Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/i42lJOYWbEoDHxXGLczh1xavhDY.roa
File: i42lJOYWbEoDHxXGLczh1xavhDY.roa (raw, json)
Hash identifier: KP6+Rc2hbKM8fj9U+UaHk0CZbI1JrXZUnrYV8zayyrc=
Subject key identifier: 8B:8D:A5:24:E6:16:6C:4A:03:1F:15:C6:2D:CC:E1:D7:16:AF:84:36
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018572BA72DC38A285A59ED3681148982504
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/i42lJOYWbEoDHxXGLczh1xavhDY.roa
Signing time: Mon 02 Jan 2023 13:44:59 +0000
ROA not before: Mon 02 Jan 2023 13:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201363
IP address blocks: 217.113.17.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:72:dc:38:a2:85:a5:9e:d3:68:11:48:98:25:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jan 2 13:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b8da524e6166c4a031f15c62dcce1d716af8436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:de:63:e5:82:ed:70:e9:0b:63:b0:66:03:f0:
4b:00:77:b1:e9:66:96:07:b3:cf:f5:81:c7:0d:fb:
a7:06:61:d0:f3:fc:4f:32:56:59:ef:06:c8:d9:2b:
10:02:75:a0:96:d0:1d:3e:48:e2:b8:ec:b9:6f:5f:
71:86:5d:09:ed:78:86:ab:f3:d9:6c:88:7a:d9:a6:
b8:42:af:84:af:92:ff:4c:8f:4c:84:59:b4:7c:f4:
52:2c:85:20:88:9a:5c:b3:4a:43:02:68:90:01:d2:
d4:83:61:7f:9a:3a:9e:5b:a3:3b:00:3a:4d:89:a4:
ea:f4:01:2b:21:10:0c:d1:ac:f2:df:5f:dc:29:77:
26:be:ca:5d:bb:00:26:0c:76:c4:89:71:06:c9:70:
91:0d:dc:da:cc:5a:92:67:40:7b:62:06:ff:91:5c:
05:5a:d5:e7:64:e6:26:a0:77:28:4d:d6:8a:c6:88:
1c:73:22:e9:fa:aa:1a:81:8d:76:0c:bd:d8:90:ad:
6a:ce:64:50:cf:8e:0b:1e:34:2f:2e:1e:c4:03:da:
ab:f5:67:c8:28:1e:60:e1:3b:d5:6a:52:27:49:48:
18:b2:a3:bc:0b:aa:77:19:89:f4:be:68:df:2e:96:
bf:82:97:bf:73:8d:c7:8f:1d:5a:af:ba:4d:11:a0:
90:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:8D:A5:24:E6:16:6C:4A:03:1F:15:C6:2D:CC:E1:D7:16:AF:84:36
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/i42lJOYWbEoDHxXGLczh1xavhDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.17.0/24
Signature Algorithm: sha256WithRSAEncryption
04:b0:07:df:c0:c5:cd:bd:ab:1f:e3:99:95:ae:10:f9:30:95:
f3:64:46:53:fc:42:a2:cc:24:64:f2:35:96:af:18:46:95:53:
89:a0:a2:c2:20:05:5b:47:9e:cb:86:f2:d9:4e:81:58:68:93:
08:0e:ff:0c:7b:67:ad:b8:72:2f:cb:f2:b3:87:49:a3:22:da:
a5:91:fa:e4:27:af:74:9a:0e:25:9c:df:ba:ef:13:e6:2e:c3:
27:af:03:a7:6a:d5:c0:a5:f7:6b:25:f6:04:f6:c9:20:18:18:
f5:e0:d0:7d:cf:e5:40:39:d2:8e:65:a9:b3:68:72:38:93:e4:
fd:47:bf:49:fe:06:02:ad:0e:27:a4:d4:d2:ec:c1:95:71:7c:
20:14:77:f2:26:df:f0:e6:f8:78:ee:ff:10:23:01:6d:6c:1a:
45:32:a1:a4:75:9c:65:bd:19:9c:68:cf:ce:b5:24:8d:76:13:
4b:21:37:75:6d:91:91:9f:04:19:8b:31:84:4e:b4:9e:58:96:
e3:ae:05:90:0b:8b:20:8e:bd:7b:fc:c5:a5:31:91:5c:a5:b7:
f8:20:0d:9b:e2:f3:91:7b:df:14:ee:3f:59:4c:06:97:5a:8e:
ea:ec:39:f3:6e:9c:f0:34:b4:dc:a7:90:ea:1d:fd:a6:d8:f4:
0f:76:02:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:49 2024 by rpki-client on console-fra.rpki-client.org