Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/1jc7tRELjWPAnyxb4hJ0dspALws.roa
File: 1jc7tRELjWPAnyxb4hJ0dspALws.roa (raw, json)
Hash identifier: wteer6t4REcS1poMW7EhU7woPL9MjgvdfoLE860cD+k=
Subject key identifier: D6:37:3B:B5:11:0B:8D:63:C0:9F:2C:5B:E2:12:74:76:CA:40:2F:0B
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018EE2C6DD1550A608B70DBB01E63D5DEF40
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/1jc7tRELjWPAnyxb4hJ0dspALws.roa
Signing time: Mon 15 Apr 2024 17:21:07 +0000
ROA not before: Mon 15 Apr 2024 17:21:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200019
IP address blocks: 217.156.64.0/24 maxlen: 24
217.156.65.0/24 maxlen: 24
217.156.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 May 2024 06:25:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e2:c6:dd:15:50:a6:08:b7:0d:bb:01:e6:3d:5d:ef:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Apr 15 17:21:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d6373bb5110b8d63c09f2c5be2127476ca402f0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:4c:5e:e3:0b:0a:5c:c0:71:5c:9a:23:62:01:
70:cd:d7:0d:e1:db:17:bf:53:50:73:5e:67:0e:17:
0d:13:8d:00:a0:98:9f:ee:e8:38:3f:80:06:cd:52:
bc:2a:fa:6c:80:6a:3d:3f:ab:0d:6c:ff:f7:a8:95:
37:67:5f:6b:71:e7:96:e1:48:e7:85:30:a8:bd:39:
24:ea:f8:08:a6:34:17:e4:4a:d7:8f:a8:b0:7e:b5:
d0:17:5c:54:7b:0d:11:1c:2d:b4:b7:ad:a1:be:dd:
c2:26:89:cd:6a:be:14:e8:b8:32:7a:a4:4c:7d:88:
26:1d:2d:63:54:92:df:03:48:e8:7e:dd:32:93:b3:
d3:eb:20:64:c6:e3:19:dc:8a:03:6b:c3:0e:d1:a0:
87:c6:97:e5:0f:6c:07:84:46:2f:32:bf:ea:bf:04:
1a:76:be:18:b7:d7:f5:dc:6f:48:23:06:c5:79:f5:
9c:19:6a:c1:57:c4:c6:0f:5a:1c:ee:ba:76:0f:76:
9b:d3:2d:c0:18:23:5c:5f:e9:ec:20:ac:fd:74:ae:
12:24:68:69:c6:2d:d1:9d:c1:32:6c:7b:35:5a:6b:
83:0f:6b:a2:27:f6:aa:53:89:00:2a:77:a3:50:47:
9c:f3:ba:fc:5f:68:db:07:f5:c0:3e:18:0b:f2:fc:
57:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:37:3B:B5:11:0B:8D:63:C0:9F:2C:5B:E2:12:74:76:CA:40:2F:0B
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/1jc7tRELjWPAnyxb4hJ0dspALws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.156.64.0-217.156.66.255
Signature Algorithm: sha256WithRSAEncryption
a2:ae:12:c1:a9:34:ed:a4:cf:89:a3:80:c3:ca:a9:c5:a6:a6:
0a:8f:38:fc:2c:cc:e6:7a:c3:7d:11:38:10:48:0e:69:5c:ba:
d9:bd:e3:7b:55:fb:a3:a9:5f:55:67:af:ca:7f:61:63:4c:3a:
fe:14:07:99:80:df:41:b3:19:5e:37:75:f3:22:d4:c4:16:59:
6e:77:9a:52:b7:32:d4:35:b0:1a:f8:2f:98:81:71:b4:96:6a:
da:95:10:4f:06:7e:c0:f6:d0:7b:b0:bf:26:4f:b9:8b:53:f3:
43:42:57:81:67:49:86:41:a6:17:71:66:18:2b:75:98:17:12:
74:37:4b:0a:0d:37:5b:0a:4a:84:49:3f:ab:25:ab:99:af:e0:
c2:75:3c:c8:cd:88:a8:e2:ba:6d:2c:38:14:58:27:06:fa:6c:
f7:47:df:d7:fe:c3:98:f3:df:c0:13:9d:c1:84:26:0f:3f:cd:
a9:19:3f:9e:bc:42:67:dd:eb:59:be:6e:37:f8:72:4e:7d:a5:
23:a8:7c:09:5a:91:7e:17:e1:22:75:cc:d0:fe:1b:e4:c0:04:
07:dd:d8:ad:c6:fc:1a:0b:8a:0b:24:1a:8d:72:f9:b0:64:75:
b9:48:1b:c0:7d:65:26:30:6d:ea:a8:cc:ff:21:85:ef:ce:f2:
d0:b7:04:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 09:01:23 2024 by rpki-client on console-fra.rpki-client.org