Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/gR_6XJd8uGS8QVNa5PaDAW4RUzY.roa
File: gR_6XJd8uGS8QVNa5PaDAW4RUzY.roa (raw, json)
Hash identifier: ROv9I+vV/92f2GH841BGrnU8Ipy3Lo/C9mvTBymU29Y=
Subject key identifier: 81:1F:FA:5C:97:7C:B8:64:BC:41:53:5A:E4:F6:83:01:6E:11:53:36
Certificate issuer: /CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Certificate serial: 018B81E207FFABAFC270346FAF1F5599C2DA
Authority key identifier: 70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/gR_6XJd8uGS8QVNa5PaDAW4RUzY.roa
Signing time: Mon 30 Oct 2023 18:39:15 +0000
ROA not before: Mon 30 Oct 2023 18:39:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 217.119.132.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:81:e2:07:ff:ab:af:c2:70:34:6f:af:1f:55:99:c2:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Validity
Not Before: Oct 30 18:39:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=811ffa5c977cb864bc41535ae4f683016e115336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:60:8f:47:78:66:de:71:d3:26:0d:91:03:5a:
48:28:d0:cd:3a:63:23:fd:8e:30:77:a7:57:f8:08:
ea:bb:82:0c:4f:c9:cb:ce:0c:62:e7:96:84:0b:41:
d1:fd:fa:dd:bc:c0:68:fd:b4:68:09:82:4b:f4:16:
76:28:cd:7b:2e:1a:71:87:69:36:63:e5:73:35:43:
66:42:f8:49:78:7a:67:6b:8f:b2:46:e3:b0:8c:01:
ac:ed:f7:16:ff:1d:eb:b2:cf:df:3e:d6:f6:13:2a:
b9:eb:91:86:48:6c:21:5f:95:36:5c:1b:0d:1c:45:
ce:bd:ab:4a:f6:56:c5:96:2f:0f:19:54:57:ca:ba:
fd:5a:3f:06:1a:e2:8a:80:1b:bb:57:bd:cf:9a:a0:
2e:82:e0:9b:7d:ed:7f:84:2a:d8:0a:e7:03:10:32:
9a:ae:1a:53:70:37:89:a3:31:48:1c:e8:69:e9:4a:
5b:62:a7:cf:3a:10:9d:0f:be:34:31:04:29:94:01:
8c:89:a4:d7:e5:68:4c:42:d7:83:1d:4e:c5:76:b5:
f8:58:14:c8:56:0d:21:c4:b1:7d:ba:49:41:0c:00:
f3:e5:1d:05:1d:4a:94:78:91:ce:9c:2b:c0:23:28:
7c:ef:52:ed:70:8d:49:4e:32:16:3d:05:b0:8c:58:
23:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:1F:FA:5C:97:7C:B8:64:BC:41:53:5A:E4:F6:83:01:6E:11:53:36
X509v3 Authority Key Identifier:
keyid:70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/gR_6XJd8uGS8QVNa5PaDAW4RUzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/cG06u7R4t07yre-bt8QzbjQRHVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.119.132.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:40:b4:f1:ad:f1:30:dd:31:e8:b8:7e:41:86:cf:c5:72:41:
16:fa:80:f1:f9:ee:73:d3:27:a8:f1:53:a6:b0:50:78:92:3d:
1d:60:ea:b2:28:d0:55:1b:86:8f:88:e9:9d:c4:51:e9:91:27:
29:b8:b1:20:c6:1e:03:3a:7e:af:1f:d7:06:d6:de:30:1f:9b:
8d:87:c8:79:4a:22:7f:bf:92:02:55:41:dd:38:ce:7b:12:15:
b7:c7:cf:20:cc:8b:80:c8:57:0e:1c:50:5b:6c:f9:8b:f2:68:
92:d1:c1:2c:fd:9c:dc:d4:f4:05:75:d7:1a:fe:dc:49:af:d9:
10:26:4a:88:5e:90:79:8d:c5:6e:7c:d8:1b:de:f2:95:c6:a4:
4c:14:21:94:47:7c:35:78:d4:4d:ec:16:6a:1c:ea:9d:2e:3f:
ac:80:c3:c8:12:6b:da:04:32:91:7f:4d:93:aa:df:25:d0:c0:
af:88:e5:e8:d0:b4:18:81:f0:c9:42:65:a7:80:4b:70:a9:ad:
ad:87:a4:ef:d7:ef:27:49:d8:a4:cf:b5:e3:42:f8:2e:4b:cf:
1d:c9:e4:a3:80:c8:01:f1:dc:c2:27:58:ac:cc:fb:8c:e2:d7:
79:27:53:cf:1c:c5:a3:13:f5:d4:93:91:66:65:8d:9f:c8:51:
bb:11:d1:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 21 13:10:20 2023 by rpki-client on console-ams.rpki-client.org