Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/jexMspVvlkmg-kIXs5HPJ5u00RI.roa
File: jexMspVvlkmg-kIXs5HPJ5u00RI.roa (raw, json)
Hash identifier: MktCRLaH0IQXCM2tHH9Vq+NG32M4vrB9k12MVO4ttIc=
Subject key identifier: 8D:EC:4C:B2:95:6F:96:49:A0:FA:42:17:B3:91:CF:27:9B:B4:D1:12
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 0185719E753368B05384674BE45009C6520C
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/jexMspVvlkmg-kIXs5HPJ5u00RI.roa
Signing time: Mon 02 Jan 2023 08:34:48 +0000
ROA not before: Mon 02 Jan 2023 08:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20523
IP address blocks: 217.150.128.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:75:33:68:b0:53:84:67:4b:e4:50:09:c6:52:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 2 08:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8dec4cb2956f9649a0fa4217b391cf279bb4d112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:dd:bd:f2:4b:6e:df:a2:17:91:e6:04:8f:76:
0d:28:bc:ac:a0:db:f2:6f:e2:66:d2:5d:d2:46:f4:
f8:8c:cb:e6:0f:da:04:59:4a:df:28:9c:49:8d:29:
06:90:40:fa:1a:62:3b:9e:d2:d1:53:49:ea:b2:7b:
72:a9:76:d0:61:89:6e:94:75:c5:1f:6b:60:1b:aa:
36:41:c3:3c:75:69:ce:7b:7b:e9:f0:83:11:6a:c6:
2a:31:3e:5e:99:71:a5:cd:e4:f4:c4:7c:c0:83:8d:
d5:60:56:0b:6e:70:cb:2c:7f:2f:a9:22:65:8f:3c:
b7:28:8b:ec:f3:01:74:1a:a4:bd:47:6f:23:fb:75:
f5:8c:6e:cd:2b:04:84:b8:cd:17:a3:b1:94:f4:8c:
33:84:00:04:63:3e:16:34:78:ba:ec:5d:ae:ee:9d:
87:a2:27:aa:57:aa:db:e0:09:86:1d:fa:51:7f:72:
10:2e:22:74:85:6e:92:2c:0c:fb:79:2e:69:7c:b1:
b0:ea:7b:6b:eb:ad:1c:f5:0f:0b:fb:d1:24:ae:24:
f8:d1:cb:75:e9:98:a6:cc:4e:58:b7:23:f7:9d:91:
26:12:1e:55:3b:4c:04:ea:6c:e9:7b:e0:ab:46:a5:
e2:93:64:2a:9e:41:d0:9f:b6:f4:ec:7d:01:43:2b:
43:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:EC:4C:B2:95:6F:96:49:A0:FA:42:17:B3:91:CF:27:9B:B4:D1:12
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/jexMspVvlkmg-kIXs5HPJ5u00RI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.150.128.0/20
Signature Algorithm: sha256WithRSAEncryption
71:23:e8:b7:dd:0d:15:ef:76:20:be:47:c2:bd:f3:43:34:a1:
d6:dd:e0:a4:93:2e:3a:66:3f:82:46:2e:0b:2b:fb:13:4b:bb:
ea:7b:e7:c6:c0:83:73:12:76:4b:f5:d8:9f:b1:8c:c0:3b:81:
11:a5:cf:e5:d3:28:e3:62:f5:b2:67:5c:3b:c2:d1:5e:ff:d5:
35:5a:fa:ef:bc:3b:4e:ab:24:1a:6d:0f:29:ad:32:54:a0:3e:
6d:2b:d7:4b:56:0f:6c:53:6d:65:50:fe:08:dc:e3:54:37:32:
b1:6e:50:b6:f4:31:a5:ba:fb:47:ee:aa:24:db:07:47:29:61:
ae:c9:ed:2a:9e:83:89:09:88:df:18:07:c0:1e:c0:8c:fb:e7:
dd:75:19:7e:b0:74:48:94:d1:0b:19:76:44:44:e2:54:56:e9:
66:ba:fd:6e:e4:8d:cc:6f:99:84:b8:a5:61:fa:e1:79:09:66:
a6:ec:bf:fa:22:7a:a3:86:4b:b0:0e:37:34:7f:d3:0c:6d:2e:
09:ec:c2:9d:8c:08:ab:65:a2:91:22:fa:0d:e5:96:5f:fd:ab:
1a:96:dd:7c:39:bc:c0:0e:91:0e:3f:51:3c:a8:b4:1d:97:9c:
89:59:b2:63:e0:59:40:4d:7f:ed:fe:c5:63:36:7c:d2:30:ab:
8f:78:c6:38
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxnnUzaLBThGdL5FAJxlIMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmYjA5N2EzNmMyMzI1ZDEwMzFmZjQwOTFiYTAwYTg2NDU5
ZDQyODgwHhcNMjMwMTAyMDgzNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZGVjNGNiMjk1NmY5NjQ5YTBmYTQyMTdiMzkxY2YyNzliYjRkMTEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9298ktu36IXkeYEj3YNKLysoNvy
b+Jm0l3SRvT4jMvmD9oEWUrfKJxJjSkGkED6GmI7ntLRU0nqsntyqXbQYYlulHXF
H2tgG6o2QcM8dWnOe3vp8IMRasYqMT5emXGlzeT0xHzAg43VYFYLbnDLLH8vqSJl
jzy3KIvs8wF0GqS9R28j+3X1jG7NKwSEuM0Xo7GU9IwzhAAEYz4WNHi67F2u7p2H
oieqV6rb4AmGHfpRf3IQLiJ0hW6SLAz7eS5pfLGw6ntr660c9Q8L+9EkriT40ct1
6ZimzE5YtyP3nZEmEh5VO0wE6mzpe+CrRqXik2QqnkHQn7b07H0BQytDpwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI3sTLKVb5ZJoPpCF7ORzyebtNESMB8GA1UdIwQY
MBaAFL+wl6NsIyXRAx/0CRugCoZFnUKIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2It
ZWNjNDliZGMyYWQ4LzEvamV4TXNwVnZsa21nLWtJWHM1SFBKNXUwMFJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2ItZWNjNDliZGMyYWQ4
LzEvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE2ZaAMA0G
CSqGSIb3DQEBCwUAA4IBAQBxI+i33Q0V73YgvkfCvfNDNKHW3eCkky46Zj+CRi4L
K/sTS7vqe+fGwINzEnZL9difsYzAO4ERpc/l0yjjYvWyZ1w7wtFe/9U1WvrvvDtO
qyQabQ8prTJUoD5tK9dLVg9sU21lUP4I3ONUNzKxblC29DGluvtH7qok2wdHKWGu
ye0qnoOJCYjfGAfAHsCM++fddRl+sHRIlNELGXZEROJUVulmuv1u5I3Mb5mEuKVh
+uF5CWam7L/6InqjhkuwDjc0f9MMbS4J7MKdjAirZaKRIvoN5ZZf/asalt18ObzA
DpEOP1E8qLQdl5yJWbJj4FlATX/t/sVjNnzSMKuPeMY4
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:16 2024 by rpki-client on console-ams.rpki-client.org