Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/xD7AjJJpKifl1emUcwD7Tz84228.roa
File: xD7AjJJpKifl1emUcwD7Tz84228.roa (raw, json)
Hash identifier: JmcReynyHbd375xUM2aYs4TGdJp5HqLm5PdsnHGG3x4=
Subject key identifier: C4:3E:C0:8C:92:69:2A:27:E5:D5:E9:94:73:00:FB:4F:3F:38:DB:6F
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01856D81D7A7032AC325056357BB84CA3811
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/xD7AjJJpKifl1emUcwD7Tz84228.roa
Signing time: Sun 01 Jan 2023 13:25:03 +0000
ROA not before: Sun 01 Jan 2023 13:25:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20665
IP address blocks: 217.145.80.0/20 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:d7:a7:03:2a:c3:25:05:63:57:bb:84:ca:38:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 13:25:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c43ec08c92692a27e5d5e9947300fb4f3f38db6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b8:7c:d3:4b:4d:91:92:03:38:ef:f6:ae:f0:
d2:2f:b7:49:fa:9c:d5:ab:4a:a5:e8:58:64:cd:92:
8e:a3:46:52:66:98:51:9b:6a:ae:47:6f:3e:75:5f:
a3:fe:52:96:4e:cd:6b:41:91:83:14:37:3b:bd:0f:
01:3e:29:0d:a8:6c:45:5b:e7:02:a4:db:90:ce:d2:
da:aa:62:d4:fd:b8:5d:c6:79:fb:63:69:72:e3:72:
d2:ed:bb:63:3d:ab:91:6d:db:1d:05:8e:86:9a:d6:
c1:84:77:42:99:52:ba:f1:23:7a:75:0c:57:04:17:
81:31:44:02:1e:af:bc:45:36:13:a4:a8:43:42:9a:
63:4f:3b:1e:b1:fe:d0:0c:4f:a1:f4:ae:2a:c2:3b:
d9:c3:a2:b3:2c:64:10:aa:5c:63:95:76:d8:1c:6a:
c7:e6:68:ff:af:d9:20:60:b7:e1:39:a6:8e:1a:dd:
f7:81:54:7a:0a:32:a5:22:1f:56:ce:17:94:b1:51:
29:43:e0:70:9f:16:d1:fa:1b:bb:43:b5:fa:f0:1b:
e8:22:0e:62:40:cb:79:6c:d9:88:e4:15:87:d0:f7:
77:e6:57:02:a8:c6:f4:3a:42:b1:b1:57:7f:fc:9a:
bb:06:cd:92:bf:39:35:1d:f3:f2:82:ca:7f:03:80:
e4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:3E:C0:8C:92:69:2A:27:E5:D5:E9:94:73:00:FB:4F:3F:38:DB:6F
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/xD7AjJJpKifl1emUcwD7Tz84228.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.145.80.0/20
Signature Algorithm: sha256WithRSAEncryption
60:52:5f:cc:12:7d:7c:b4:c2:cb:75:05:9a:30:ed:0d:ae:de:
c1:86:2a:dd:b2:54:07:07:bb:2c:49:ab:de:b5:10:3f:b5:e9:
e7:2a:0d:a2:d9:dc:03:4c:a8:3d:54:f8:e3:1b:97:ab:fc:bb:
eb:c5:99:7f:4f:c4:03:54:00:14:fe:b3:f4:b4:4d:7f:a2:69:
11:fa:2d:9e:4a:b4:bf:2b:1a:58:68:5b:27:33:a1:4d:72:56:
8e:5f:58:90:c2:f1:76:09:bb:68:6f:01:e5:2d:8f:83:ac:dc:
10:6e:ca:e6:6b:ac:18:3a:cf:e2:bd:1e:73:1e:7f:89:1b:e8:
25:f6:ca:a2:13:d5:08:46:6b:e2:9a:cb:34:19:b7:08:5b:5a:
b6:0c:1c:4f:7d:97:ba:12:30:fb:7b:3e:d4:92:f9:c7:d9:f4:
08:76:55:34:08:f7:6c:3c:52:32:46:14:8c:46:04:e6:74:f1:
4a:dc:e4:d5:58:79:b9:79:6e:b1:d0:01:4c:8d:3e:bd:35:4d:
c5:a3:54:b0:30:ad:90:5f:b9:ea:e3:27:6b:4a:c6:ab:92:7b:
9d:a9:bc:06:3a:93:53:0e:d7:75:a3:f1:75:e5:64:ee:87:42:
db:63:03:24:b0:af:ce:d4:47:aa:b6:6d:ab:d8:39:56:12:bc:
da:af:48:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:21 2024 by rpki-client on console-fra.rpki-client.org