Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/jsRRuFfbe-jExZ-gSe-hAO1I37g.roa
File: jsRRuFfbe-jExZ-gSe-hAO1I37g.roa (raw, json)
Hash identifier: mXYUZhxZqdhwi+L0NutPot6UdxkplyUBooz6Erx6IN0=
Subject key identifier: 8E:C4:51:B8:57:DB:7B:E8:C4:C5:9F:A0:49:EF:A1:00:ED:48:DF:B8
Certificate issuer: /CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae
Certificate serial: 018572559F16709049BA4AEC2FB20AF88264
Authority key identifier: 20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/jsRRuFfbe-jExZ-gSe-hAO1I37g.roa
Signing time: Mon 02 Jan 2023 11:54:51 +0000
ROA not before: Mon 02 Jan 2023 11:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206632
IP address blocks: 156.17.201.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:9f:16:70:90:49:ba:4a:ec:2f:b2:0a:f8:82:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae
Validity
Not Before: Jan 2 11:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ec451b857db7be8c4c59fa049efa100ed48dfb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:30:ee:60:57:1b:0c:72:3b:e2:b6:03:78:6a:
f7:2c:59:71:b8:f7:a6:77:93:62:7f:1d:f7:8b:a4:
a1:5e:18:30:03:fc:00:fa:02:64:dc:0a:d9:f5:72:
5b:65:e7:95:c4:dd:92:34:20:ae:e8:5e:20:4b:16:
ec:e7:64:d7:3e:a1:59:b5:8c:e4:28:fd:37:2c:7c:
0f:a9:3a:34:dd:75:3b:bd:2c:88:1d:26:84:87:e0:
3d:e9:c0:91:9e:23:3a:7a:3c:20:83:ec:c3:7e:52:
0c:a8:d3:3a:73:45:8c:c5:3d:24:00:d5:0a:79:4a:
67:4b:b2:ef:21:4e:48:01:4f:4d:aa:6e:7a:8d:2c:
f5:e1:65:08:fd:4c:59:b5:70:81:58:1f:10:b8:29:
04:32:0d:a8:1e:ac:55:c4:ca:bc:3f:ce:58:d3:1d:
54:7b:14:1f:dc:6c:cc:9d:a9:c2:ce:9c:c8:0c:f6:
ea:ed:37:93:62:44:d5:c6:ce:6c:da:37:2f:1e:d8:
bb:bf:b6:be:00:5e:59:51:fb:8a:cd:4a:83:d4:d8:
b3:bb:c7:f7:a5:aa:f9:07:08:95:c5:6e:a1:22:4b:
62:d3:67:5c:55:52:b3:ab:b8:9b:71:b3:3c:32:0b:
b7:b3:02:6a:45:27:a6:dc:ab:3f:3b:01:15:a5:1b:
ea:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:C4:51:B8:57:DB:7B:E8:C4:C5:9F:A0:49:EF:A1:00:ED:48:DF:B8
X509v3 Authority Key Identifier:
keyid:20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/jsRRuFfbe-jExZ-gSe-hAO1I37g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/IC9MGjfpMTzdLup3UK4CjRjNWq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.17.201.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:1a:e6:2b:85:1b:c0:d3:a2:e9:3f:44:96:97:46:92:27:93:
d8:15:65:13:69:1c:6c:25:2c:0c:f4:a3:54:9e:b3:d3:71:4c:
99:25:81:19:68:62:8f:a4:d6:38:06:08:02:46:49:69:e4:74:
98:97:82:bc:ca:5e:7a:4c:66:54:26:23:c6:0d:83:00:2e:27:
f5:a8:cf:ea:c3:56:d5:36:04:1d:86:6f:28:d6:e9:0c:62:d3:
ec:ad:7f:a8:2b:cd:71:2f:09:6b:ee:d7:ae:7b:c4:ba:2e:c0:
c2:b9:e0:3c:f4:e3:76:b2:cf:92:bf:2a:4b:55:83:b6:13:8c:
13:7e:77:55:35:8f:04:a8:e1:61:49:6f:19:1e:e1:7c:2f:a7:
aa:16:be:fd:35:78:1f:a6:c2:aa:b7:87:74:17:cf:f3:69:98:
43:6d:36:40:f4:12:1a:94:d3:72:94:a0:f0:56:d5:f4:61:4b:
f7:2a:95:0d:33:a5:3c:9d:27:b4:6c:f4:47:91:db:a7:ee:18:
d6:e8:5c:6f:60:df:a1:a1:5f:8f:1c:24:9c:6b:25:2c:87:11:
2d:53:31:54:26:9e:0a:71:e7:71:36:03:b2:d9:e8:32:e2:19:
28:27:0b:9f:1f:f7:03:17:5c:0e:10:2a:00:18:bc:48:65:2b:
b9:f0:02:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:51 2024 by rpki-client on console-fra.rpki-client.org