Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/06ac4f-9833-4e8d-b352-77140d09783c/1/plNztV01hDBg0IWv5KulGsoC250.roa
File: plNztV01hDBg0IWv5KulGsoC250.roa (raw, json)
Hash identifier: 7AsD68yaR8E8Te0x0SDO9dgMVlXa9BIsvdW6/Z78IRM=
Subject key identifier: A6:53:73:B5:5D:35:84:30:60:D0:85:AF:E4:AB:A5:1A:CA:02:DB:9D
Certificate issuer: /CN=6ccf360df9a1f61e23327da0d2c09112e0a9bd69
Certificate serial: 01857079B549D8A1914F7DF08EF21DEEF5EF
Authority key identifier: 6C:CF:36:0D:F9:A1:F6:1E:23:32:7D:A0:D2:C0:91:12:E0:A9:BD:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bM82Dfmh9h4jMn2g0sCREuCpvWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/06ac4f-9833-4e8d-b352-77140d09783c/1/plNztV01hDBg0IWv5KulGsoC250.roa
Signing time: Mon 02 Jan 2023 03:15:02 +0000
ROA not before: Mon 02 Jan 2023 03:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48768
IP address blocks: 217.21.128.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:b5:49:d8:a1:91:4f:7d:f0:8e:f2:1d:ee:f5:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ccf360df9a1f61e23327da0d2c09112e0a9bd69
Validity
Not Before: Jan 2 03:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a65373b55d35843060d085afe4aba51aca02db9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:db:02:82:6b:44:fc:c2:99:e8:47:4e:9a:7b:
b8:42:d6:d2:4e:ad:d2:e9:81:da:53:3e:17:23:2f:
23:10:a7:ab:ab:7a:f5:ee:ea:cb:98:81:6c:bf:42:
b6:e6:46:2b:3b:b6:87:c2:d7:c0:3b:f0:ae:ae:cc:
5b:07:7c:9b:9a:86:01:37:51:49:f3:d3:34:91:86:
d0:d7:a3:9a:a1:3f:74:7f:3e:5a:ca:4b:64:4e:da:
00:ec:92:93:c0:8d:30:8b:9e:3e:e7:37:7d:d3:25:
f5:af:58:3e:0b:da:ed:38:1b:93:93:06:8d:ef:3e:
e2:72:3e:ad:70:99:14:c6:72:bf:20:a4:f8:7e:8b:
91:70:06:0c:c4:4a:af:71:6e:eb:c1:aa:63:d9:20:
8a:97:08:6e:28:39:99:3a:63:50:1c:17:b0:d4:65:
9f:8c:63:b5:e7:e0:ac:66:c9:21:40:3c:44:cc:ff:
30:ec:dc:fd:e2:a1:d5:a3:81:2d:79:8c:5e:5d:9f:
d6:a0:dd:ab:b1:d1:3b:8a:c3:b3:f4:68:65:fa:9d:
0f:38:2b:54:cf:db:f2:51:7f:cd:b1:78:9c:4e:3a:
39:c9:4c:35:93:97:ed:0d:42:d1:ef:77:bb:f2:97:
17:35:c5:7b:3e:72:31:42:e3:e4:ed:57:04:f9:9c:
a3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:53:73:B5:5D:35:84:30:60:D0:85:AF:E4:AB:A5:1A:CA:02:DB:9D
X509v3 Authority Key Identifier:
keyid:6C:CF:36:0D:F9:A1:F6:1E:23:32:7D:A0:D2:C0:91:12:E0:A9:BD:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bM82Dfmh9h4jMn2g0sCREuCpvWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/06ac4f-9833-4e8d-b352-77140d09783c/1/plNztV01hDBg0IWv5KulGsoC250.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/06ac4f-9833-4e8d-b352-77140d09783c/1/bM82Dfmh9h4jMn2g0sCREuCpvWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.21.128.0/20
Signature Algorithm: sha256WithRSAEncryption
33:a6:20:83:6b:2c:56:17:3d:d6:70:47:e3:93:7b:23:9e:8f:
7b:90:b2:a7:89:0a:e7:63:a6:76:af:3e:84:44:fd:4a:52:7d:
33:2e:8f:e8:58:88:a5:6e:24:89:79:e7:0a:36:88:d3:1b:c8:
4e:15:e1:5f:f1:5b:19:4f:65:fe:14:7b:4d:46:4c:29:85:e0:
c5:8b:f7:fb:13:9e:b0:10:0b:35:68:1a:cc:73:52:d3:c7:98:
5f:c6:69:96:43:12:43:c5:a0:75:91:25:de:85:7f:82:f9:34:
d4:1f:42:ae:60:6b:f4:2e:92:81:af:c2:a2:2b:6e:0e:50:4d:
e4:78:68:05:3d:8b:33:78:88:27:8c:8a:cd:8e:8b:e0:cf:90:
00:94:a6:8c:18:d1:37:9f:94:f2:45:62:8a:02:32:01:c0:ee:
bc:c4:53:e3:4f:99:b6:9c:c1:a2:d1:c9:32:f0:7c:ef:11:15:
e4:88:15:0c:e1:57:de:09:da:4a:68:ac:7e:54:5f:de:df:ec:
50:68:6a:3a:4e:4f:c3:48:20:99:f4:b1:23:83:fd:f7:45:a4:
64:8e:6f:64:34:ae:f4:6d:b8:2c:ed:0f:d6:45:07:33:a2:d3:
3e:e2:2a:ed:ee:cb:70:a6:9f:9f:2c:3d:63:52:78:08:26:05:
ef:70:52:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:41 2024 by rpki-client on console-fra.rpki-client.org