vDDzVtCMlPRegrMUOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/f52785-7aff-4e3b-9c24-1d0fbedf4b9c/1/OQ1LNEkzgjg6IJbqng-bf5TzMoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.60.18.0/23
Signature Algorithm: sha256WithRSAEncryption
96:25:d1:3b:df:d2:3c:8b:43:bc:9b:4a:f8:2d:76:24:93:47:
f2:11:ab:a4:6c:62:d0:6f:d8:8d:51:93:63:64:b8:e6:aa:70:
2a:58:aa:4d:61:ca:69:71:40:7b:42:ce:f3:92:83:3b:e7:c1:
ae:6a:9d:8e:c6:f1:27:b0:45:ab:67:5f:fe:3c:98:ac:b8:d8:
07:4e:3d:77:97:90:69:86:ed:db:9a:f1:f0:d6:37:99:84:d3:
66:6f:4a:d8:68:eb:24:93:4a:37:cc:44:80:d8:0c:67:5a:ae:
d4:99:c3:ab:7d:16:23:e3:4c:f6:30:c2:6e:e3:4c:f9:35:1c:
4c:5c:69:2f:fd:50:eb:c7:a4:03:2c:2a:9a:a6:95:72:38:cb:
6b:f7:d2:01:ec:a9:df:86:f1:0c:8b:6f:cc:68:2b:9b:e6:cb:
81:57:83:3b:06:96:49:1d:55:6f:e8:02:a4:95:e5:c2:d7:43:
c9:92:c0:cf:f0:76:9a:92:a3:5a:08:b7:65:cf:e3:90:b6:c7:
29:e3:a8:9a:01:07:22:ac:08:08:ba:d8:7f:07:39:93:64:13:
7c:83:23:97:24:20:b3:3d:81:b1:c8:97:09:ce:70:59:7f:c1:
b8:08:e7:02:ac:f7:b6:bc:24:4c:99:1e:03:0c:34:c0:58:cf:
19:2b:95:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:36:17 2024 by rpki-client on console-ams.rpki-client.org