Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/773e49-f4ea-47a7-8a60-d42d4e9c767d/1/wxevYtdJ35UhF9CXntYH8rMpMkw.roa
File: wxevYtdJ35UhF9CXntYH8rMpMkw.roa (raw, json)
Hash identifier: zW7w2UHAzm2csI87YhN4+ZxO30R4mMtyIhbtMGQdang=
Subject key identifier: C3:17:AF:62:D7:49:DF:95:21:17:D0:97:9E:D6:07:F2:B3:29:32:4C
Certificate issuer: /CN=67a4ec38f2ff69d2505f7f62e94c3bd798b58552
Certificate serial: 0189B51BF89A5EA6DCF08429F6140EF5E4A1
Authority key identifier: 67:A4:EC:38:F2:FF:69:D2:50:5F:7F:62:E9:4C:3B:D7:98:B5:85:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z6TsOPL_adJQX39i6Uw715i1hVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/773e49-f4ea-47a7-8a60-d42d4e9c767d/1/wxevYtdJ35UhF9CXntYH8rMpMkw.roa
Signing time: Wed 02 Aug 2023 07:17:36 +0000
ROA not before: Wed 02 Aug 2023 07:17:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39657
IP address blocks: 217.30.0.0/22 maxlen: 24
217.30.0.0/23 maxlen: 23
217.30.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Aug 2023 12:43:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b5:1b:f8:9a:5e:a6:dc:f0:84:29:f6:14:0e:f5:e4:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67a4ec38f2ff69d2505f7f62e94c3bd798b58552
Validity
Not Before: Aug 2 07:17:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c317af62d749df952117d0979ed607f2b329324c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:43:2c:36:cc:81:74:43:86:97:97:27:02:2d:
bc:f2:97:12:b2:fa:dc:7c:97:84:bb:43:d9:14:2e:
81:8d:3d:a3:59:ad:b2:2a:39:35:eb:1f:3a:f2:d6:
8f:21:69:8a:2b:5e:99:05:22:f2:a4:9b:cd:1a:b2:
a4:3f:91:9f:58:16:82:f1:cd:fe:5d:2e:71:08:fc:
1e:f2:b0:ec:ea:74:e0:6b:47:59:38:cd:8b:34:8c:
a0:2b:3b:96:24:eb:14:67:87:73:8f:bf:6a:76:ea:
4b:db:48:01:8e:9f:78:32:60:7e:51:5f:a3:e7:35:
a0:9d:20:b4:dd:7e:2f:19:20:cc:65:67:cf:56:07:
14:bd:fc:35:d4:71:87:39:e0:db:44:a8:8d:25:66:
9f:59:5f:33:3e:46:67:c3:c5:c5:51:f6:12:f8:44:
bd:ac:0c:40:68:ac:ea:35:62:19:b8:e9:9b:e6:9f:
9d:e2:31:0c:9f:62:d6:b8:aa:88:46:60:7b:df:4c:
65:67:af:05:4a:ad:99:4e:f7:d2:9c:fe:d1:82:14:
05:7c:c9:2e:9c:78:dc:ed:a6:af:15:b2:72:14:86:
f9:bf:65:71:ac:0a:55:d4:9f:13:b8:b2:0f:3a:62:
ae:ea:30:00:14:4d:7d:e6:b8:b2:a1:46:83:f2:5f:
c4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:17:AF:62:D7:49:DF:95:21:17:D0:97:9E:D6:07:F2:B3:29:32:4C
X509v3 Authority Key Identifier:
keyid:67:A4:EC:38:F2:FF:69:D2:50:5F:7F:62:E9:4C:3B:D7:98:B5:85:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z6TsOPL_adJQX39i6Uw715i1hVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/773e49-f4ea-47a7-8a60-d42d4e9c767d/1/wxevYtdJ35UhF9CXntYH8rMpMkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/773e49-f4ea-47a7-8a60-d42d4e9c767d/1/Z6TsOPL_adJQX39i6Uw715i1hVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.30.0.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:65:ed:ba:2f:b5:df:de:75:ef:ee:76:fd:29:db:14:28:8e:
78:01:15:75:b4:78:bc:53:cb:fd:c0:15:5b:c3:da:35:31:a6:
90:41:b0:d7:27:80:10:dc:3a:98:e2:c9:18:a1:53:f5:bf:d4:
e5:6a:d0:3b:97:1e:28:af:38:3a:6e:f4:a9:af:53:b3:c6:d2:
e8:af:ef:f6:bd:d1:70:70:76:56:6e:3e:40:05:26:19:40:66:
db:50:59:93:97:06:cf:92:3d:c0:08:23:b4:1d:85:e2:d0:87:
e2:d8:ea:35:20:1d:7a:61:51:bb:6a:22:10:5a:cb:ac:e4:5e:
b5:5a:3c:e1:0b:3a:8c:c5:f1:08:8c:af:fe:ca:7a:17:97:6a:
f1:d4:cd:0f:22:43:be:c8:4a:4b:c3:c1:04:ef:10:fb:c1:41:
52:9e:27:74:55:d8:40:0f:55:06:f5:85:ed:f4:56:57:0b:44:
e1:27:3c:33:9b:94:a0:14:11:bf:f9:f2:fb:2e:7d:dc:d8:9c:
c4:81:7b:aa:cf:70:58:93:39:f6:e2:a8:db:e6:66:eb:0b:43:
5c:3f:d6:a4:f5:e6:80:c6:54:57:92:2c:fe:d6:77:aa:e6:87:
32:aa:d7:70:a3:c8:8c:f7:c7:06:5b:d6:e9:2f:34:9e:fc:69:
b2:e4:d4:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:13 2024 by rpki-client on console-ams.rpki-client.org