Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/IY0vhEVfDKUDcxYpVKHFAbFpb04.roa
File: IY0vhEVfDKUDcxYpVKHFAbFpb04.roa (raw, json)
Hash identifier: PjY5pyb0a/Q16eyGngHiDPNjovXlOpfGjLQxqSxnsds=
Subject key identifier: 21:8D:2F:84:45:5F:0C:A5:03:73:16:29:54:A1:C5:01:B1:69:6F:4E
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018572BA71E5305B9F36BCE28A5508AEEAD7
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/IY0vhEVfDKUDcxYpVKHFAbFpb04.roa
Signing time: Mon 02 Jan 2023 13:44:59 +0000
ROA not before: Mon 02 Jan 2023 13:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57206
IP address blocks: 217.113.8.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:71:e5:30:5b:9f:36:bc:e2:8a:55:08:ae:ea:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jan 2 13:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=218d2f84455f0ca50373162954a1c501b1696f4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bb:af:d7:a1:4c:49:6b:c5:6e:f7:43:76:e6:
3b:a9:46:61:78:4a:8f:ee:23:9a:06:b2:75:fd:49:
50:bf:8d:2a:9f:61:e6:cc:37:a0:9f:66:49:78:e3:
2f:76:be:57:cd:02:77:e1:a2:98:d3:c8:c5:73:2c:
1a:ef:ef:65:cc:b7:48:e9:78:d6:33:11:e0:d9:5a:
44:5f:3d:25:f0:6b:bb:95:6b:97:cd:84:d9:84:4d:
c1:f3:97:64:52:16:a0:9a:f7:12:82:02:22:56:6a:
29:67:0a:cd:9a:2f:13:19:78:eb:2d:af:15:5f:2a:
18:ed:46:0c:29:af:c3:c0:91:49:e9:f3:db:66:76:
bb:ed:40:6c:07:9d:5d:2e:a8:29:42:75:d5:2a:46:
c8:64:d3:b6:19:7d:85:f5:6d:92:ba:12:07:ab:8a:
d7:8b:4d:3f:82:f7:c1:3a:f9:20:ec:94:e8:c6:77:
8e:b4:a1:6d:c3:4c:ff:3b:64:f1:d9:48:e4:df:54:
f4:da:a1:09:9c:d0:1c:40:2e:ab:8d:73:41:ad:f9:
e7:4e:84:dd:b4:e2:a4:b2:a0:f8:99:66:46:a2:f2:
7f:27:dc:d6:2f:d5:91:e4:d7:04:3f:19:b4:e6:fe:
8a:d7:6a:3e:b2:f7:b9:33:e4:d1:d0:85:6a:2b:53:
9e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:8D:2F:84:45:5F:0C:A5:03:73:16:29:54:A1:C5:01:B1:69:6F:4E
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/IY0vhEVfDKUDcxYpVKHFAbFpb04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.8.0/24
Signature Algorithm: sha256WithRSAEncryption
16:2c:ff:3c:01:c5:28:4a:5f:b3:af:8f:ea:d0:6b:51:cb:32:
1f:64:3d:3c:f3:1d:c1:12:e0:aa:86:be:b1:86:73:05:18:fe:
ae:fd:8b:c9:d4:65:94:cc:52:88:c5:cf:7b:d8:7d:51:d2:90:
98:be:39:5f:66:a8:89:ea:84:63:75:33:18:f6:7a:54:fd:a4:
e0:9a:85:89:6a:20:0d:56:e4:6a:9a:26:ed:6a:be:f9:02:b4:
ae:20:93:fa:20:55:54:d0:9a:06:56:1d:30:9b:a7:73:08:6b:
fa:7e:16:ba:e5:30:d9:31:bf:4b:95:78:e0:6a:78:df:52:8c:
f5:95:83:dc:1d:e6:03:0a:dd:f4:7a:59:d0:46:ff:d1:46:dd:
37:43:d7:1b:70:4b:33:b7:df:2c:98:a6:f4:b6:0f:65:9b:5b:
c7:e5:a1:47:34:0a:d2:65:7c:cf:67:ee:6f:97:96:56:a4:a2:
97:f2:91:37:1a:ea:fe:b6:8a:40:15:40:ba:e7:be:53:c5:d2:
f4:e7:ce:10:9d:a9:36:cd:23:02:e1:6e:46:89:98:e0:25:84:
cd:25:23:d0:e5:a1:78:ec:eb:65:40:82:be:6b:7b:cc:08:2e:
71:fd:dd:94:74:7d:25:be:46:11:f8:8f:ca:0f:a6:93:15:e6:
89:7d:91:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:49 2024 by rpki-client on console-fra.rpki-client.org