Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/DbLSm9s33EVzklgfzAGX-J2PKuY.roa
File: DbLSm9s33EVzklgfzAGX-J2PKuY.roa (raw, json)
Hash identifier: r56yWGUjYeYgZFzcNqVphdAFvmbHEu04ujwbEK4RBKQ=
Subject key identifier: 0D:B2:D2:9B:DB:37:DC:45:73:92:58:1F:CC:01:97:F8:9D:8F:2A:E6
Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df
Certificate serial: 01856F54AB5E8FFF59C2ED49C18F39D084F2
Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/DbLSm9s33EVzklgfzAGX-J2PKuY.roa
Signing time: Sun 01 Jan 2023 21:54:57 +0000
ROA not before: Sun 01 Jan 2023 21:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28714
IP address blocks: 129.233.217.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:ab:5e:8f:ff:59:c2:ed:49:c1:8f:39:d0:84:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df
Validity
Not Before: Jan 1 21:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0db2d29bdb37dc457392581fcc0197f89d8f2ae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:10:a6:d5:57:48:3c:12:1c:b6:8a:1b:9a:43:
df:f4:75:3a:0d:99:a2:94:72:3e:52:73:7d:86:1f:
96:0c:2d:53:dc:f0:b8:26:4c:64:cc:7d:29:55:8a:
a5:f7:8c:d4:90:2d:1c:1a:38:7f:16:7e:d2:65:f7:
ee:eb:95:cc:fe:cf:ac:36:bd:75:9c:95:7c:cd:35:
43:68:c4:bb:05:fb:45:fb:f0:17:b5:5d:18:3d:78:
ea:cd:ba:24:4d:c0:51:03:25:3c:a7:82:97:f1:88:
3a:9e:eb:4a:79:63:fa:a6:b8:06:07:18:3a:81:71:
21:f8:4a:be:bc:8e:f8:4a:3c:c5:26:dc:cb:ac:fc:
fc:0a:26:34:43:51:e2:bb:34:2d:e9:fe:c5:d4:5c:
1b:10:e8:01:f9:59:25:c3:93:09:bc:3b:fb:92:b3:
60:79:7f:11:75:7b:2b:65:e7:71:e2:46:83:00:bb:
63:36:35:95:7d:89:81:a2:8b:5e:27:cf:e1:88:c1:
88:6b:77:d5:65:04:91:c5:c7:f3:fc:9b:52:2f:d6:
77:0a:2a:7c:3c:13:3c:d3:29:d0:2a:d1:f8:07:22:
0d:55:43:9c:c5:0f:d7:86:e8:d4:2a:ce:96:8f:21:
23:ef:a7:14:8f:ab:00:ab:8e:64:58:a7:71:dd:8f:
fd:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:B2:D2:9B:DB:37:DC:45:73:92:58:1F:CC:01:97:F8:9D:8F:2A:E6
X509v3 Authority Key Identifier:
keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/DbLSm9s33EVzklgfzAGX-J2PKuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
129.233.217.0/24
Signature Algorithm: sha256WithRSAEncryption
75:fa:48:f4:96:61:72:44:61:df:53:b1:a8:11:1f:f6:f7:c6:
2f:0b:b0:0a:75:41:ec:6f:25:a1:ae:01:f8:48:62:3d:ed:58:
ec:ee:06:c0:53:fc:55:f3:d8:a0:1f:7d:0d:e9:a9:04:49:8e:
9a:16:2c:2c:be:af:df:d0:d7:43:6a:74:83:55:02:09:40:27:
3e:b2:0c:b8:d9:e0:4a:fa:fc:a1:13:c9:13:3b:e1:28:f3:de:
c7:82:70:52:08:e8:e9:e3:1f:37:8a:16:dc:97:e9:29:69:16:
90:c9:6e:a9:5f:0d:2d:bd:b4:cb:ed:42:a2:8c:7b:43:82:2c:
49:02:66:cd:50:3b:bf:ec:f0:69:08:51:fb:e3:a3:d9:e8:44:
68:91:6d:c7:3e:db:2e:78:6a:dc:6f:d7:72:9e:ca:5c:4c:2c:
87:5d:a6:6e:e4:46:7e:31:14:6f:77:c0:10:d9:94:f9:e8:a5:
57:7f:19:09:b3:47:5e:b3:b5:6d:a1:4f:76:1d:99:56:e2:1e:
45:ad:c3:8c:0b:68:21:6d:48:aa:4e:70:4c:7d:4e:19:64:11:
18:c7:fc:ff:33:6e:a9:a6:87:0f:c8:2c:cc:aa:58:d0:45:7a:
b6:a0:49:f8:17:04:a4:7c:a5:4f:41:1f:e5:7c:ec:10:e0:ec:
82:11:9f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:35 2024 by rpki-client on console-fra.rpki-client.org