Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/fbd141-1645-42de-9a7b-0fe55ca10f8f/1/d65NTqdRE7vprwLvsw7xQUBxSzc.roa
File: d65NTqdRE7vprwLvsw7xQUBxSzc.roa (raw, json)
Hash identifier: l5CtNaKQAgujh6cLMcvasVHSb4vAphjKMkfa1Z/mlMw=
Subject key identifier: 77:AE:4D:4E:A7:51:13:BB:E9:AF:02:EF:B3:0E:F1:41:40:71:4B:37
Certificate issuer: /CN=5188c94b8bedeecc6a59bdc44c6fd5157abe4b67
Certificate serial: 0189C284C3A498CE2FEC7EB557FE04F56DA7
Authority key identifier: 51:88:C9:4B:8B:ED:EE:CC:6A:59:BD:C4:4C:6F:D5:15:7A:BE:4B:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UYjJS4vt7sxqWb3ETG_VFXq-S2c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/fbd141-1645-42de-9a7b-0fe55ca10f8f/1/d65NTqdRE7vprwLvsw7xQUBxSzc.roa
Signing time: Fri 04 Aug 2023 21:47:07 +0000
ROA not before: Fri 04 Aug 2023 21:47:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198126
IP address blocks: 217.197.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 17 Sep 2023 16:15:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c2:84:c3:a4:98:ce:2f:ec:7e:b5:57:fe:04:f5:6d:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5188c94b8bedeecc6a59bdc44c6fd5157abe4b67
Validity
Not Before: Aug 4 21:47:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77ae4d4ea75113bbe9af02efb30ef14140714b37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:9a:e3:3c:64:5b:e2:8e:ed:26:f3:b2:12:b8:
ac:c0:83:5f:6b:0f:1b:16:0c:f8:9d:30:0a:b6:cb:
b6:34:ec:ee:36:a5:7a:a6:ab:82:da:b5:e8:c6:ba:
4c:ce:2a:a6:ed:90:9a:32:ef:14:42:e4:df:01:82:
fd:20:31:20:b8:ba:82:c5:3c:15:23:02:b9:bb:66:
f7:c2:af:6f:e7:17:5a:5b:e4:9b:4d:bc:4f:42:c8:
46:8b:9d:d9:80:21:d1:2b:29:0e:6b:9d:80:b1:eb:
37:b7:2c:be:02:0f:f8:62:e3:13:37:d0:3d:92:6e:
4d:a0:a1:73:9a:b4:a6:b4:1b:33:75:f9:7c:b0:88:
ef:1a:75:42:6f:18:58:a7:3f:65:be:03:bb:ae:4d:
6e:e5:f5:8b:d2:86:1a:83:fd:1f:83:43:53:7e:19:
b4:d3:d1:21:a2:da:4d:45:4e:8b:93:41:bf:2c:88:
78:13:bc:79:ee:dd:47:6f:1e:28:b8:d9:c1:1b:b0:
0a:51:48:01:9b:b4:cb:ab:80:06:69:a2:33:0a:e8:
11:8f:d3:78:79:7e:09:c0:97:da:ca:4e:80:f9:75:
d1:53:0e:9d:cd:21:8b:1c:48:5c:8e:7e:88:03:2c:
90:e9:c2:dc:ba:6b:45:d3:81:dd:1f:65:25:a8:bd:
f9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:AE:4D:4E:A7:51:13:BB:E9:AF:02:EF:B3:0E:F1:41:40:71:4B:37
X509v3 Authority Key Identifier:
keyid:51:88:C9:4B:8B:ED:EE:CC:6A:59:BD:C4:4C:6F:D5:15:7A:BE:4B:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UYjJS4vt7sxqWb3ETG_VFXq-S2c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbd141-1645-42de-9a7b-0fe55ca10f8f/1/d65NTqdRE7vprwLvsw7xQUBxSzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbd141-1645-42de-9a7b-0fe55ca10f8f/1/UYjJS4vt7sxqWb3ETG_VFXq-S2c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.197.110.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:d7:df:74:43:ad:2c:cf:04:93:f7:6b:c9:dd:20:ec:cd:8d:
0c:41:58:02:bd:9a:78:d5:85:ea:f1:bd:f7:a0:da:06:8a:e2:
71:75:13:34:b7:6d:a8:af:9a:d5:d8:c2:93:13:fc:fd:ee:72:
7f:3c:28:4b:15:3e:51:ba:31:95:12:31:89:92:40:6e:b8:e5:
2b:15:d7:9e:ad:57:8f:27:e9:56:72:f5:55:8e:f5:ab:cb:51:
51:4c:e0:4d:92:66:96:a8:3c:52:58:7e:73:f4:f3:9b:b2:7e:
2c:e7:de:cc:26:65:aa:31:ae:4d:8b:dc:98:d2:01:a8:69:2d:
f0:15:00:17:8e:d3:a7:68:a3:a0:9a:a6:e2:5e:78:3a:2f:85:
00:26:9f:7c:27:73:d2:2b:87:cd:c5:45:32:68:39:d5:a4:2e:
7d:07:e7:af:01:ae:ea:19:a7:aa:7c:b5:85:06:cb:de:b9:d4:
4c:7b:7d:4a:e8:33:3b:22:8c:4a:bd:aa:b9:59:76:55:e2:a2:
fc:fa:aa:ae:43:bc:8f:d6:3e:e1:ba:a9:de:70:f5:54:65:2e:
43:5a:62:52:18:76:ec:39:17:6d:a2:6d:09:4a:a1:c0:6d:fe:
f8:5c:f2:cf:da:4c:22:a5:a7:51:75:6c:1a:79:d1:80:84:4a:
7b:44:30:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:16 2024 by rpki-client on console-ams.rpki-client.org