Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/_kMBNHki6AqKJ37iWuUkrkK5wq4.roa
File: _kMBNHki6AqKJ37iWuUkrkK5wq4.roa (raw, json)
Hash identifier: gbWalue8L/d/bQhPnHB+8OVMtlqXZz9oIdIVpDeA9Q8=
Subject key identifier: FE:43:01:34:79:22:E8:0A:8A:27:7E:E2:5A:E5:24:AE:42:B9:C2:AE
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F150744036E1591EE923D0ADB174527
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/_kMBNHki6AqKJ37iWuUkrkK5wq4.roa
Signing time: Sun 01 Jan 2023 20:45:27 +0000
ROA not before: Sun 01 Jan 2023 20:45:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61224
IP address blocks: 217.156.20.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:15:07:44:03:6e:15:91:ee:92:3d:0a:db:17:45:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe4301347922e80a8a277ee25ae524ae42b9c2ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:af:d5:42:5e:79:31:c7:f2:b5:ae:61:53:b9:
ba:12:a3:46:e4:a4:e3:72:97:db:3e:ab:db:9f:c9:
60:00:61:9b:5c:de:90:27:2d:5b:55:ea:6d:fa:b4:
0e:0e:e4:ea:dd:88:22:0a:a6:97:fd:5b:4b:db:c4:
f4:b4:16:d4:66:42:d3:2d:ec:39:c8:4d:00:14:93:
f2:ae:b8:01:17:98:b6:6e:3e:be:70:31:c6:d9:d0:
09:5b:f6:e8:39:66:2b:43:66:1c:59:16:2a:b7:cc:
60:69:11:fb:34:d9:8f:92:b6:26:c6:ff:23:fa:e5:
72:d3:3a:5e:8b:8b:62:91:19:1b:01:85:9f:1e:1c:
97:a7:fd:a6:8c:21:2f:d9:6c:24:1a:68:c8:95:95:
b4:c0:c4:8a:a0:35:81:5c:a4:9f:b4:86:bf:ea:87:
09:eb:ec:dc:b3:ae:75:83:20:96:67:7d:a9:f1:77:
fa:51:e5:d8:7f:34:fb:89:0d:6c:24:47:62:6f:23:
c1:c4:e9:89:5a:62:d5:d5:72:5a:f8:22:4b:60:25:
1d:b5:e3:63:7e:b2:f3:ad:ba:d1:8b:44:dd:de:70:
f4:28:1a:59:a4:06:76:a2:b8:9c:72:39:95:3b:b9:
23:fe:c2:ab:74:10:d3:22:ae:6f:55:bc:a7:cf:2c:
75:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:43:01:34:79:22:E8:0A:8A:27:7E:E2:5A:E5:24:AE:42:B9:C2:AE
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/_kMBNHki6AqKJ37iWuUkrkK5wq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.156.20.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:3d:3a:c2:d3:83:25:ce:b0:04:97:c4:4c:0d:f1:84:5d:37:
f7:be:0f:46:ef:52:3c:c0:bd:82:a3:c7:85:8f:d5:81:87:47:
c0:d9:f0:59:00:c6:17:0a:d2:79:2f:91:9c:3a:3e:a1:2d:20:
9a:41:75:12:d3:e7:76:84:6a:ef:13:63:89:23:3b:77:ec:c7:
13:56:b5:e7:e8:e2:de:94:a3:5a:91:e3:5e:d0:67:7a:03:8c:
5f:1e:d1:8e:73:c4:5c:de:cb:ba:d2:53:b0:25:b3:81:65:fe:
62:97:a9:a7:92:86:47:c5:5f:16:64:39:e6:15:9f:63:18:53:
ab:96:56:e7:48:2d:86:b8:8c:c6:e9:fb:aa:46:42:ac:22:65:
45:fb:d1:c5:5f:f5:fc:36:56:75:5c:1d:87:8b:16:25:d9:20:
9a:03:83:1d:e3:0a:6a:1c:15:13:61:17:0b:00:e5:26:76:19:
57:ba:5d:16:d5:53:8f:64:b6:17:89:e4:7e:61:d1:af:e8:62:
28:72:48:26:e3:03:ad:ce:a3:56:5e:64:51:5a:d2:6f:a2:ea:
11:16:f0:fa:13:28:d7:a8:6b:7e:61:3e:a1:16:eb:5a:61:1c:
c5:77:42:cf:21:0e:38:42:30:04:a3:42:77:59:70:e7:3e:81:
25:58:e8:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:48 2024 by rpki-client on console-ams.rpki-client.org