Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/XxJGqkKXX_3jX0ObYe_l2um0LJY.roa
File: XxJGqkKXX_3jX0ObYe_l2um0LJY.roa (raw, json)
Hash identifier: FnrxSuP55YzOe5iwkt+Vjte5FrLqQMHR1WDLvS12m1o=
Subject key identifier: 5F:12:46:AA:42:97:5F:FD:E3:5F:43:9B:61:EF:E5:DA:E9:B4:2C:96
Certificate issuer: /CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14
Certificate serial: 018570C2C4F4306FF7DC253290D0A8286080
Authority key identifier: 1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/XxJGqkKXX_3jX0ObYe_l2um0LJY.roa
Signing time: Mon 02 Jan 2023 04:34:50 +0000
ROA not before: Mon 02 Jan 2023 04:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207527
IP address blocks: 217.150.220.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:c4:f4:30:6f:f7:dc:25:32:90:d0:a8:28:60:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14
Validity
Not Before: Jan 2 04:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f1246aa42975ffde35f439b61efe5dae9b42c96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:70:4a:e5:19:36:bd:41:03:f4:a4:36:71:09:
09:8e:50:71:81:0e:db:98:c4:c4:3a:7f:ee:ec:2f:
60:97:54:bb:fb:9c:87:fd:98:d9:f6:a2:9d:dc:be:
d8:9f:3a:35:61:3b:a8:c4:53:a0:d0:60:7e:ea:69:
09:8b:74:c0:5b:77:9b:5b:65:63:52:7b:df:f6:c2:
43:a8:e6:17:80:6b:47:43:50:f3:08:76:b2:e5:f9:
d4:2f:cf:b5:46:12:a8:a0:20:b5:20:eb:26:14:57:
11:a6:b9:d9:37:fd:46:01:0d:7f:ea:e0:bd:69:81:
16:49:4b:9c:00:8e:de:70:4b:aa:9a:03:c0:5a:01:
0e:9a:92:6f:d5:3b:01:75:3d:30:31:42:e1:ff:da:
ea:17:c9:53:43:cd:d5:92:4f:c6:db:3c:19:bc:a7:
b3:7e:cb:2f:cd:b3:ff:56:b7:9e:f4:26:31:d5:be:
bb:e6:60:12:36:95:96:46:4f:56:05:1f:14:e1:47:
e1:89:4c:95:fe:48:db:c5:cb:95:8a:3f:15:61:79:
7b:08:ab:a8:be:e3:90:37:19:37:b9:32:7a:93:6f:
a0:ca:b4:87:68:10:04:1b:37:1c:2f:d3:61:57:c5:
3e:ad:64:37:90:b9:eb:6d:09:ee:b5:6a:cd:9c:26:
25:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:12:46:AA:42:97:5F:FD:E3:5F:43:9B:61:EF:E5:DA:E9:B4:2C:96
X509v3 Authority Key Identifier:
keyid:1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/XxJGqkKXX_3jX0ObYe_l2um0LJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.150.220.0/24
Signature Algorithm: sha256WithRSAEncryption
90:8d:95:9e:28:fd:6a:4c:ab:45:99:97:77:00:6a:75:41:15:
7f:9b:58:69:b0:eb:71:5f:1b:53:a4:12:de:68:aa:e3:e2:8c:
d2:14:ba:15:63:ec:6d:6b:ac:0f:57:5f:ff:f6:75:b6:0f:db:
a7:72:ed:d0:3e:13:a2:3a:e0:85:4b:6f:0a:44:e2:65:2f:d9:
01:d4:53:80:e4:cd:08:0e:5e:23:d9:c4:76:70:11:4b:b2:36:
cd:f8:03:34:90:5a:72:b2:e3:3d:ce:b0:65:c7:06:e5:d0:0e:
a5:31:9b:3b:8a:20:60:c0:25:d6:2f:60:02:2b:fc:a9:a5:94:
b8:d6:d8:01:4a:3a:03:bd:db:2a:e2:46:81:f4:b7:81:84:0e:
a1:e2:1e:91:7c:9d:79:d0:cd:d2:91:5e:e9:79:3a:cb:76:5f:
c7:4a:6f:f6:01:b6:d9:0f:7e:59:f6:7d:dd:b8:fc:9a:55:aa:
75:8a:2a:61:75:7c:34:84:7f:d4:91:ff:4f:15:16:fc:19:38:
e3:bb:4d:da:94:c8:cf:51:e8:6f:23:a9:9c:09:15:b4:48:e0:
3d:d5:6b:9e:23:31:b3:a3:92:1a:1e:ab:49:11:18:06:d7:e4:
0e:72:8d:79:ba:61:db:6f:fa:ec:b1:30:ac:01:90:cb:e2:0e:
98:0a:0b:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:07 2023 by rpki-client on console-fra.rpki-client.org