Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/_J39Wu9iL_pjM3GYqNBPUtL-VuM.roa
File: _J39Wu9iL_pjM3GYqNBPUtL-VuM.roa (raw, json)
Hash identifier: wYWxV8mxynBHngji/PFFci/d0xxoDm461aPZU9dPaIg=
Subject key identifier: FC:9D:FD:5A:EF:62:2F:FA:63:33:71:98:A8:D0:4F:52:D2:FE:56:E3
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018B1596A44F5F8AE6243AB8464387A86C20
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/_J39Wu9iL_pjM3GYqNBPUtL-VuM.roa
Signing time: Mon 09 Oct 2023 17:57:55 +0000
ROA not before: Mon 09 Oct 2023 17:57:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 217.67.78.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:15:96:a4:4f:5f:8a:e6:24:3a:b8:46:43:87:a8:6c:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Oct 9 17:57:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc9dfd5aef622ffa63337198a8d04f52d2fe56e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:da:4c:6e:2a:62:96:95:db:0a:35:5b:37:50:
67:60:3b:36:20:8a:76:80:8e:de:fc:77:93:8a:e6:
91:98:bc:dc:59:14:ec:aa:38:25:73:78:b5:88:2c:
00:c9:1a:0c:34:5f:21:9a:64:75:5d:7f:88:f6:37:
1a:14:f9:9b:9c:12:e4:a5:56:01:67:2e:f0:73:43:
34:32:07:0e:aa:63:b2:99:4a:5d:63:e2:85:7f:d4:
25:5a:7e:36:e6:98:c8:5a:cf:68:27:ca:19:4a:30:
4e:97:6b:59:ea:a6:4d:fe:e6:01:44:aa:db:2f:46:
68:a6:7e:4f:84:ff:d5:21:09:10:17:8d:83:af:4c:
94:74:0b:64:1a:f0:a8:14:4a:6a:37:a4:89:69:2a:
e9:e6:fa:a5:25:73:0c:80:c6:73:d9:72:b7:75:f9:
c9:a2:37:a1:e0:d6:4a:30:13:b2:eb:a8:6a:89:a2:
65:ab:d9:17:aa:10:91:0b:a4:b2:72:95:84:16:cb:
e4:2e:fe:82:65:8f:b0:33:fb:3f:12:45:ea:40:4e:
91:c7:4c:60:70:86:50:5d:07:a7:2a:34:0e:07:69:
37:a4:2c:e0:65:e5:01:6e:3f:e6:c0:7b:cc:fb:ea:
cd:a3:4d:bd:a0:da:70:e4:70:64:76:9c:28:aa:c5:
80:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:9D:FD:5A:EF:62:2F:FA:63:33:71:98:A8:D0:4F:52:D2:FE:56:E3
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/_J39Wu9iL_pjM3GYqNBPUtL-VuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.67.78.0/23
Signature Algorithm: sha256WithRSAEncryption
cb:8c:04:71:83:de:2a:c6:1c:c0:aa:d2:2d:da:f9:f7:da:b8:
7e:56:80:4b:a0:fb:ca:0a:15:a7:fd:fd:76:f4:6c:98:a7:ec:
75:ae:72:c5:0c:8d:a4:16:f0:c3:4a:2f:7e:04:78:5d:0a:7e:
30:bc:7c:3a:9e:8a:0f:5d:52:7b:d4:6f:bc:fd:f9:d8:13:b0:
75:46:aa:2c:d7:6c:30:99:e5:e2:bf:e2:a4:bc:56:c0:c7:5c:
39:6e:0a:ae:a9:3c:72:76:d0:8a:5f:74:b9:11:19:e7:5e:51:
f5:5d:34:f7:9e:48:6a:08:77:e1:fd:74:ee:e8:04:97:db:f3:
75:d2:5d:e0:de:93:5d:d4:8c:75:e6:14:d4:dc:5c:8b:b0:fe:
fd:99:b7:b3:35:05:ab:51:86:79:86:bb:2c:fa:a7:d9:e7:22:
fd:35:00:8a:82:b4:74:33:b5:0c:4a:78:b4:00:d3:0f:1f:06:
34:02:91:cb:1a:fc:f3:9b:c7:27:26:b3:32:ce:4e:98:fd:57:
b0:3c:fb:8b:50:7f:9f:69:6d:0e:4a:7e:ae:1c:04:88:62:0e:
d7:9b:33:f6:0a:a9:42:10:dd:43:3b:f6:84:38:51:4e:57:a4:
41:d3:0c:0b:c6:8f:ef:b0:c2:97:a8:99:26:9c:75:33:4c:15:
cb:88:f3:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:03 2024 by rpki-client on console-ams.rpki-client.org