Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/k38VWDteYGv3cUc94e7MFSaJRGQ.roa
File: k38VWDteYGv3cUc94e7MFSaJRGQ.roa (raw, json)
Hash identifier: NHUQ9fucCepJG5WknA9hsFkdvJYfYdOAmNSK/0Y7dss=
Subject key identifier: 93:7F:15:58:3B:5E:60:6B:F7:71:47:3D:E1:EE:CC:15:26:89:44:64
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 01856CB8538B219BD638F63CD931F14804CF
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/k38VWDteYGv3cUc94e7MFSaJRGQ.roa
Signing time: Sun 01 Jan 2023 09:44:57 +0000
ROA not before: Sun 01 Jan 2023 09:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48125
IP address blocks: 217.109.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:53:8b:21:9b:d6:38:f6:3c:d9:31:f1:48:04:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 09:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=937f15583b5e606bf771473de1eecc1526894464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ba:d3:a7:bc:70:3c:cf:ba:4d:a9:99:9a:96:
8b:7e:28:98:6a:e0:88:56:f5:ed:da:e4:61:e7:7d:
75:32:3b:4b:34:ce:19:b3:6a:2f:90:bf:10:43:63:
71:44:64:60:38:63:17:a6:b8:e2:5c:10:3a:d7:10:
d1:ff:59:5d:ba:1a:10:ab:6f:87:39:74:0d:e0:f8:
74:8d:69:3e:a9:19:e9:98:6d:66:77:ac:e1:8d:e2:
f0:3b:8e:35:33:3a:9c:4a:71:a9:43:ff:1a:2c:f6:
38:29:09:25:6a:b9:12:0f:cf:94:9d:46:d4:09:c9:
f0:fa:2c:6c:4c:dc:fe:30:4f:fd:d4:a1:b7:12:46:
8e:a1:45:90:78:45:15:b3:cd:c5:6c:2f:82:da:9b:
88:6a:ee:9e:60:36:1f:a8:6e:b1:cb:0a:c8:58:fa:
9c:66:05:22:40:91:cc:88:8c:b9:89:26:ae:95:2c:
5d:b4:b5:34:ec:5a:be:a6:87:27:e2:d9:79:63:c6:
0c:3c:d8:c8:82:d1:31:9f:d3:cd:8c:0b:8d:0d:74:
de:07:87:1a:e8:fc:a5:1e:d4:d7:b6:71:78:14:58:
25:b8:5f:79:1d:64:2a:c9:fd:bb:7e:71:cb:6e:bc:
d9:eb:e5:65:04:87:59:b9:e6:b1:f1:54:c2:ad:9e:
e2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:7F:15:58:3B:5E:60:6B:F7:71:47:3D:E1:EE:CC:15:26:89:44:64
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/k38VWDteYGv3cUc94e7MFSaJRGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.109.116.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:63:28:72:fc:5d:da:27:74:36:57:2d:b8:aa:3b:d4:c6:75:
58:83:3a:01:31:3f:e7:06:9a:e3:10:6f:40:1d:27:8c:83:04:
88:74:2d:09:77:b1:1e:5c:62:c7:69:28:24:76:4a:1d:95:bc:
9e:a9:3f:35:1c:3d:35:74:cb:6d:26:14:59:f6:a3:d4:11:bf:
5f:47:f4:28:d5:9b:c1:29:5d:74:88:06:6b:b2:c4:e6:66:2e:
cb:95:ab:5a:8b:df:8d:5c:5f:97:9f:0b:52:07:29:df:20:bd:
21:52:0f:6d:6e:a0:ce:79:6b:33:87:f7:dc:e6:72:3b:76:b8:
74:59:ff:c6:c0:fa:3d:6f:f5:b1:08:ad:be:ed:76:ef:a5:62:
5f:46:96:f8:6a:6e:32:a3:21:6a:49:bb:84:82:3e:60:76:b1:
f4:6b:62:e4:eb:d9:0c:ee:29:15:f4:95:8c:5d:85:7a:08:d0:
a9:46:1b:f1:37:f6:bb:45:08:9e:99:cd:a9:52:6e:7f:82:be:
db:9a:5e:8d:cc:92:da:3b:5a:82:16:31:86:30:d7:26:cf:b5:
de:5e:9a:a2:da:39:e0:74:4b:b3:a9:5f:33:86:6f:7a:f3:f0:
52:39:54:8b:ba:89:9f:b9:76:c2:88:b4:77:98:99:9d:7c:df:
00:1f:88:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:19 2024 by rpki-client on console-ams.rpki-client.org