Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/qrYIlKGwgCxVWBf-MF_bGrIgo34.roa
File: qrYIlKGwgCxVWBf-MF_bGrIgo34.roa (raw, json)
Hash identifier: ZdcySUMIL14KfH2RvAA+jAGyF66+YErs0o3r3JKXMZk=
Subject key identifier: AA:B6:08:94:A1:B0:80:2C:55:58:17:FE:30:5F:DB:1A:B2:20:A3:7E
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 0186838287D8811F8751E8C617DF070C2179
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/qrYIlKGwgCxVWBf-MF_bGrIgo34.roa
Signing time: Fri 24 Feb 2023 13:00:15 +0000
ROA not before: Fri 24 Feb 2023 13:00:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199698
IP address blocks: 217.113.29.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:83:82:87:d8:81:1f:87:51:e8:c6:17:df:07:0c:21:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Feb 24 13:00:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aab60894a1b0802c555817fe305fdb1ab220a37e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:49:68:ab:3f:5b:ba:00:5e:e1:ce:44:f2:88:
b0:f0:ad:f1:c4:74:d1:e8:50:4b:00:90:61:e2:ef:
4c:f8:a4:34:15:5c:46:f6:e7:bf:b5:35:aa:98:0a:
9e:82:c2:47:75:6d:dc:dd:3f:2f:0f:22:6d:46:2e:
e5:1e:8b:31:bf:d3:9d:5f:bb:1f:44:e0:28:1d:e6:
dc:91:bb:18:0f:de:24:ca:20:c8:dc:54:00:7c:7a:
c1:6f:c0:6f:e8:53:74:53:15:dd:4e:1e:b5:2c:a1:
c1:e1:f7:af:6d:4a:8d:0a:00:9e:76:db:6d:ba:23:
12:38:ea:b5:9c:32:b1:be:85:16:5e:71:d7:f8:94:
ff:bb:27:2d:2c:03:a0:f1:28:8f:5c:4c:80:58:59:
d8:c1:c8:8b:ee:e5:d3:20:c3:26:b3:9e:3b:04:e6:
5a:f4:ef:01:4d:5b:20:bf:38:58:c9:28:aa:9c:db:
c2:ae:60:d7:8a:ac:56:f1:02:33:d2:4b:23:53:61:
30:d0:c5:1b:38:8f:3d:e3:de:0b:6c:22:60:ab:44:
14:96:de:d7:40:c4:85:a3:fb:0a:98:e1:6e:82:d5:
95:35:22:77:a3:df:dd:0f:60:7d:ac:0f:fc:d8:e9:
7c:af:bd:ec:b1:3f:de:56:f9:27:6b:c5:22:2e:b1:
85:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:B6:08:94:A1:B0:80:2C:55:58:17:FE:30:5F:DB:1A:B2:20:A3:7E
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/qrYIlKGwgCxVWBf-MF_bGrIgo34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.29.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:05:8e:17:8f:ee:d0:4f:b6:67:33:85:07:8a:2a:db:e6:13:
fb:79:25:28:9e:e7:a1:b8:87:64:f7:0c:e4:3b:5c:6d:42:e4:
b1:d5:8c:2d:de:7b:89:b0:15:40:12:01:8a:24:d8:07:34:be:
5f:38:aa:70:ab:12:60:64:fd:99:76:b7:46:1f:fc:31:88:7a:
6a:bd:60:e7:78:ec:a7:bf:3f:e0:36:33:0e:cc:d9:b8:42:ca:
df:09:7a:f6:9f:e1:6d:7a:fb:f6:f5:f5:72:b8:94:98:9e:12:
1e:3d:d9:ac:77:61:06:dc:7e:7f:e0:49:4b:0b:95:cd:b3:3e:
05:31:6c:a0:11:13:bd:aa:a4:bc:6a:73:61:39:a5:2f:76:e5:
36:ea:d1:8a:25:26:97:86:a7:0c:d3:af:5b:4a:db:7f:e4:2f:
4d:eb:ff:96:9b:9d:35:c8:5b:cd:03:43:9a:fd:93:4f:21:3d:
00:f5:54:6d:de:50:70:ab:ba:8d:a0:79:71:9c:15:fb:79:a8:
40:ad:fe:ca:c8:8c:bd:62:d5:a8:06:7c:b1:8d:2e:54:2b:62:
f2:0a:2e:b1:bb:e1:4e:09:0b:7f:c4:d2:63:bc:75:c4:df:a4:
26:b6:78:0e:fc:82:07:e3:67:4c:01:85:c1:a0:ca:fc:3b:8b:
f3:bc:8b:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:40 2024 by rpki-client on console-ams.rpki-client.org