Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/D32QeOMLrp_FS_6bvEtn6fVC0gw.roa
File: D32QeOMLrp_FS_6bvEtn6fVC0gw.roa (raw, json)
Hash identifier: W8o7fPlG+QmbhLp/i2j81KhKktm0gxQL2B9Vl8OXnRA=
Subject key identifier: 0F:7D:90:78:E3:0B:AE:9F:C5:4B:FE:9B:BC:4B:67:E9:F5:42:D2:0C
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018AD5D42EBE2268E907DE237E46EA9AFDE5
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/D32QeOMLrp_FS_6bvEtn6fVC0gw.roa
Signing time: Wed 27 Sep 2023 08:49:27 +0000
ROA not before: Wed 27 Sep 2023 08:49:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 217.113.22.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d5:d4:2e:be:22:68:e9:07:de:23:7e:46:ea:9a:fd:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Sep 27 08:49:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f7d9078e30bae9fc54bfe9bbc4b67e9f542d20c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:c9:3a:a3:c0:99:b2:d2:4a:59:16:86:ff:a5:
a1:f4:ae:f8:32:a1:84:22:63:d0:84:96:93:63:c1:
88:18:3d:9e:b7:0e:58:62:ed:50:1f:db:0e:48:5b:
a0:96:eb:60:dc:e0:72:2a:de:92:95:75:e3:29:4a:
5c:b1:57:c1:b1:e1:19:0d:69:80:28:c0:72:1b:f6:
77:c5:b6:7d:3f:b8:f3:78:9b:40:d0:d9:f0:99:62:
4c:83:2f:fd:cf:83:f8:6b:62:b8:f6:fb:74:ae:2f:
c7:af:8d:17:db:21:01:77:06:88:ec:44:d3:7d:99:
32:b3:1e:8d:07:62:ef:30:31:77:1f:a6:c7:5c:08:
cf:79:97:6c:66:53:f0:75:46:a8:d9:9c:e0:94:e0:
10:02:eb:bf:99:9c:ff:bb:b8:d2:b0:db:71:90:e8:
9a:b0:d0:54:d5:df:33:56:fd:07:09:55:e9:0f:00:
75:d1:37:67:c4:f3:4a:94:4e:85:cf:a1:ff:71:0f:
2b:43:b1:77:48:7f:6e:12:6b:e9:6a:36:eb:4d:bd:
e3:4a:f4:c5:ed:3a:b1:bb:c6:eb:e6:b6:34:5f:9b:
7f:61:d7:29:82:0a:cd:80:9a:ad:7c:60:df:8f:c3:
37:24:fc:0d:95:6f:25:87:47:fb:2b:fb:92:2e:e4:
54:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:7D:90:78:E3:0B:AE:9F:C5:4B:FE:9B:BC:4B:67:E9:F5:42:D2:0C
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/D32QeOMLrp_FS_6bvEtn6fVC0gw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.22.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:78:ec:4f:2a:46:b2:7a:13:33:48:22:89:1e:aa:e7:09:6e:
c8:d6:ac:af:0d:54:dc:20:aa:9a:c1:b7:c3:0e:a2:bd:d2:58:
c2:d0:68:45:96:e3:25:e3:18:fe:15:28:f7:58:e7:7c:46:9e:
ce:02:be:6a:b4:a0:23:a1:48:a9:32:47:90:19:80:d5:bd:6a:
57:3c:6d:15:6b:98:86:3e:56:da:c0:d3:c5:ad:e8:3e:d9:e4:
fc:0f:f7:51:eb:ca:d5:4a:9b:0d:b4:0d:ed:a2:b9:ff:18:00:
14:68:ed:f8:43:fc:3d:51:6c:fa:62:84:8a:d5:08:b3:52:bd:
57:c9:45:4a:59:06:be:be:49:3b:65:15:ce:2f:24:c4:96:ff:
76:fa:d9:d6:55:a0:d1:81:df:7f:90:52:45:d0:14:83:1f:36:
64:7c:74:4e:b7:e0:52:65:92:1d:cd:7a:61:0d:9e:5c:95:c9:
05:b8:e5:34:a9:41:37:16:6f:73:5b:94:ce:8b:a3:46:b5:c9:
e4:26:46:60:88:44:44:3a:d4:4e:1a:b5:63:1d:28:db:11:2d:
d2:8f:91:ff:93:be:b4:3d:43:08:a4:e0:6e:1d:da:28:53:2d:
87:c7:33:74:de:59:2a:99:70:62:c1:33:09:22:da:82:fe:c6:
bd:e6:6b:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 29 06:57:01 2023 by rpki-client on console-fra.rpki-client.org