Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/rcRphZ2s-l46wmOth6bk1u_t2q0.roa
File: rcRphZ2s-l46wmOth6bk1u_t2q0.roa (raw, json)
Hash identifier: cE801O2KShs9N+ThWslLfb0B7yLm4AK+Es7Ufv3OlpA=
Subject key identifier: AD:C4:69:85:9D:AC:FA:5E:3A:C2:63:AD:87:A6:E4:D6:EF:ED:DA:AD
Certificate issuer: /CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Certificate serial: 018596668332C7D2D5CD97B7A4104E51D0D8
Authority key identifier: 3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/rcRphZ2s-l46wmOth6bk1u_t2q0.roa
Signing time: Mon 09 Jan 2023 11:59:38 +0000
ROA not before: Mon 09 Jan 2023 11:59:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51606
IP address blocks: 217.22.116.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:96:66:83:32:c7:d2:d5:cd:97:b7:a4:10:4e:51:d0:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Validity
Not Before: Jan 9 11:59:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=adc469859dacfa5e3ac263ad87a6e4d6efeddaad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b2:2a:de:02:fe:f6:0b:fc:52:60:47:33:ff:
b2:59:83:e7:4d:f0:fd:4b:b0:6c:58:39:a2:10:85:
cb:78:f2:10:eb:c3:db:15:47:4c:bd:88:fa:94:b4:
8b:34:d7:eb:b4:d3:27:b1:ba:c8:fd:99:3c:f6:b3:
5d:ea:47:2c:e6:7d:89:13:77:0f:cb:40:4b:69:fe:
93:e8:ea:c2:c7:ed:82:2b:f5:d8:ec:0b:29:cf:56:
eb:2e:23:e0:8f:a4:0b:42:74:7b:f7:fa:1e:2f:76:
ff:98:3f:37:aa:dd:23:f4:80:fa:48:f7:28:88:ea:
d1:2d:4d:e9:e3:cf:7b:b3:3e:fd:da:22:7b:fa:0c:
72:ac:22:c6:5c:45:c8:3a:8a:0b:be:9d:05:46:7a:
58:a1:bc:1e:e4:b8:f3:46:63:0d:f2:f8:25:38:3b:
e7:6f:f3:fa:0f:f7:ca:e2:19:d8:9b:0a:93:57:30:
79:85:6b:71:13:cf:14:7a:a3:84:4b:d8:e1:db:b2:
a3:35:82:1a:15:f7:e5:9a:01:e4:de:1b:f0:0d:b4:
9e:de:c5:16:a9:04:ec:61:f3:14:c2:6a:59:06:d4:
1c:2d:af:dc:00:5a:b5:65:99:80:70:4a:84:7b:92:
14:e5:ca:b0:15:41:95:ce:95:c2:bf:19:00:ed:63:
77:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C4:69:85:9D:AC:FA:5E:3A:C2:63:AD:87:A6:E4:D6:EF:ED:DA:AD
X509v3 Authority Key Identifier:
keyid:3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/rcRphZ2s-l46wmOth6bk1u_t2q0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.22.116.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:71:43:d7:24:92:7a:40:2e:48:9b:e2:7b:9f:96:27:13:4e:
36:58:12:f1:1e:71:8e:d6:b2:c3:e4:52:88:bd:e4:c5:db:d5:
ac:69:7b:d3:40:d8:40:e2:0c:4f:fe:10:ec:47:03:ed:95:59:
8b:e9:44:61:db:4b:8f:b8:34:34:a3:58:60:49:3e:f4:01:d1:
bd:04:66:24:ba:c4:2a:f0:d9:22:cf:e6:f2:c0:5b:61:e9:62:
71:17:17:b3:bd:9e:36:0a:2f:8c:13:38:41:93:77:d0:ec:ca:
7c:6f:57:09:26:e8:f8:72:50:30:f6:78:90:27:a7:35:92:21:
7b:ac:01:1e:8e:95:f9:cc:63:a5:ee:46:d7:a3:b3:b8:6e:f2:
ef:dc:b1:53:9c:78:48:14:f4:a0:af:c5:de:5c:36:98:f0:00:
ee:0b:38:8a:f2:0a:bc:ef:42:71:95:03:09:fd:90:bd:2b:e7:
f5:2c:b9:e6:bb:a3:91:38:d2:96:f2:71:9a:48:53:51:0c:df:
11:0a:8d:d0:32:43:bb:6c:91:8d:4d:d1:24:c7:98:40:43:3f:
0b:89:74:92:3f:e7:31:7e:f7:0c:34:10:31:30:c3:2c:b3:57:
4c:0f:69:cd:75:76:7c:43:92:c7:b1:33:ca:d2:ca:a5:ea:f4:
c3:1f:50:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:17 2024 by rpki-client on console-ams.rpki-client.org