Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/JmQXlAe2kizGe3CNU3Oh3u-1GEw.roa
File: JmQXlAe2kizGe3CNU3Oh3u-1GEw.roa (raw, json)
Hash identifier: M2fXWfIBaGRMyRi9TfDZuOLAQ/E3puWLa1OmFQU9pMQ=
Subject key identifier: 26:64:17:94:07:B6:92:2C:C6:7B:70:8D:53:73:A1:DE:EF:B5:18:4C
Certificate issuer: /CN=2d28cfa3fd2da9caaa659284758dee67099934f8
Certificate serial: 018C353416202821F24B13F761D2967E72C9
Authority key identifier: 2D:28:CF:A3:FD:2D:A9:CA:AA:65:92:84:75:8D:EE:67:09:99:34:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSjPo_0tqcqqZZKEdY3uZwmZNPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/JmQXlAe2kizGe3CNU3Oh3u-1GEw.roa
Signing time: Mon 04 Dec 2023 14:20:55 +0000
ROA not before: Mon 04 Dec 2023 14:20:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200200
IP address blocks: 217.145.230.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:35:34:16:20:28:21:f2:4b:13:f7:61:d2:96:7e:72:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d28cfa3fd2da9caaa659284758dee67099934f8
Validity
Not Before: Dec 4 14:20:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2664179407b6922cc67b708d5373a1deefb5184c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:37:b6:71:29:fd:0c:0a:66:8d:fb:c2:e0:e3:
dd:12:76:bd:fd:38:7e:a5:6e:49:ea:c5:0d:a2:41:
a1:10:31:98:ad:db:93:5f:6a:ae:89:b8:89:7f:62:
4f:0b:ff:21:01:f0:ab:82:12:51:f5:51:37:75:f5:
e2:56:76:69:33:51:96:1e:cb:82:79:8f:b3:68:e1:
d5:4a:2f:dd:1c:b6:8b:fc:1f:6b:bf:4a:a8:48:8b:
78:05:15:a8:d8:77:ac:e2:a8:90:28:2f:f4:ed:c0:
1b:de:36:54:18:c9:94:84:04:66:f3:3c:4d:4d:cc:
20:e7:1d:87:b9:85:dd:5c:39:ec:f3:86:83:9e:a1:
70:7a:b1:98:ba:39:39:f9:f7:47:2f:4f:ac:64:8f:
7e:94:52:a3:36:46:82:96:b6:51:19:7f:d6:0b:50:
de:65:c6:78:f4:18:ce:18:d0:d9:a3:ca:32:4e:69:
bc:03:e2:6a:8a:a8:1b:99:75:c5:aa:31:12:e7:c5:
82:a8:9b:bf:1f:d4:c0:b9:e1:60:7c:e9:af:33:6b:
a7:34:f6:48:92:a6:d8:44:4f:12:90:de:e9:3c:ed:
2f:f5:d9:60:da:1f:27:31:d3:3c:03:37:5b:de:b1:
f4:86:ad:39:49:c7:46:74:c5:53:f2:62:e3:fe:12:
24:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:64:17:94:07:B6:92:2C:C6:7B:70:8D:53:73:A1:DE:EF:B5:18:4C
X509v3 Authority Key Identifier:
keyid:2D:28:CF:A3:FD:2D:A9:CA:AA:65:92:84:75:8D:EE:67:09:99:34:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSjPo_0tqcqqZZKEdY3uZwmZNPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/JmQXlAe2kizGe3CNU3Oh3u-1GEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/LSjPo_0tqcqqZZKEdY3uZwmZNPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.145.230.0/24
Signature Algorithm: sha256WithRSAEncryption
68:d8:7f:16:79:45:ac:17:af:07:01:75:ee:e6:b6:45:2b:3c:
1e:e0:ea:75:cb:66:ea:44:1a:b3:fc:7d:d9:2d:4d:fd:ca:56:
dc:e0:95:0e:14:75:00:83:9a:bd:2d:ac:38:d8:86:73:45:00:
c0:0e:4b:ff:e5:c9:27:3e:5c:19:9a:66:cf:ac:b3:86:bc:ff:
b9:d7:0e:88:8f:de:67:85:ef:4e:c6:52:88:09:f4:2c:02:06:
5e:3e:2b:9d:47:d7:80:80:a0:6f:8c:90:72:a6:64:46:22:7e:
0c:a7:01:87:c0:ac:e1:90:11:ab:b4:e0:a2:fb:4d:6b:14:ec:
db:fe:40:01:ad:47:c6:1c:55:1b:fb:10:a2:6e:29:45:21:ba:
f8:4c:68:5c:8a:55:92:59:4b:51:b8:bb:ff:fd:92:14:1e:fc:
9f:7a:00:2f:61:f2:b9:02:00:fc:bc:b0:c7:7e:60:6b:57:e7:
9b:61:38:38:5e:92:aa:a7:89:9d:df:ef:44:3d:07:3a:74:47:
f2:cb:74:d1:40:52:59:56:67:b4:d5:3e:d3:a1:d2:61:78:74:
a1:03:1d:ae:6b:04:6f:39:86:c2:79:ac:8b:26:14:ce:58:4f:
ea:bd:fc:6b:41:be:c3:f7:e2:3b:3a:44:92:cd:80:f7:7e:67:
a5:bb:85:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:32 2024 by rpki-client on console-ams.rpki-client.org