Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/2zGuuzowWNff88nWcEq1J3OwCDw.roa
File: 2zGuuzowWNff88nWcEq1J3OwCDw.roa (raw, json)
Hash identifier: ABF8xzvUUXo6u1zy4N6nTXxhkSToSs+1KGL+sqlsYxI=
Subject key identifier: DB:31:AE:BB:3A:30:58:D7:DF:F3:C9:D6:70:4A:B5:27:73:B0:08:3C
Certificate issuer: /CN=220f413fb0af0bd8fe130820d3049d0e71ed4bb0
Certificate serial: 0185737A9AA610C137C9D840D0B1D15314AA
Authority key identifier: 22:0F:41:3F:B0:AF:0B:D8:FE:13:08:20:D3:04:9D:0E:71:ED:4B:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/2zGuuzowWNff88nWcEq1J3OwCDw.roa
Signing time: Mon 02 Jan 2023 17:14:52 +0000
ROA not before: Mon 02 Jan 2023 17:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 217.169.192.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:9a:a6:10:c1:37:c9:d8:40:d0:b1:d1:53:14:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=220f413fb0af0bd8fe130820d3049d0e71ed4bb0
Validity
Not Before: Jan 2 17:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db31aebb3a3058d7dff3c9d6704ab52773b0083c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:83:7c:1e:26:1b:61:75:59:8b:95:eb:5c:af:
9b:c8:af:2b:c2:98:2b:7c:cd:b9:8f:da:a8:4e:82:
57:92:f4:db:6e:c4:c4:e0:83:e2:07:09:3f:f9:d0:
72:e1:31:42:a8:35:74:39:bc:22:c6:38:58:15:5f:
82:af:b6:2e:de:89:90:6d:ec:13:cd:88:f6:4d:83:
94:3c:14:ba:a4:70:75:d4:3c:64:b8:15:f9:53:85:
81:78:09:31:d8:09:8e:3c:e1:30:db:03:36:5d:ea:
fd:24:ee:45:16:6b:fa:ed:f2:e8:31:0b:4c:2a:7c:
c4:0b:bf:cd:94:ed:ae:3d:6b:57:b6:b6:8c:b2:62:
cd:0e:84:ec:5c:b4:53:4e:3a:8b:00:80:9b:e2:a5:
94:d3:a8:8a:2b:1f:94:fa:11:3a:94:51:e3:43:ae:
55:30:28:f5:e9:8c:58:51:43:ec:37:37:a7:70:e2:
f5:f4:1a:28:4e:2e:18:19:6a:87:34:13:64:fd:51:
4f:75:ad:22:6c:16:a6:e8:04:1f:f0:7b:71:fb:4d:
24:0e:6c:1f:c0:b2:a5:9b:b3:39:c2:41:4b:d5:62:
6e:13:a8:82:c5:29:82:fb:44:e2:40:ad:8c:c6:65:
09:3d:b6:f8:61:68:90:68:5d:87:ff:cc:a6:0d:54:
c9:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:31:AE:BB:3A:30:58:D7:DF:F3:C9:D6:70:4A:B5:27:73:B0:08:3C
X509v3 Authority Key Identifier:
keyid:22:0F:41:3F:B0:AF:0B:D8:FE:13:08:20:D3:04:9D:0E:71:ED:4B:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/2zGuuzowWNff88nWcEq1J3OwCDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.169.192.0/20
Signature Algorithm: sha256WithRSAEncryption
42:74:b5:7e:8d:33:1f:41:5f:08:11:e2:7e:72:d0:f8:25:e2:
83:59:59:0e:52:f8:c1:bd:1c:2c:ac:96:68:d4:09:5d:3f:4e:
b4:78:ac:f6:9b:d1:0e:de:86:dd:8b:fb:bb:89:50:31:e1:93:
bd:a6:ea:ae:63:61:56:a4:05:de:e7:14:4b:42:56:d4:ce:4e:
3e:19:b0:bc:ec:09:c2:64:c2:13:68:d8:99:4b:8b:ba:b8:8a:
00:33:02:5d:ff:c4:63:17:9b:07:fd:f1:6c:9a:52:7f:89:05:
1f:9d:9f:ee:7c:21:d6:cf:89:7d:ee:8c:c3:88:3d:f0:70:f7:
20:58:ab:b4:99:9f:33:25:66:db:58:1c:ab:8c:4b:51:9f:3b:
1b:be:06:b3:6d:b3:f5:b2:31:89:26:0a:56:f1:bc:49:5e:83:
3b:f5:cf:bb:19:82:fa:09:b5:a9:26:09:1f:6d:79:26:57:0c:
f2:ff:4e:70:38:df:c9:c3:6d:4e:38:3e:8f:42:30:6b:06:aa:
28:a4:f7:ff:36:7a:43:23:fb:6c:5e:d3:41:1e:b7:41:92:b2:
11:e8:ba:4a:c2:99:b0:af:d6:7b:e9:02:1d:c1:25:cd:5e:4b:
a6:10:25:98:ec:45:db:da:1e:a8:92:60:cf:b4:41:9d:81:f7:
0f:15:e3:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:37 2024 by rpki-client on console-ams.rpki-client.org