Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/3c034f-c243-4a88-9070-6879cc26d7b6/1/B12q-zDGlcEcxYZmLxPFIgPD6GE.roa
File: B12q-zDGlcEcxYZmLxPFIgPD6GE.roa (raw, json)
Hash identifier: CV8KuWWtZaEBDXNjkVH01yeW22N170wKgNDDe/8i5b0=
Subject key identifier: 07:5D:AA:FB:30:C6:95:C1:1C:C5:86:66:2F:13:C5:22:03:C3:E8:61
Certificate issuer: /CN=9c3cfcde13b660b5c831dafbe1bfbf68df9fbe39
Certificate serial: 018F196223B72E33B8F625D8F03B998B8EB4
Authority key identifier: 9C:3C:FC:DE:13:B6:60:B5:C8:31:DA:FB:E1:BF:BF:68:DF:9F:BE:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDz83hO2YLXIMdr74b-_aN-fvjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/3c034f-c243-4a88-9070-6879cc26d7b6/1/B12q-zDGlcEcxYZmLxPFIgPD6GE.roa
Signing time: Fri 26 Apr 2024 07:50:13 +0000
ROA not before: Fri 26 Apr 2024 07:50:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212153
IP address blocks: 176.97.212.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 27 Apr 2024 11:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:19:62:23:b7:2e:33:b8:f6:25:d8:f0:3b:99:8b:8e:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c3cfcde13b660b5c831dafbe1bfbf68df9fbe39
Validity
Not Before: Apr 26 07:50:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=075daafb30c695c11cc586662f13c52203c3e861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d1:01:6b:3e:25:9d:8f:0c:52:27:1d:85:1b:
19:b8:08:89:56:5b:86:85:cf:54:1f:6d:e6:6c:91:
89:f2:e9:bd:38:cb:af:3b:3d:da:e7:c3:06:37:d5:
64:22:21:a2:a9:15:33:9a:3b:8a:a2:df:fb:f2:10:
cd:7a:ff:bb:39:dd:1e:7d:46:a8:c0:b1:76:ad:0e:
c9:35:d0:37:b8:37:53:3c:10:53:6f:3d:6e:8c:9a:
19:77:4f:f4:09:54:71:c5:fb:18:d8:ca:4d:83:f9:
7e:4e:e7:22:e8:7d:18:3f:9e:29:d7:50:09:0d:34:
27:12:eb:83:2c:97:6f:7d:bc:d8:2c:ab:95:a2:62:
13:a9:ce:59:f7:83:fc:3c:f0:18:6e:fb:0a:df:75:
ac:f7:e2:c6:69:78:14:68:71:79:25:de:5b:58:c7:
ab:45:aa:65:d5:3c:49:28:39:6c:3e:5c:51:ff:53:
3b:18:30:dd:1d:8f:cc:11:79:3c:12:8c:80:2a:79:
fd:dc:b1:23:7d:78:78:b3:7e:18:db:5e:69:55:5e:
18:c9:c7:ea:00:fc:48:90:d6:7e:bd:c3:c2:80:50:
b3:de:a2:20:85:bf:6e:03:b7:b6:1a:4b:f3:22:ce:
68:a1:96:26:e1:ba:67:0c:9d:6f:83:b8:1f:95:23:
6d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:5D:AA:FB:30:C6:95:C1:1C:C5:86:66:2F:13:C5:22:03:C3:E8:61
X509v3 Authority Key Identifier:
keyid:9C:3C:FC:DE:13:B6:60:B5:C8:31:DA:FB:E1:BF:BF:68:DF:9F:BE:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDz83hO2YLXIMdr74b-_aN-fvjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/3c034f-c243-4a88-9070-6879cc26d7b6/1/B12q-zDGlcEcxYZmLxPFIgPD6GE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/3c034f-c243-4a88-9070-6879cc26d7b6/1/nDz83hO2YLXIMdr74b-_aN-fvjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.212.0/24
Signature Algorithm: sha256WithRSAEncryption
65:3c:2a:27:ff:4a:4e:f7:1a:61:3c:ff:0d:2e:f5:35:f2:c3:
b8:a9:a3:45:ea:56:ca:36:ae:01:c5:7a:63:db:a6:32:31:2e:
8f:17:b8:da:26:22:c6:f4:43:b0:9c:49:07:d3:c1:b5:06:4e:
5b:17:17:c6:c3:ca:2f:4c:48:b5:15:ce:a8:54:6e:e5:70:41:
ad:b9:ca:de:21:61:64:72:0b:3e:2b:db:93:78:b0:6a:fe:47:
d1:b5:c1:a8:8b:e2:be:f3:c2:9a:2c:55:1a:11:ba:1b:9d:0d:
a9:9c:02:2d:48:4d:fd:37:dd:0e:36:a2:49:57:98:73:95:e9:
56:f6:a6:7b:ac:7b:ba:aa:cf:a9:14:30:91:f1:59:6d:05:75:
41:de:1a:05:e6:2c:5d:04:f4:43:5a:7b:2e:07:b8:61:43:2b:
a1:7f:47:a2:bf:1f:1c:b5:85:19:a1:99:9d:36:94:17:82:f8:
45:99:d4:c6:c5:ac:a2:4a:78:13:51:0a:57:1e:b1:5c:02:b8:
15:fb:0d:43:c2:d6:e0:14:11:58:38:3a:fd:ca:35:7d:e5:78:
33:26:9f:be:3d:2d:78:02:ce:86:1f:14:9a:6e:37:48:3c:d7:
7f:1d:08:a1:ab:97:6b:d6:c2:a6:13:b1:03:40:66:02:6f:05:
8d:fc:93:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 16:48:30 2024 by rpki-client on console.sobornost.net