Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/Z0rQnoJ1IIW9r0Mi3bHBB5LFHdQ.roa
File: Z0rQnoJ1IIW9r0Mi3bHBB5LFHdQ.roa (raw, json)
Hash identifier: eEV7ygSI7sA9EuKcR6wwGx7QHZ1LY8B4gNecF4kpKPk=
Subject key identifier: 67:4A:D0:9E:82:75:20:85:BD:AF:43:22:DD:B1:C1:07:92:C5:1D:D4
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018571B9EEB55EA41ED5161AA893A81B9CE9
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/Z0rQnoJ1IIW9r0Mi3bHBB5LFHdQ.roa
Signing time: Mon 02 Jan 2023 09:04:48 +0000
ROA not before: Mon 02 Jan 2023 09:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43415
IP address blocks: 217.218.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:ee:b5:5e:a4:1e:d5:16:1a:a8:93:a8:1b:9c:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 2 09:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=674ad09e82752085bdaf4322ddb1c10792c51dd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f6:11:05:b3:98:b1:b4:ff:1a:40:40:54:ab:
29:3c:74:c0:4e:ee:92:b8:d2:e2:7d:09:0d:51:4b:
38:c3:7b:ba:5a:a9:c6:3f:25:1b:59:f5:86:67:4d:
9b:83:56:c0:95:4d:d4:63:7d:6e:29:ba:66:07:b4:
f9:ae:0d:f8:7f:18:8f:d6:c7:8e:67:d2:98:0d:d9:
57:77:31:f5:29:ec:cd:c8:09:a3:70:42:db:85:8b:
f4:cc:93:ad:91:9a:54:e0:0c:e9:9c:60:f6:15:10:
7b:9a:05:e2:88:42:f6:ec:d9:2f:be:c2:2d:66:91:
a2:53:3f:83:3b:20:7c:91:8c:73:47:9b:d4:4a:3d:
84:d7:c7:33:17:2a:6f:22:09:c6:10:04:9f:90:04:
ca:30:b7:2b:77:8c:a8:ff:b4:6f:1a:c5:e1:31:17:
67:65:02:4b:f2:8a:96:3c:39:71:33:31:38:d1:86:
8d:87:16:b0:ba:63:d9:7a:a2:ee:70:9a:5e:c3:7b:
8d:95:59:32:e3:62:a7:aa:e4:8f:c7:37:83:5f:3a:
de:00:7e:c2:7f:f6:7c:2e:32:a6:d7:a5:2b:e1:83:
56:f0:4d:27:eb:1e:a4:cb:69:40:cf:cc:f6:24:13:
7d:ca:ce:e6:be:0b:9b:3a:9e:39:77:12:a7:85:8e:
c8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:4A:D0:9E:82:75:20:85:BD:AF:43:22:DD:B1:C1:07:92:C5:1D:D4
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/Z0rQnoJ1IIW9r0Mi3bHBB5LFHdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.218.45.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:03:5f:fc:93:b6:cd:0b:6b:64:12:3d:b3:d4:d1:a7:ef:8c:
0a:73:50:c7:3e:b4:dd:c3:41:a5:41:1d:4c:74:25:0d:a9:8b:
41:04:d1:6d:0c:8d:d2:95:75:aa:bf:09:82:ad:2e:45:34:88:
41:79:f2:6d:24:a5:54:36:9b:81:31:69:f8:98:9a:03:5e:79:
41:1a:4b:a3:87:25:92:c2:14:9b:20:0e:23:be:92:3f:91:55:
f0:96:54:86:82:1b:03:ae:f7:be:14:98:9e:14:e0:8b:f5:95:
03:e5:97:b2:00:3f:65:78:2c:b3:25:60:06:8a:ab:54:cc:11:
65:3a:10:2d:e6:56:2d:ad:09:69:cd:f3:85:93:87:21:27:18:
72:12:fe:f3:34:af:a3:95:e4:7c:ea:10:e0:d4:91:93:a7:a7:
a0:bc:cc:65:7c:de:2d:2d:1a:95:66:c9:19:d2:88:e6:33:ef:
1a:03:19:42:89:5d:15:83:26:6f:09:75:07:9d:21:38:0e:8d:
3e:8b:16:89:e8:0a:92:60:ee:3d:35:27:9e:2e:74:1a:37:3b:
30:2e:27:67:69:5a:75:2a:30:37:c4:83:5d:a8:b3:d7:e3:55:
93:73:63:68:60:69:57:42:bc:da:3c:bf:d7:cb:03:af:43:82:
50:52:69:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:47 2024 by rpki-client on console-fra.rpki-client.org