Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/D8RU9YrjThG1viVUtKG-xkLQXo0.roa
File: D8RU9YrjThG1viVUtKG-xkLQXo0.roa (raw, json)
Hash identifier: rqJ4FmsxVys54AuFrj5GE0w+4raggY1vnv7uhkTOcW4=
Subject key identifier: 0F:C4:54:F5:8A:E3:4E:11:B5:BE:25:54:B4:A1:BE:C6:42:D0:5E:8D
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018CC5004647E3180B022717EDB8F34110E5
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/D8RU9YrjThG1viVUtKG-xkLQXo0.roa
Signing time: Mon 01 Jan 2024 12:29:38 +0000
ROA not before: Mon 01 Jan 2024 12:29:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16190
IP address blocks: 217.113.0.0/21 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Feb 2024 06:16:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:46:47:e3:18:0b:02:27:17:ed:b8:f3:41:10:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jan 1 12:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0fc454f58ae34e11b5be2554b4a1bec642d05e8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a0:9b:b8:1a:97:b8:6b:97:16:b3:62:1e:9d:
66:d6:68:61:33:ff:b2:35:20:33:f9:37:1a:1e:d0:
b9:06:88:09:ab:8e:f0:88:3e:a3:14:a6:f1:da:96:
c6:00:90:5e:25:65:72:b8:69:8f:d8:6d:f5:71:7d:
d8:3b:e6:ef:3a:1f:aa:54:7e:78:43:d4:c9:e0:11:
93:39:da:68:ca:af:30:05:17:5b:7d:91:61:2b:f4:
30:6b:d4:87:05:7b:a1:ce:2c:11:63:0a:d4:41:34:
8a:7b:f2:dc:d2:5d:04:f7:df:52:bc:e8:b4:23:e2:
eb:9a:8a:dc:07:5f:2a:1f:0e:a3:0b:9f:ea:34:9a:
c4:4a:8b:ea:df:62:da:85:b3:eb:68:b7:79:e6:8c:
9a:25:d5:af:4e:0d:14:32:4f:9e:38:05:68:8e:94:
ca:c9:5b:63:c6:ab:f5:6c:9a:a4:3b:7c:37:2f:84:
2b:c5:e2:03:73:af:dd:39:c4:12:20:0e:cd:f4:05:
0b:6b:a0:f4:0d:67:d1:35:b9:c4:71:26:16:29:e8:
ed:3c:a1:47:7c:e3:44:7c:a9:08:18:94:4f:a7:31:
04:c5:15:e0:aa:72:00:0f:3d:a8:c9:e7:7a:18:00:
42:c4:62:8d:dd:8c:cc:11:d5:aa:f4:9c:1e:ad:40:
09:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:C4:54:F5:8A:E3:4E:11:B5:BE:25:54:B4:A1:BE:C6:42:D0:5E:8D
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/D8RU9YrjThG1viVUtKG-xkLQXo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.0.0/21
Signature Algorithm: sha256WithRSAEncryption
05:f8:af:b2:5d:67:4f:5c:2c:49:be:b6:b1:60:fd:9c:c9:93:
3c:ea:83:a1:25:63:5d:12:1e:c2:94:70:1a:05:3e:24:f9:93:
22:52:e8:06:0d:a6:f4:b1:0f:31:ed:f0:7c:ad:7f:b2:f9:64:
8b:98:98:0c:46:ce:61:f5:6e:36:cc:c8:ad:ae:24:91:aa:8a:
4d:79:a7:28:af:6c:bc:45:3f:1d:62:ac:ed:f2:0c:4b:88:64:
37:23:b9:76:39:dd:37:65:d6:5d:f2:5f:ce:9c:7c:6a:8d:fa:
6a:66:68:2d:7c:97:75:c2:81:51:1d:10:fe:d0:10:5b:ce:99:
2c:2d:55:9f:b4:7a:62:33:44:90:a2:ef:d4:4a:12:59:81:4c:
fb:c0:05:8d:5a:35:f6:e2:e0:1d:ed:51:2b:90:ad:b1:53:26:
c5:4f:a0:70:50:1c:3c:f1:2b:02:f1:e2:46:f2:95:24:9e:ab:
82:a9:18:c7:f2:8e:70:13:8d:6e:ed:4d:45:96:cf:64:a5:d7:
3c:22:3b:a0:ee:50:d0:99:03:05:40:d8:f2:be:d0:13:c8:97:
62:39:2f:84:26:19:fa:97:59:92:85:f8:67:6f:42:70:5b:cb:
77:a7:b8:c1:8f:45:1c:94:2a:8d:ed:e0:c1:92:17:d9:d0:98:
94:c2:54:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 9 07:21:49 2024 by rpki-client on console-fra.rpki-client.org