Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/iBr-zEkyp3dNc00lfLO_j67u8D4.roa
File: iBr-zEkyp3dNc00lfLO_j67u8D4.roa (raw, json)
Hash identifier: lwaNl2YWsf6sALxwaoYfj8S1P2+cT/2LAfrkx78eJyA=
Subject key identifier: 88:1A:FE:CC:49:32:A7:77:4D:73:4D:25:7C:B3:BF:8F:AE:EE:F0:3E
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018B8574A5326F18A15AA286221EBCCD3409
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/iBr-zEkyp3dNc00lfLO_j67u8D4.roa
Signing time: Tue 31 Oct 2023 11:18:16 +0000
ROA not before: Tue 31 Oct 2023 11:18:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203726
IP address blocks: 217.113.26.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:85:74:a5:32:6f:18:a1:5a:a2:86:22:1e:bc:cd:34:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Oct 31 11:18:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=881afecc4932a7774d734d257cb3bf8faeeef03e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:db:ec:3a:51:40:ad:b3:dc:cd:dc:2e:9d:03:
a4:fa:a7:1b:d9:cb:0a:42:e0:c5:7b:0a:b2:01:2b:
ca:ef:0b:73:a5:bf:b7:44:72:bb:e0:fb:6b:98:e2:
72:91:89:d5:ca:7a:01:e2:bf:fe:2e:42:95:8e:f5:
a7:90:fe:15:13:0c:4b:3b:5e:15:71:c4:88:dd:99:
56:cd:10:41:79:27:3d:cd:2d:bc:e1:c5:cf:f0:41:
d8:c0:d5:63:6c:15:7f:22:eb:41:51:ca:fb:94:b6:
52:4a:73:67:f8:a5:0e:e5:ad:a9:9b:57:13:10:58:
92:a3:e6:4d:ab:e3:05:e0:47:7f:ed:4a:8d:e9:8c:
e1:1a:44:50:64:de:9a:87:f0:5e:44:57:72:15:51:
11:d1:47:32:48:f0:18:92:0d:b6:96:e4:95:ea:af:
f6:3f:69:f3:cb:5d:56:98:c2:e8:de:9a:07:85:e3:
6a:9c:23:67:ad:c5:9c:1d:e0:d2:7d:80:bd:54:2b:
41:76:ca:38:90:b6:61:cb:03:58:fd:d0:78:c5:aa:
76:a9:e4:fc:d2:f8:14:c9:39:ec:a7:22:0c:d9:ea:
d9:98:04:93:62:4e:61:a4:43:7d:bd:1d:8f:7e:d3:
6c:1b:ee:df:ad:a3:b4:2f:0e:86:80:5b:a3:fc:57:
26:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:1A:FE:CC:49:32:A7:77:4D:73:4D:25:7C:B3:BF:8F:AE:EE:F0:3E
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/iBr-zEkyp3dNc00lfLO_j67u8D4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.26.0/23
Signature Algorithm: sha256WithRSAEncryption
20:38:4a:03:f6:a0:af:bb:20:d2:e4:3a:ea:83:4c:8c:11:3e:
d6:99:e7:ad:d5:e9:82:99:c5:de:f1:3a:1a:dd:2a:ff:6c:0a:
3e:b5:98:8d:45:9b:d5:8d:f3:17:ad:79:21:18:87:35:08:2b:
5c:8d:b3:c9:11:43:10:79:8d:a9:1e:1c:12:29:95:b8:4d:a5:
9f:43:da:c3:7d:da:ab:38:67:17:01:44:ca:a5:8e:42:55:0f:
82:40:56:0e:ad:b7:59:67:2c:71:3e:1b:f5:e2:29:d3:22:9a:
41:04:d9:19:b6:e2:17:07:92:50:ab:60:e7:69:5c:d4:d6:08:
e7:5e:5c:b5:5e:47:05:03:d6:28:7f:91:f4:c8:21:aa:c0:a4:
82:80:22:f3:23:7b:c0:c3:47:51:d3:80:f7:60:28:40:18:0b:
04:7e:4f:d2:d7:cd:a3:ae:46:f4:54:69:00:f3:69:50:de:6a:
b1:07:45:67:54:e8:0e:cf:88:32:fd:f1:a3:d7:d1:0a:38:7b:
97:23:20:8e:b4:e0:ff:de:8b:eb:8a:14:ad:6a:19:03:00:6b:
ee:57:52:bb:10:8d:28:6b:12:cd:7d:79:56:39:1e:52:f1:7d:
8b:43:9b:09:1d:ba:be:46:bf:70:a9:87:83:6f:fb:62:08:31:
73:f3:3b:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:40 2024 by rpki-client on console-ams.rpki-client.org