Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/w0N2lufQJUpffRQDn4h5J51hDCk.roa
File: w0N2lufQJUpffRQDn4h5J51hDCk.roa (raw, json)
Hash identifier: E6ZCPc4TwaY9d52r5C4epz7AW0T7Hbd/YCh/Htq3+Ik=
Subject key identifier: C3:43:76:96:E7:D0:25:4A:5F:7D:14:03:9F:88:79:27:9D:61:0C:29
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0186B1130C6716E60A37A64C1A664F5F9CA6
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/w0N2lufQJUpffRQDn4h5J51hDCk.roa
Signing time: Sun 05 Mar 2023 09:21:00 +0000
ROA not before: Sun 05 Mar 2023 09:21:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 27717
IP address blocks: 217.26.191.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b1:13:0c:67:16:e6:0a:37:a6:4c:1a:66:4f:5f:9c:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Mar 5 09:21:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c3437696e7d0254a5f7d14039f8879279d610c29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:78:d4:89:f5:7b:ba:b2:22:c7:d7:63:9e:35:
87:cb:b4:e6:84:97:ee:c5:35:07:8e:5d:7e:df:05:
3d:b4:f1:43:3c:83:48:6e:18:5e:f9:e9:9c:8c:6c:
03:fc:ee:04:a3:e8:7e:48:dc:1d:01:b9:c7:c8:ad:
58:29:d0:36:e9:10:4a:6e:b1:41:b5:35:c7:46:5a:
2a:ff:1f:fc:2b:a9:0a:9b:e1:3c:3e:ae:7f:36:3b:
8f:c5:75:9b:d5:ee:df:f5:68:5d:db:40:88:38:c6:
dc:64:ff:8d:60:6a:3d:78:e4:1d:ce:6b:1c:54:9e:
1b:86:a1:3a:3a:84:81:ef:e2:69:7a:60:36:6b:68:
42:0a:0a:cf:75:e8:21:53:9e:94:fe:7f:05:78:6e:
e6:76:af:3e:4b:e9:3e:24:45:5c:ae:c4:36:08:50:
92:db:5a:33:b7:e6:32:e9:c9:69:75:8c:2d:7f:0f:
8e:73:c3:27:3f:cc:38:4d:99:3b:a5:f1:8c:fd:ac:
c2:8a:19:47:42:45:b3:bf:b1:d6:8c:ea:f6:20:19:
90:bd:35:29:f5:3e:40:50:47:cd:2b:f9:11:68:61:
b0:41:33:c6:9a:64:d3:1b:e3:20:54:d7:4b:c8:a9:
ce:6f:7b:b7:57:e5:5e:b2:af:2d:42:d5:6b:44:b2:
ed:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:43:76:96:E7:D0:25:4A:5F:7D:14:03:9F:88:79:27:9D:61:0C:29
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/w0N2lufQJUpffRQDn4h5J51hDCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.26.191.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:eb:e2:f9:7f:58:85:ff:32:33:ed:20:7c:84:ae:e1:19:36:
98:6f:5d:87:d7:01:33:b7:19:db:df:60:8f:1b:30:a1:a2:56:
49:75:33:70:7e:f8:9d:1e:cc:6f:df:08:12:86:70:35:25:a9:
ea:2e:07:02:f3:7b:6d:f4:6f:72:b9:90:c4:5a:ab:79:6d:54:
68:1a:7e:26:f9:ad:25:c6:a1:ce:23:58:d1:22:da:e8:9a:8e:
0a:d9:f2:52:d3:d5:cc:ec:f5:e8:02:da:16:23:f1:42:36:3d:
63:8e:c7:83:5c:c7:a8:d9:1b:ec:58:bc:f8:8f:c9:94:91:a7:
75:9c:ef:cc:83:78:d4:c1:04:68:e3:23:8e:8b:0c:0c:64:75:
d2:2e:7b:89:86:cc:b2:0e:97:63:ee:1c:09:c0:24:80:24:c1:
04:8e:80:7d:8c:46:3e:59:81:01:10:5c:06:72:b5:53:a3:56:
f1:ef:f4:18:5e:95:1c:06:3a:96:56:cb:05:7c:7c:a5:7f:c0:
82:68:77:d4:8c:72:1b:08:12:2b:e4:c6:52:77:76:ad:ff:b6:
d8:60:a5:81:0e:4a:f5:6e:1b:aa:87:b0:3e:7d:e4:e3:65:d5:
fd:18:b6:cb:2b:a0:95:db:a0:a6:6e:49:64:48:70:4f:ee:70:
9b:23:66:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:47 2024 by rpki-client on console-fra.rpki-client.org