Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/ThRpua3rpjmGLVuwLT6RosHiGOw.roa
File: ThRpua3rpjmGLVuwLT6RosHiGOw.roa (raw, json)
Hash identifier: 8u/yuEKYqjlbRaufZtJPr+esJFGYkrWVg/X74o4Lc/A=
Subject key identifier: 4E:14:69:B9:AD:EB:A6:39:86:2D:5B:B0:2D:3E:91:A2:C1:E2:18:EC
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018B8573BAA08DA579156D5317CC1706494C
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/ThRpua3rpjmGLVuwLT6RosHiGOw.roa
Signing time: Tue 31 Oct 2023 11:17:16 +0000
ROA not before: Tue 31 Oct 2023 11:17:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 217.113.22.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:85:73:ba:a0:8d:a5:79:15:6d:53:17:cc:17:06:49:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Oct 31 11:17:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e1469b9adeba639862d5bb02d3e91a2c1e218ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:23:21:87:e0:eb:3f:86:bf:6f:69:fd:45:07:
92:59:ed:cf:4a:4e:a6:4e:96:50:fd:95:e5:f2:8b:
c4:92:d3:f0:a3:92:18:2c:c3:7b:fe:da:50:3e:17:
db:f3:1b:de:31:4c:8b:30:b9:1e:3e:48:e0:c1:7c:
8c:76:eb:a1:57:2e:d7:20:a6:70:e9:fa:81:50:30:
45:26:5f:e3:2d:a1:14:cc:ad:23:c3:e8:c5:fa:5a:
98:6f:3d:d3:8e:88:9a:06:66:fe:bc:f4:86:28:0f:
46:73:40:4a:3d:a2:69:41:ce:af:e6:45:04:29:ce:
9e:1a:26:e1:3a:a5:ad:22:b6:72:22:d0:c6:e7:2a:
d4:bb:75:da:c0:a6:e1:6e:77:cb:ef:a9:6c:48:0c:
c9:5d:c2:43:2e:c1:36:d9:dd:28:c1:28:2a:22:dc:
8d:3f:fc:ac:00:3e:94:32:8b:44:07:45:38:79:68:
be:e8:1e:19:50:bc:c2:94:f6:96:be:1a:36:51:73:
bb:01:9c:c2:fb:54:b5:9e:51:c5:df:10:62:62:28:
2e:2e:90:2f:c6:6b:b7:45:75:89:92:4f:ee:d0:04:
7c:f5:a0:08:ce:96:1a:0b:e1:ff:d0:59:87:5d:1d:
41:49:a1:30:0c:22:83:d0:b1:a8:d1:69:9b:ad:59:
5e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:14:69:B9:AD:EB:A6:39:86:2D:5B:B0:2D:3E:91:A2:C1:E2:18:EC
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/ThRpua3rpjmGLVuwLT6RosHiGOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.22.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:14:24:1f:a0:16:d2:f3:2a:fb:94:45:a4:c8:4e:f7:a7:95:
bc:7d:26:e6:21:df:04:c2:6c:17:84:20:bb:d8:26:67:b3:b5:
10:c0:2b:03:31:44:e9:36:f6:4a:e5:64:d4:73:96:79:2e:b0:
d8:c5:2d:8f:d9:ca:65:04:b7:7b:a4:bc:67:1c:f1:f0:96:80:
a0:3e:8a:e4:33:9d:4b:60:d7:69:ae:28:6d:01:d4:81:69:e3:
ea:6d:25:9f:75:34:7e:e9:30:58:70:2d:97:ca:ab:13:04:d8:
69:a6:cc:d9:05:9c:11:a4:dd:5a:45:08:9e:d6:4d:88:ef:a6:
3a:da:00:4d:c7:bc:b1:ab:26:fb:9c:82:62:a2:0f:59:ca:4d:
d6:bd:98:bc:03:d5:21:22:cb:ab:84:80:dc:3c:7c:f4:e6:81:
90:cb:b0:0d:05:8b:6c:b3:10:c7:2a:75:a4:55:90:42:1f:14:
c4:e3:e4:a3:9f:e3:58:08:63:de:6b:77:5e:0f:cb:65:57:f4:
42:cf:4a:9c:ad:db:95:43:e0:fe:c5:7a:dd:96:1e:fa:ed:73:
85:5c:fb:a4:b6:ec:da:28:53:67:c7:3a:66:79:b0:d6:8d:d0:
a5:83:ef:11:c8:b1:f5:ee:fa:21:32:7a:65:f5:68:3b:e3:75:
2c:b9:48:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 11 07:19:12 2023 by rpki-client on console-ams.rpki-client.org