Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/79d746-03f9-4c71-afc7-e5d0b76de5b8/1/2KJwtxueXjKktKeKF1MCE1fWRKM.roa
File: 2KJwtxueXjKktKeKF1MCE1fWRKM.roa (raw, json)
Hash identifier: aT93moJ9NWUIku9EZUGAwzMn6VnN38AYmyFhuNY/WTg=
Subject key identifier: D8:A2:70:B7:1B:9E:5E:32:A4:B4:A7:8A:17:53:02:13:57:D6:44:A3
Certificate issuer: /CN=fb3bad7d0685995ced35108b2e11525a7aab1418
Certificate serial: 018ADBB464624DE33A109DCC244FE03FBC17
Authority key identifier: FB:3B:AD:7D:06:85:99:5C:ED:35:10:8B:2E:11:52:5A:7A:AB:14:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-zutfQaFmVztNRCLLhFSWnqrFBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/79d746-03f9-4c71-afc7-e5d0b76de5b8/1/2KJwtxueXjKktKeKF1MCE1fWRKM.roa
Signing time: Thu 28 Sep 2023 12:12:27 +0000
ROA not before: Thu 28 Sep 2023 12:12:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208025
IP address blocks: 217.198.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:db:b4:64:62:4d:e3:3a:10:9d:cc:24:4f:e0:3f:bc:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb3bad7d0685995ced35108b2e11525a7aab1418
Validity
Not Before: Sep 28 12:12:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8a270b71b9e5e32a4b4a78a1753021357d644a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:7e:68:52:99:48:fa:dd:01:bf:1c:ef:ff:d0:
1b:ef:ea:fa:cb:58:a5:b9:b0:b5:38:ac:22:2b:ab:
91:2f:9b:20:f6:2c:3d:16:b5:b0:3b:4e:25:96:90:
77:2d:c1:e3:4a:15:68:44:6b:bc:a6:77:10:24:50:
2a:c3:8b:e0:0b:2a:cb:95:e1:57:46:93:e0:11:04:
35:8b:ae:b5:21:bb:b1:81:a3:95:da:53:bd:8d:95:
ba:02:4b:d0:5e:71:1a:22:a3:91:5f:04:09:5e:db:
98:b6:1e:41:f3:c1:59:01:1d:77:d5:9a:42:40:8e:
b5:6d:be:70:55:bf:91:b8:5d:0c:bd:60:d8:89:b4:
27:f4:56:e1:d7:cb:95:4e:31:5a:0e:be:f7:51:56:
e3:8e:ee:e8:19:ff:70:87:6c:bb:20:ba:60:2f:3f:
b0:bc:20:63:b2:d3:48:89:b1:09:d7:3f:75:7f:8f:
42:51:8d:8e:f5:8e:b2:2b:78:98:d6:60:c8:23:c7:
61:b6:72:cc:87:c4:9e:b1:1b:76:52:d3:8f:eb:21:
ee:0e:1d:44:d4:0f:62:2f:ee:ff:49:8c:64:18:18:
50:e0:60:be:fa:04:2f:4d:7e:5d:e9:8d:fa:02:1f:
b5:e0:00:b2:b2:69:b3:93:d8:ee:05:59:38:91:80:
b7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:A2:70:B7:1B:9E:5E:32:A4:B4:A7:8A:17:53:02:13:57:D6:44:A3
X509v3 Authority Key Identifier:
keyid:FB:3B:AD:7D:06:85:99:5C:ED:35:10:8B:2E:11:52:5A:7A:AB:14:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-zutfQaFmVztNRCLLhFSWnqrFBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/79d746-03f9-4c71-afc7-e5d0b76de5b8/1/2KJwtxueXjKktKeKF1MCE1fWRKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/79d746-03f9-4c71-afc7-e5d0b76de5b8/1/1-zutfQaFmVztNRCLLhFSWnqrFBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.185.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:fd:4e:d9:2c:ae:43:fb:12:e8:a1:24:c6:91:88:32:0f:ad:
96:0b:cd:f9:6b:2c:b0:cb:6a:1a:f2:b7:90:28:76:7e:54:a4:
70:cd:68:83:03:fb:69:a6:39:6c:ae:2c:0d:c5:47:1b:fe:ad:
85:43:d4:2b:8d:aa:00:1a:56:55:41:40:6e:c0:70:ee:41:d0:
39:a8:f5:fa:f2:69:04:74:e3:6c:77:9d:8d:3b:b2:33:0c:e4:
fd:3f:0d:98:4b:5b:dd:97:e0:9f:8e:b2:fa:ce:7e:ba:b6:91:
22:bf:50:97:d2:55:97:31:c7:4e:da:f6:cc:23:e1:27:c5:2a:
43:07:a8:a2:1c:3a:71:bc:c1:9e:52:34:b2:0c:5d:d4:fc:3b:
1a:22:91:d9:81:c2:be:ea:5e:80:7f:a3:b6:e3:16:79:73:2c:
52:6d:8b:55:57:d8:a7:c2:20:9e:e9:ab:79:a7:47:ea:0f:de:
54:a4:81:2f:b5:3a:69:d7:0c:da:81:5f:c0:79:9d:57:1b:41:
40:0e:1d:6d:9d:8f:f5:88:f7:97:36:17:7d:3d:23:53:21:f7:
cf:a9:11:df:d8:6d:10:90:44:2e:9f:fd:52:07:dd:e4:13:ce:
f2:58:1d:f9:2f:7d:84:74:fc:ba:80:32:b8:0d:bc:a4:bc:7e:
25:3f:46:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:18 2024 by rpki-client on console-ams.rpki-client.org