Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/_eJVl2APmwPYudBLPNEmi8466xM.roa
File: _eJVl2APmwPYudBLPNEmi8466xM.roa (raw, json)
Hash identifier: A8pfaANjNOx+nAvhMoyCUYwW63McskZZoQqjWQ5ZgJw=
Subject key identifier: FD:E2:55:97:60:0F:9B:03:D8:B9:D0:4B:3C:D1:26:8B:CE:3A:EB:13
Certificate issuer: /CN=9cce3b1197d0cf9511540572a58fd372dcc07489
Certificate serial: 01856CAEFABD817C40357F8A8B435C6DF669
Authority key identifier: 9C:CE:3B:11:97:D0:CF:95:11:54:05:72:A5:8F:D3:72:DC:C0:74:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/_eJVl2APmwPYudBLPNEmi8466xM.roa
Signing time: Sun 01 Jan 2023 09:34:44 +0000
ROA not before: Sun 01 Jan 2023 09:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212830
IP address blocks: 217.67.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Oct 2023 11:34:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ae:fa:bd:81:7c:40:35:7f:8a:8b:43:5c:6d:f6:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cce3b1197d0cf9511540572a58fd372dcc07489
Validity
Not Before: Jan 1 09:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fde25597600f9b03d8b9d04b3cd1268bce3aeb13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2d:6e:4f:48:7c:a0:2d:98:35:22:dc:8c:09:
5c:4e:8f:95:8e:c2:d6:1d:7a:86:f8:a1:2c:9b:a3:
b5:c8:47:67:a3:a9:a5:6b:62:07:47:a8:0c:55:73:
f4:58:d3:a0:45:e7:8f:cb:f1:18:a1:bb:cb:3f:b1:
af:40:20:fc:f3:e9:f6:f7:7a:62:ab:6d:20:e1:1a:
49:72:a5:44:d5:37:71:56:3a:16:56:ec:63:9f:c0:
87:9f:4b:0c:dd:4f:a2:1a:32:14:c8:ab:5b:77:b7:
87:ae:d2:5c:08:ce:d9:85:74:83:dc:66:3e:d3:06:
fc:f1:9f:a2:f0:f5:3e:c0:8f:dc:58:fe:ff:a8:17:
7b:9b:e4:aa:a3:a0:31:c7:cf:d0:c8:12:cb:d7:9b:
b5:18:b9:a3:ec:50:e3:5a:07:f1:c6:78:0b:9a:d4:
21:ae:8d:4d:57:87:e9:dc:43:8a:f0:b0:ca:ac:e8:
27:8c:85:2f:ea:19:63:c2:e5:f8:98:96:b6:86:b6:
de:c3:a4:a4:f6:11:9b:a4:b7:c2:d0:c8:0b:49:69:
ef:e2:05:10:3b:1c:d3:54:e0:86:f4:14:f0:b2:f9:
d5:5b:4f:b8:74:56:d0:42:d4:d8:b9:53:ca:22:e1:
ff:48:6f:c5:f1:13:b1:2e:38:15:28:95:c8:6c:aa:
61:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:E2:55:97:60:0F:9B:03:D8:B9:D0:4B:3C:D1:26:8B:CE:3A:EB:13
X509v3 Authority Key Identifier:
keyid:9C:CE:3B:11:97:D0:CF:95:11:54:05:72:A5:8F:D3:72:DC:C0:74:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/_eJVl2APmwPYudBLPNEmi8466xM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.67.164.0/24
Signature Algorithm: sha256WithRSAEncryption
11:82:55:18:b6:64:35:82:8a:39:f4:e9:9a:8b:25:7d:b2:d6:
7d:18:2e:a1:4b:48:cd:ed:ce:80:7d:e2:35:8d:7f:4f:bf:b7:
6c:a3:6e:29:60:11:4e:91:0f:c1:56:79:6b:ca:96:80:3a:09:
e6:1f:71:ef:64:16:e9:b9:30:a1:3f:53:39:54:a5:53:c7:b2:
f9:bf:30:ce:11:26:47:11:4a:2a:37:d0:45:73:d5:c3:dd:b1:
89:ec:cb:11:b9:8e:0b:f2:8d:3e:91:27:ed:24:7b:1e:53:65:
9d:b9:9c:8a:64:e9:0a:be:ab:1a:1f:c9:0a:7e:ef:fc:8a:9c:
fa:1a:79:f8:84:6a:d1:f0:d0:35:de:d8:8e:76:0c:94:a3:97:
02:4b:7c:c7:24:79:0f:17:cd:74:86:3e:81:27:ff:77:ed:26:
fe:9d:29:80:ea:2e:6b:7e:04:3a:bc:1a:61:ec:1f:18:85:d2:
c9:50:cd:a1:4d:20:2f:40:57:c2:96:2e:47:e2:29:95:63:4e:
6d:83:4e:fa:63:b6:11:4f:20:69:09:c6:6f:6f:5b:22:14:c0:
a5:86:bf:cd:e5:7a:63:c9:da:31:4c:92:32:94:5e:dc:4e:8a:
e8:b9:26:8b:6d:37:c4:42:d5:8d:ee:8e:60:96:ba:89:c6:51:
98:d7:58:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:04 2024 by rpki-client on console-ams.rpki-client.org