Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/b_VUMRE8h3ym0JcpQMtgMfwvddE.roa
File: b_VUMRE8h3ym0JcpQMtgMfwvddE.roa (raw, json)
Hash identifier: KQ1Y+R0YIND175k9SHCumzK1plrd+3cYS+uFXhtkYDc=
Subject key identifier: 6F:F5:54:31:11:3C:87:7C:A6:D0:97:29:40:CB:60:31:FC:2F:75:D1
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA7CE79FBCEE03A81AB3EE1587C835
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/b_VUMRE8h3ym0JcpQMtgMfwvddE.roa
Signing time: Mon 02 Jan 2023 13:45:02 +0000
ROA not before: Mon 02 Jan 2023 13:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43253
IP address blocks: 217.17.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:7c:e7:9f:bc:ee:03:a8:1a:b3:ee:15:87:c8:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ff55431113c877ca6d0972940cb6031fc2f75d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c4:22:8e:f6:20:94:1d:6f:9b:5e:94:0e:43:
c8:41:a4:98:3b:dc:32:50:f7:a3:73:8b:fa:70:99:
1d:dd:c8:25:58:19:e6:a7:7e:37:65:31:d9:61:a2:
e1:33:6c:31:14:e6:b4:7f:d7:f0:5b:82:b9:77:54:
23:56:85:59:78:fc:73:9b:65:98:86:1d:31:b9:ca:
ea:ce:5e:c9:06:71:f2:ac:d7:de:34:3b:31:ef:8f:
78:76:b5:9a:9f:78:82:14:53:e6:52:01:d8:7b:11:
18:32:a7:a7:eb:78:7f:27:85:86:7b:b3:bb:a9:e6:
4f:57:67:68:19:9d:ec:1b:c1:02:78:a6:98:3a:c3:
71:8b:f7:c0:5e:f3:c8:33:99:23:5f:93:e7:90:8b:
a4:4e:8d:ac:8e:a3:b6:ac:4c:24:09:f9:6c:c4:5f:
1a:10:2d:5a:6f:c7:12:7f:d4:66:71:80:af:b1:a0:
37:29:9b:b0:4c:51:3e:a0:8a:91:b3:cb:d1:8f:a6:
c2:ca:82:a8:b2:c5:5e:97:16:a3:49:7c:7d:cb:5a:
96:43:4f:c8:a5:da:64:b6:66:e0:ad:92:5d:fb:7a:
14:f3:e6:46:49:63:3b:01:5d:ad:6d:39:a0:9f:31:
7a:1c:da:d9:91:e5:71:1a:6d:f7:21:a7:f4:70:d7:
83:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:F5:54:31:11:3C:87:7C:A6:D0:97:29:40:CB:60:31:FC:2F:75:D1
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/b_VUMRE8h3ym0JcpQMtgMfwvddE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.17.38.0/24
Signature Algorithm: sha256WithRSAEncryption
99:80:34:79:0d:2a:66:8e:20:0c:62:71:ef:bf:44:30:f8:9d:
c5:e3:a7:d2:a6:9a:44:29:0f:e0:c4:24:9b:99:bc:73:33:20:
2e:17:c1:2f:8f:76:94:4c:44:21:aa:a8:b7:7b:48:ce:c4:a6:
b6:da:ad:3b:9d:f3:66:f1:65:c1:07:68:37:3f:de:70:3f:f4:
c8:d8:a7:81:28:3f:0b:b1:ba:da:3a:83:3b:27:ac:22:1e:5b:
83:e4:2a:30:41:51:21:05:5e:6c:a3:f9:8d:9d:2b:c6:62:f1:
d9:fe:92:42:27:63:df:1b:4e:36:6e:33:98:17:bc:6b:b6:b8:
1b:e0:00:da:b9:49:16:d0:13:21:15:3e:3f:ad:75:31:c6:16:
dd:54:39:67:9b:19:74:ac:81:e3:57:01:13:b6:a8:9b:4c:44:
43:f5:2c:ec:31:ba:c4:f9:c7:cb:22:72:5b:a1:40:06:49:95:
88:6e:3b:97:a2:42:9c:49:76:da:15:07:1c:8b:ac:aa:1f:31:
30:6b:41:ae:8e:7a:aa:e3:09:81:46:d2:18:31:c8:24:df:25:
07:59:f0:56:a1:ec:e4:be:4e:6e:31:61:97:2c:fb:3a:35:c8:
e6:7d:60:f1:4d:1a:7e:e7:d2:36:64:77:f7:b1:00:c1:ce:76:
27:07:af:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org