Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/013526-7710-4bb0-b514-fbb7d30dce38/1/cvvel9gWoabYAJMb6GYNoxWFv_s.roa
File: cvvel9gWoabYAJMb6GYNoxWFv_s.roa (raw, json)
Hash identifier: bUXQqVJrVfNf8Fgb9nlojrtLotiiF0P2PrRJObVhzOY=
Subject key identifier: 72:FB:DE:97:D8:16:A1:A6:D8:00:93:1B:E8:66:0D:A3:15:85:BF:FB
Certificate issuer: /CN=66953361ff6c0083fd93d52865033319863fbc46
Certificate serial: 01888C5121C0487FE2BD425798D882A15AC2
Authority key identifier: 66:95:33:61:FF:6C:00:83:FD:93:D5:28:65:03:33:19:86:3F:BC:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZpUzYf9sAIP9k9UoZQMzGYY_vEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/013526-7710-4bb0-b514-fbb7d30dce38/1/cvvel9gWoabYAJMb6GYNoxWFv_s.roa
Signing time: Mon 05 Jun 2023 16:08:27 +0000
ROA not before: Mon 05 Jun 2023 16:08:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197883
IP address blocks: 217.197.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8c:51:21:c0:48:7f:e2:bd:42:57:98:d8:82:a1:5a:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66953361ff6c0083fd93d52865033319863fbc46
Validity
Not Before: Jun 5 16:08:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72fbde97d816a1a6d800931be8660da31585bffb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b0:67:6d:e9:df:d1:93:83:43:fd:f5:f8:a1:
e6:ca:33:6e:99:eb:83:76:3b:9e:be:bb:df:43:c8:
98:67:8d:42:bb:f3:f5:23:c3:3b:d7:b2:0f:0d:74:
33:f6:91:50:42:e5:95:fe:fa:ee:75:e2:58:51:0f:
a0:44:61:0d:c5:56:1f:6a:7f:1e:ad:43:10:bd:2b:
90:72:ae:aa:c9:e9:10:d0:4d:7e:b1:a1:95:7a:fe:
01:9c:05:28:ba:0a:64:bc:e5:20:52:7d:e7:56:16:
da:49:14:8c:e3:fe:d1:50:85:3d:be:fd:a2:8b:b4:
e5:99:b4:27:0a:cb:5a:87:e4:87:f4:c0:38:d6:49:
ad:54:b6:87:bc:c5:10:e1:df:84:93:71:30:fa:71:
c7:81:84:82:73:30:ba:c6:31:db:29:2d:37:13:6c:
c2:58:a6:40:01:37:70:84:c3:3b:9e:0a:d9:f5:05:
e5:ac:9d:0a:dc:ba:76:59:73:c9:26:96:0d:83:4e:
22:9d:d1:6c:c2:40:ca:c0:a5:3b:6b:2c:5a:a3:55:
0d:4a:38:74:91:7a:e7:9f:73:47:b3:ac:f8:fe:67:
ce:ed:0e:07:c5:13:5a:2e:0b:f0:5a:b8:ad:dd:69:
be:4e:82:5b:ba:06:28:5f:11:7e:3b:30:aa:09:2e:
6f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:FB:DE:97:D8:16:A1:A6:D8:00:93:1B:E8:66:0D:A3:15:85:BF:FB
X509v3 Authority Key Identifier:
keyid:66:95:33:61:FF:6C:00:83:FD:93:D5:28:65:03:33:19:86:3F:BC:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZpUzYf9sAIP9k9UoZQMzGYY_vEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/013526-7710-4bb0-b514-fbb7d30dce38/1/cvvel9gWoabYAJMb6GYNoxWFv_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/013526-7710-4bb0-b514-fbb7d30dce38/1/ZpUzYf9sAIP9k9UoZQMzGYY_vEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.197.109.0/24
Signature Algorithm: sha256WithRSAEncryption
14:78:4a:bd:19:04:32:36:ed:28:64:d8:ef:bf:20:2c:84:db:
74:8b:fe:ee:b3:8b:2a:57:b0:87:5b:46:32:bd:8d:8c:ab:1c:
3a:9e:8b:42:e9:3e:45:2e:76:3b:e7:a2:df:30:a8:65:a5:7e:
d6:6d:a1:60:2f:f2:41:43:60:74:ce:a9:76:05:2c:77:f4:32:
b0:f9:66:de:31:24:1d:55:7f:e6:25:30:09:f1:a3:b1:16:fe:
f3:c4:e1:40:63:d6:c2:e1:ca:39:ac:ba:fd:79:15:e8:33:12:
57:86:e5:31:e4:2d:05:f3:53:5e:c4:67:da:bf:07:ce:3d:10:
0b:9c:22:4b:c2:a4:e7:9b:d5:40:03:6b:b2:bd:7a:e1:da:f3:
7a:fe:90:02:08:40:74:b3:b6:58:67:5b:98:3c:c1:a7:be:31:
9d:2c:e9:96:a1:99:dd:c4:8a:17:40:d7:a1:96:57:7e:f3:1f:
2f:71:8a:7b:d3:fd:1a:64:16:e0:a1:48:b2:32:b4:d4:e9:7d:
99:b0:6c:02:7a:dc:3d:ab:a0:89:20:04:26:aa:73:b4:8c:e9:
71:78:27:13:3f:07:3d:a7:6e:8c:8f:86:58:8c:64:f2:df:6d:
80:fa:c8:e0:7a:1a:a6:a4:12:0c:f1:2c:56:bb:54:86:5d:09:
ea:58:64:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:12 2024 by rpki-client on console-ams.rpki-client.org