Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/VjI49dsmfx9C2OU7lDfjbqoQy2Q.roa
File: VjI49dsmfx9C2OU7lDfjbqoQy2Q.roa (raw, json)
Hash identifier: 2xIB095j4jsNI6T1BH98nKXWl9yAsDofcZH4tFxLePE=
Subject key identifier: 56:32:38:F5:DB:26:7F:1F:42:D8:E5:3B:94:37:E3:6E:AA:10:CB:64
Certificate issuer: /CN=70a0b5aca731ea71f26d63d23c22c123b2bb120f
Certificate serial: 0186DA53D9367D2EF3D591E3BB37BEB7888D
Authority key identifier: 70:A0:B5:AC:A7:31:EA:71:F2:6D:63:D2:3C:22:C1:23:B2:BB:12:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cKC1rKcx6nHybWPSPCLBI7K7Eg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/VjI49dsmfx9C2OU7lDfjbqoQy2Q.roa
Signing time: Mon 13 Mar 2023 09:36:13 +0000
ROA not before: Mon 13 Mar 2023 09:36:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29003
IP address blocks: 192.162.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:da:53:d9:36:7d:2e:f3:d5:91:e3:bb:37:be:b7:88:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70a0b5aca731ea71f26d63d23c22c123b2bb120f
Validity
Not Before: Mar 13 09:36:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=563238f5db267f1f42d8e53b9437e36eaa10cb64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a1:4f:3f:c0:49:fd:89:1e:57:9a:b2:37:79:
0c:d2:02:a2:68:3e:d3:57:ac:57:21:1d:ce:c9:92:
45:ad:84:b7:17:d0:48:8f:32:c7:e9:4a:d6:ed:38:
a0:dc:42:0a:09:49:0b:fe:67:54:9a:30:64:ca:c9:
7b:09:d5:4b:da:c5:3c:7c:ae:07:20:75:05:b2:c8:
e3:87:8d:a7:49:b4:23:4b:4b:22:d1:d4:f5:34:72:
35:02:f3:a6:06:80:50:33:d0:18:a7:a5:45:06:d8:
c0:35:c7:cf:de:6f:5e:c9:e3:ca:4a:5e:c9:85:ef:
7e:26:00:9d:57:22:1b:1c:da:d8:0c:18:63:f3:4c:
17:42:0b:62:b8:22:33:1c:23:10:f6:1f:d2:7b:a0:
8a:3e:f7:04:60:66:74:24:18:00:06:15:3a:9f:67:
ac:64:64:d8:4e:ad:ff:b6:c4:6b:fd:e4:f4:d4:51:
e0:05:fe:72:89:63:cb:77:38:79:73:6e:bb:fe:1b:
8c:69:88:ed:2d:9e:56:b7:50:e9:67:36:ec:92:5e:
4e:f5:aa:1b:fe:e3:82:27:5d:da:8a:1f:a9:b1:2e:
4b:7e:a3:2c:96:2a:13:52:26:bd:13:47:8c:8f:8c:
19:b4:74:67:2a:08:b1:45:dc:89:a4:59:ca:eb:c7:
e0:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:32:38:F5:DB:26:7F:1F:42:D8:E5:3B:94:37:E3:6E:AA:10:CB:64
X509v3 Authority Key Identifier:
keyid:70:A0:B5:AC:A7:31:EA:71:F2:6D:63:D2:3C:22:C1:23:B2:BB:12:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cKC1rKcx6nHybWPSPCLBI7K7Eg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/VjI49dsmfx9C2OU7lDfjbqoQy2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.162.17.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:79:ca:f3:2d:b9:40:12:97:30:03:a2:66:7e:04:2f:69:28:
fe:94:ed:fa:7a:4d:34:82:d4:7d:5f:1c:44:88:0c:68:5d:41:
58:5e:03:a1:6d:00:e9:b5:2f:52:cc:f1:43:ed:f1:c4:a1:ce:
ad:fe:bc:60:2b:27:b2:ef:11:b3:fd:76:fd:ef:3b:e9:e9:99:
f0:f0:80:d5:ff:01:77:9f:29:2d:22:f2:f1:94:82:c4:b7:3c:
ee:db:6c:f6:ea:16:8e:19:dd:fe:41:80:7a:22:0d:99:4f:a6:
22:d6:fe:22:d6:fe:da:dc:91:e2:30:70:72:98:94:6c:22:0a:
e6:98:8a:6c:2a:6e:4f:a5:07:cc:de:35:e7:47:af:6c:5f:89:
8c:37:2a:91:1b:40:0d:0b:4f:4c:98:c8:df:0c:f6:78:d8:8f:
e2:96:bc:93:3e:ec:3a:c2:6a:02:fc:ac:2b:3e:dd:a0:e8:e9:
76:8b:d1:82:8f:eb:da:da:74:97:8d:07:a1:bc:b4:91:d2:dc:
75:19:87:fd:19:4b:4e:58:af:3a:fa:3e:2a:58:37:87:a4:23:
ce:26:9e:5d:d1:a2:97:49:f8:9c:8b:e9:bf:a0:a3:c0:69:e0:
c1:69:89:9a:33:ac:2f:36:88:a4:d6:1c:d7:d6:d0:49:39:fc:
ad:ba:97:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:53 2024 by rpki-client on console-ams.rpki-client.org