Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/9b16f3-0100-4964-9ec9-e5ec2cc647aa/1/D_pHqeVead-p_24NANIaD0_IZzI.roa
File: D_pHqeVead-p_24NANIaD0_IZzI.roa (raw, json)
Hash identifier: c4KeFAi/iHSGul1c3HyKVCN4DSrujvNNZs/syGai4cs=
Subject key identifier: 0F:FA:47:A9:E5:5E:69:DF:A9:FF:6E:0D:00:D2:1A:0F:4F:C8:67:32
Certificate issuer: /CN=9b47ee1f17c987debb2c020d8b5f2d8bdadbeb77
Certificate serial: 018572280E8A085F0CC5FA53EEF471226BFD
Authority key identifier: 9B:47:EE:1F:17:C9:87:DE:BB:2C:02:0D:8B:5F:2D:8B:DA:DB:EB:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m0fuHxfJh967LAINi18ti9rb63c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/9b16f3-0100-4964-9ec9-e5ec2cc647aa/1/D_pHqeVead-p_24NANIaD0_IZzI.roa
Signing time: Mon 02 Jan 2023 11:05:05 +0000
ROA not before: Mon 02 Jan 2023 11:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 217.8.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:28:0e:8a:08:5f:0c:c5:fa:53:ee:f4:71:22:6b:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b47ee1f17c987debb2c020d8b5f2d8bdadbeb77
Validity
Not Before: Jan 2 11:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ffa47a9e55e69dfa9ff6e0d00d21a0f4fc86732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:97:27:fe:a0:64:dc:59:57:6a:b5:f5:d8:43:
44:aa:46:3b:ee:38:be:d1:97:de:f7:5b:cf:28:e3:
33:5e:fc:75:7e:32:75:61:ac:3d:4f:55:f8:23:8b:
4d:ea:c3:ee:7e:1d:44:44:94:3f:02:e9:03:6a:b7:
a3:fe:e6:9e:28:11:96:27:9a:ef:6d:6f:66:58:64:
53:ac:18:85:db:4b:ce:8c:77:75:66:a1:49:0c:b9:
d1:ca:fc:d3:c3:e6:c6:08:a1:10:a2:56:63:47:30:
35:5b:ab:7f:61:d0:52:0e:a7:86:11:cc:c3:20:7a:
e8:44:f5:c5:2f:f1:df:9b:4d:8a:94:73:3f:d0:73:
68:f2:63:b0:6b:45:0d:f2:a1:d3:49:65:86:f0:f4:
19:9a:f6:08:06:c2:f8:95:09:7c:31:49:e9:0f:7e:
28:ef:0b:42:da:7d:2f:b2:31:c5:c6:d0:48:fa:e5:
00:c5:88:02:cc:2d:7f:ed:03:ce:a4:f2:fb:12:6c:
5c:fc:17:7e:f7:c3:95:7d:6e:15:b4:e9:25:13:da:
2c:11:16:0d:de:7d:f4:97:f0:35:be:19:ee:d1:dc:
70:9a:d3:7c:28:71:8b:da:06:58:0e:15:0c:11:55:
b5:75:95:17:2d:24:94:41:d3:83:ae:67:4c:b3:5f:
50:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:FA:47:A9:E5:5E:69:DF:A9:FF:6E:0D:00:D2:1A:0F:4F:C8:67:32
X509v3 Authority Key Identifier:
keyid:9B:47:EE:1F:17:C9:87:DE:BB:2C:02:0D:8B:5F:2D:8B:DA:DB:EB:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m0fuHxfJh967LAINi18ti9rb63c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/9b16f3-0100-4964-9ec9-e5ec2cc647aa/1/D_pHqeVead-p_24NANIaD0_IZzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/9b16f3-0100-4964-9ec9-e5ec2cc647aa/1/m0fuHxfJh967LAINi18ti9rb63c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.8.118.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:0b:bc:a8:fb:c6:14:9e:d9:d3:66:1f:9e:70:23:e5:c4:73:
02:e8:05:dc:ed:3d:a8:e6:c0:20:18:42:22:9a:22:34:3d:c5:
9d:f5:18:ff:43:e1:b7:3e:d9:1f:85:a2:37:8f:0e:16:6f:ce:
26:c8:41:09:43:92:92:92:19:fe:f1:81:63:f8:86:7b:76:0a:
74:cd:21:e0:75:07:05:cd:64:52:80:f7:8e:52:65:dc:70:69:
55:23:7f:93:1c:72:dc:58:56:32:15:35:13:a8:a3:8e:c4:cf:
28:1c:a3:4a:b6:92:9d:ae:5d:01:fd:7a:2f:34:29:0a:0b:d2:
8f:e6:76:b7:81:cd:95:82:f8:d4:3d:0d:a1:86:e4:a9:e5:c3:
98:82:0a:bc:1d:70:1d:74:ae:f0:3e:d7:a1:15:94:aa:d4:bb:
4b:03:28:f4:8f:8c:76:ae:2e:29:98:74:06:2d:a8:d5:be:30:
73:5b:17:88:b1:f4:4f:c0:e8:b1:fa:5a:99:a3:0b:2a:0d:fd:
50:86:ca:bc:61:78:54:ce:dd:96:05:4b:33:a7:16:c4:a8:b5:
54:6a:c1:7e:0e:af:78:fa:18:73:34:e8:08:80:32:f0:17:ed:
02:e8:27:60:5c:a6:68:76:9c:5d:b1:3a:40:85:70:ab:76:0e:
bc:aa:97:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:34 2024 by rpki-client on console-fra.rpki-client.org