Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/GmkHkuYdj3iOXOrHjD4ZlFHAVXE.roa
File: GmkHkuYdj3iOXOrHjD4ZlFHAVXE.roa (raw, json)
Hash identifier: wDcJmtcD538rep2QCWGFg8hrwlLT4M8Qa678iWukT2k=
Subject key identifier: 1A:69:07:92:E6:1D:8F:78:8E:5C:EA:C7:8C:3E:19:94:51:C0:55:71
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F1512511A1EDDE61132ED914EC1ED32
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/GmkHkuYdj3iOXOrHjD4ZlFHAVXE.roa
Signing time: Sun 01 Jan 2023 20:45:29 +0000
ROA not before: Sun 01 Jan 2023 20:45:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212593
IP address blocks: 217.156.24.0/24 maxlen: 24
217.156.25.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:15:12:51:1a:1e:dd:e6:11:32:ed:91:4e:c1:ed:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a690792e61d8f788e5ceac78c3e199451c05571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:10:05:2a:a4:1e:03:94:ea:b3:f7:d6:c8:6b:
bc:c8:d5:b2:ac:51:0e:0d:b7:5d:49:09:c4:82:13:
70:bd:9e:f8:57:e7:0f:3e:93:7f:82:8b:34:fe:42:
1c:87:9a:30:56:ec:01:4a:2a:2d:2a:ea:27:66:92:
d6:a4:1f:b5:c4:f6:c5:63:36:5b:15:cf:cd:70:a7:
7c:ec:68:38:a3:8a:3d:1e:17:5d:2d:e0:c7:f2:d0:
eb:7f:bd:cb:b4:3f:11:45:37:79:a8:d5:99:4f:e6:
84:bd:79:18:c9:68:ef:20:e9:60:fb:e2:23:85:06:
1a:4b:b8:a1:1e:a6:45:f7:a4:21:86:e4:5c:78:3b:
cd:c0:95:e6:f8:a0:5b:0c:12:17:9b:72:50:22:c7:
61:1a:bb:e6:7c:27:51:90:a2:1e:90:e6:41:0f:46:
b5:ba:61:18:70:10:3f:10:e8:ae:57:b5:03:0f:e0:
af:bc:8f:c1:fb:5c:03:d6:8d:c7:73:ab:9a:dc:30:
4a:4c:8b:0f:be:e5:7b:75:33:d5:e1:3e:41:2c:07:
97:1d:30:33:98:12:aa:05:94:0b:7c:06:40:19:fc:
41:b0:76:89:ac:a9:1f:55:fd:02:79:f9:18:58:72:
9d:6c:0d:fb:da:94:63:fd:53:57:30:bb:98:92:c8:
ae:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:69:07:92:E6:1D:8F:78:8E:5C:EA:C7:8C:3E:19:94:51:C0:55:71
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/GmkHkuYdj3iOXOrHjD4ZlFHAVXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.156.24.0/23
Signature Algorithm: sha256WithRSAEncryption
b7:3c:d7:ff:df:02:42:4e:85:74:ca:41:3d:e5:ae:b4:92:7d:
37:b7:a4:98:08:6f:31:c0:d3:34:7c:31:e0:95:6c:1e:01:84:
16:16:eb:b5:7d:21:08:68:00:6a:a8:ae:a2:68:6e:3c:93:f4:
50:2e:5c:c2:84:de:af:68:54:85:f8:d2:43:5b:55:23:55:41:
83:d1:11:ec:ee:39:42:9c:0f:f2:1d:f5:69:03:21:d1:b6:57:
6e:9f:65:7f:2a:0c:db:e1:f9:e9:4a:fa:44:95:b3:fb:cf:2d:
e9:78:33:7e:75:00:94:44:21:b5:da:3d:1d:54:8e:04:d5:00:
d9:c6:27:85:b7:f1:8c:95:9e:be:dc:2b:08:fe:d3:e4:55:c0:
58:a4:33:33:4f:5e:d5:d2:28:76:8f:82:37:b3:a6:12:f8:7a:
e6:33:31:78:d8:e7:10:d9:97:e2:79:d5:49:6f:79:57:bb:bc:
8c:40:4d:b8:70:d0:bf:16:60:ac:00:d6:da:8e:b1:4e:55:4f:
2a:74:4f:c3:61:9a:e2:1a:90:13:cf:d6:ad:7d:5d:00:93:90:
95:0c:aa:8e:1d:f6:6a:11:6c:14:cb:8b:bc:57:7b:99:f2:95:
9a:92:e1:94:a9:7a:3a:de:da:38:60:a6:6f:de:dc:4a:f3:e3:
cd:04:9e:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:48 2024 by rpki-client on console-ams.rpki-client.org