Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/bahY0LNHlL-5DLW9Jet3M3j_9YE.roa
File: bahY0LNHlL-5DLW9Jet3M3j_9YE.roa (raw, json)
Hash identifier: mcBIPyEnc7OP4DPEgUmmGgAuhE9COyvuiNmyJoGWDhU=
Subject key identifier: 6D:A8:58:D0:B3:47:94:BF:B9:0C:B5:BD:25:EB:77:33:78:FF:F5:81
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018572BA71069CB63102BA484389FFCB5FF8
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/bahY0LNHlL-5DLW9Jet3M3j_9YE.roa
Signing time: Mon 02 Jan 2023 13:44:59 +0000
ROA not before: Mon 02 Jan 2023 13:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50653
IP address blocks: 217.113.10.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:71:06:9c:b6:31:02:ba:48:43:89:ff:cb:5f:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jan 2 13:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6da858d0b34794bfb90cb5bd25eb773378fff581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:93:41:3d:b4:34:e2:77:41:22:da:50:5f:c0:
04:80:ab:ac:03:12:76:fe:97:ce:d3:ce:fb:f2:4c:
6d:cb:68:98:87:fd:15:71:61:ca:b7:e0:78:69:1e:
de:9f:4f:50:e1:c7:de:29:cf:26:42:31:79:25:84:
6d:13:44:04:24:b2:c1:99:af:33:c6:72:67:a7:a6:
14:73:b5:10:98:e8:64:6d:e4:80:68:15:a2:26:f6:
ab:e1:50:36:3e:0b:8b:9e:03:fa:55:fc:d6:a7:ff:
d0:a6:5f:dd:2d:19:ce:c9:61:1c:01:95:a4:f5:e3:
c4:ef:3c:63:2f:a9:bb:04:39:4e:f5:93:ca:54:8c:
f3:25:98:fb:59:a3:1e:4c:66:0c:47:60:c5:89:45:
b7:41:3a:54:02:c1:a6:a0:11:a7:d2:f0:f7:4b:60:
14:80:ab:72:26:81:3a:fc:b5:46:8d:04:a5:97:7a:
fa:bc:98:67:d9:04:1f:33:ec:73:87:46:98:66:30:
d6:89:d5:21:b7:54:e2:cb:58:8a:fb:d3:74:48:14:
7a:51:1c:d0:90:02:00:88:ea:69:e9:ec:fd:24:78:
f0:c5:c8:29:6f:c3:75:37:6a:a2:d5:15:62:13:ba:
70:4a:a3:f1:62:96:ac:e0:6f:41:d0:4b:f8:21:a3:
10:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A8:58:D0:B3:47:94:BF:B9:0C:B5:BD:25:EB:77:33:78:FF:F5:81
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/bahY0LNHlL-5DLW9Jet3M3j_9YE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.10.0/23
Signature Algorithm: sha256WithRSAEncryption
56:63:89:8e:79:60:33:56:c5:93:21:69:af:1b:2a:93:97:bf:
16:bf:f5:67:58:73:2b:91:01:52:97:72:6e:5a:06:61:a8:20:
f7:27:49:43:bc:92:a0:f6:fd:90:74:1b:84:bc:2a:69:ed:37:
67:6c:f7:b4:46:a7:e0:ba:59:97:e8:ed:aa:12:c6:8c:eb:44:
68:da:e9:62:52:2f:87:cd:bc:ca:cd:ec:c9:3b:bc:a7:07:a1:
ca:b5:f3:dc:50:79:da:fa:c3:93:f5:58:04:54:3f:b7:21:25:
85:cf:82:f6:90:be:d3:5f:df:70:9e:2a:b5:72:3b:1d:b6:6b:
1f:93:13:94:ab:6c:18:ea:e5:13:bc:47:21:95:dd:a5:7d:7f:
2e:90:22:43:73:67:35:85:9b:38:2b:e8:93:26:9a:b5:b3:88:
d6:bc:ea:45:56:6f:e4:6d:65:85:21:a6:46:e2:42:68:f3:6a:
62:0f:0e:b6:5f:e6:6e:e4:ae:d0:0b:e9:ff:e5:bd:26:37:16:
2d:8f:9a:30:da:da:97:54:e6:ce:94:ad:20:0d:1c:16:88:2b:
2d:2c:1e:1d:d5:35:2e:47:ea:3d:9f:9c:04:67:2b:7e:72:6c:
c3:f9:8a:53:3b:73:4a:ef:f2:22:51:15:0b:19:83:f2:7e:a5:
71:79:f2:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:49 2024 by rpki-client on console-fra.rpki-client.org