Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/0zZ3RRGWNcLyEn8ObAQptq-MgQU.roa
File: 0zZ3RRGWNcLyEn8ObAQptq-MgQU.roa (raw, json)
Hash identifier: RIeKegWSIv2wAf9s/sQi7PVO/p6mTONqS+X3d+PtND8=
Subject key identifier: D3:36:77:45:11:96:35:C2:F2:12:7F:0E:6C:04:29:B6:AF:8C:81:05
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018572BA7292B190DAB2A54C91AF92C15F28
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/0zZ3RRGWNcLyEn8ObAQptq-MgQU.roa
Signing time: Mon 02 Jan 2023 13:44:59 +0000
ROA not before: Mon 02 Jan 2023 13:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201235
IP address blocks: 217.113.16.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:72:92:b1:90:da:b2:a5:4c:91:af:92:c1:5f:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jan 2 13:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3367745119635c2f2127f0e6c0429b6af8c8105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a8:00:30:5e:c3:94:68:7a:d8:f8:cd:d7:14:
29:c4:87:46:e4:23:ca:e5:d0:47:71:7b:f1:7c:81:
30:d4:0a:b6:37:0f:a6:a6:95:15:71:a6:58:84:6a:
a3:f4:17:27:88:bb:0b:a1:df:f9:81:06:81:a6:a7:
b4:74:64:fa:66:79:a1:06:86:c9:d7:37:1a:d7:69:
3e:aa:d2:87:1c:b8:eb:fb:67:74:ca:ec:00:21:1e:
fd:1a:9b:68:18:4e:34:a5:f5:b2:39:44:ad:33:3b:
5e:1a:76:fe:e0:5d:56:cf:22:3e:63:42:93:0d:f0:
eb:58:e0:2a:43:d5:8b:78:51:05:7d:2b:03:eb:02:
85:d4:37:59:4f:cc:49:84:7b:16:9a:c0:60:43:23:
67:b7:7d:e8:31:3c:6d:63:4d:0f:e6:b9:34:e8:8b:
1e:8a:01:7a:29:d8:48:39:28:58:b9:e5:1b:50:79:
db:e1:31:b0:37:41:8a:9f:c9:1c:b1:fe:ee:43:55:
96:45:14:fd:34:65:fd:75:91:c2:f0:52:ec:d6:b8:
16:fa:b0:8a:fc:99:1d:59:0c:eb:b8:05:d8:50:71:
97:19:9b:58:29:90:50:50:55:a7:a2:f8:50:b4:bd:
0c:9b:bc:18:c2:9f:22:42:c3:9f:70:86:49:81:4b:
de:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:36:77:45:11:96:35:C2:F2:12:7F:0E:6C:04:29:B6:AF:8C:81:05
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/0zZ3RRGWNcLyEn8ObAQptq-MgQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.16.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:29:70:df:e3:2b:d9:2b:1e:d7:31:69:34:8f:af:a4:85:b9:
dc:08:f7:17:a3:3c:e0:4a:5e:10:24:79:8c:55:5d:3f:62:ad:
23:6d:b0:7a:69:65:c9:c3:55:af:ae:c7:2f:05:93:19:ae:cb:
12:ed:30:67:92:09:56:80:f0:81:75:ed:4b:77:53:d0:63:f4:
52:45:d5:b8:27:b1:33:40:33:f5:7d:92:b6:24:bf:4b:54:d6:
cb:cf:6f:ee:62:87:62:d2:8c:e0:1a:1d:ce:00:ed:dc:fa:b3:
99:56:ca:4b:f8:e2:bf:0b:64:5f:b0:5d:6e:4f:8d:57:56:b7:
40:88:b2:32:5d:db:7f:a7:1a:c5:b9:31:bd:90:0a:b6:57:60:
14:bf:3a:66:f5:d3:73:8b:a7:c9:0b:99:4d:66:28:59:ca:46:
f0:5d:0c:2a:a8:96:52:e2:36:08:38:10:ce:86:d9:e1:fa:06:
02:4f:a6:64:1f:14:ee:23:27:70:8d:6e:28:47:85:f4:88:a5:
f7:eb:46:8e:c1:a0:ae:2d:5e:70:0c:17:d4:c2:93:ba:e2:c4:
fe:c9:3a:42:64:ba:70:03:ad:6d:6f:48:0f:c6:0b:1d:08:ac:
41:48:05:23:0b:5d:e5:ad:5e:87:7e:2f:8b:75:bd:5a:31:9e:
f7:14:29:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:40 2024 by rpki-client on console-ams.rpki-client.org