Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/53ff62-c1ad-4244-b91a-f8affef112d8/1/S8vVXmIUZgdUkBtiyoU1ao_bxio.roa
File: S8vVXmIUZgdUkBtiyoU1ao_bxio.roa (raw, json)
Hash identifier: 4HHHOZRYLX/dlzJ/v9vcIJjHGbBrM+upc6iPEP8rm7Q=
Subject key identifier: 4B:CB:D5:5E:62:14:66:07:54:90:1B:62:CA:85:35:6A:8F:DB:C6:2A
Certificate issuer: /CN=a9f2fdea263b79fce11389052b0cd940995c6dfe
Certificate serial: 01881F1069DBEE93F6EB7FBDE601B81156F6
Authority key identifier: A9:F2:FD:EA:26:3B:79:FC:E1:13:89:05:2B:0C:D9:40:99:5C:6D:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qfL96iY7efzhE4kFKwzZQJlcbf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/53ff62-c1ad-4244-b91a-f8affef112d8/1/S8vVXmIUZgdUkBtiyoU1ao_bxio.roa
Signing time: Mon 15 May 2023 10:59:09 +0000
ROA not before: Mon 15 May 2023 10:59:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204471
IP address blocks: 217.197.106.0/24 maxlen: 24
2a12:d8c1::/32 maxlen: 32
2a12:d8c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1f:10:69:db:ee:93:f6:eb:7f:bd:e6:01:b8:11:56:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9f2fdea263b79fce11389052b0cd940995c6dfe
Validity
Not Before: May 15 10:59:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4bcbd55e6214660754901b62ca85356a8fdbc62a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f4:77:ec:c6:21:4d:01:74:fb:6e:f3:8d:cd:
95:dd:8d:28:89:a9:85:08:21:43:17:66:59:3b:03:
63:ff:62:26:44:33:05:3e:c6:51:67:6d:cb:54:67:
c1:2f:90:97:e3:f8:11:8e:20:b4:3b:52:ca:6a:22:
ad:1c:19:db:ed:b8:b2:f9:7a:28:99:25:a0:7e:42:
94:40:a2:7a:df:63:4e:c3:d6:76:25:bc:38:ac:fd:
ed:74:e4:fe:0d:c3:9a:da:7c:e4:b6:3e:06:ad:07:
5a:4b:f7:66:ea:88:f4:07:71:81:ba:c6:22:01:db:
b6:0b:20:31:0b:db:76:3c:48:66:0a:53:64:4c:8c:
db:e9:a5:38:50:0c:f5:65:14:4b:b0:5e:c9:95:a9:
bf:4f:71:ad:0e:b7:69:3c:81:5b:e8:9f:1c:26:3e:
48:6b:2e:d0:86:74:a8:90:8a:6d:b1:4d:e2:f7:7f:
4e:94:4c:3f:93:54:df:1a:44:5d:5b:da:54:f1:ae:
c0:01:87:52:f8:d3:e5:5c:c9:dd:e2:b0:f4:83:f5:
ed:eb:37:9a:c9:5e:86:4a:17:ec:5c:0e:d5:7c:f3:
cc:8d:d8:a3:36:67:3c:9e:db:2e:3b:cc:52:b3:0d:
c7:9d:50:c0:90:87:9a:aa:de:cf:f8:a7:dc:9b:a2:
97:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:CB:D5:5E:62:14:66:07:54:90:1B:62:CA:85:35:6A:8F:DB:C6:2A
X509v3 Authority Key Identifier:
keyid:A9:F2:FD:EA:26:3B:79:FC:E1:13:89:05:2B:0C:D9:40:99:5C:6D:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qfL96iY7efzhE4kFKwzZQJlcbf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/53ff62-c1ad-4244-b91a-f8affef112d8/1/S8vVXmIUZgdUkBtiyoU1ao_bxio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/53ff62-c1ad-4244-b91a-f8affef112d8/1/qfL96iY7efzhE4kFKwzZQJlcbf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.197.106.0/24
IPv6:
2a12:d8c0::/31
Signature Algorithm: sha256WithRSAEncryption
1c:df:5c:5e:fd:bb:b0:a2:e0:1c:18:87:75:e4:fd:65:3a:ef:
db:ee:e5:26:df:5d:be:be:da:b7:b4:76:2f:f4:14:a4:59:ee:
01:e7:ac:a2:7f:41:f5:22:e0:77:a2:b6:aa:70:2d:b3:9f:61:
92:66:58:af:4a:c1:59:97:4e:a0:d9:20:3b:3b:e3:9b:70:10:
e3:91:d6:ca:02:64:a6:cd:2e:ee:3a:5e:b2:b2:64:ab:03:a5:
28:d0:e9:f8:b3:4f:de:d7:28:da:5b:b0:8a:1a:40:b6:c7:02:
31:ef:40:cb:55:3c:83:8b:0f:a3:58:30:da:20:12:d0:7d:25:
73:3f:fe:c0:00:52:0b:07:ec:8f:c2:4c:3c:5a:bc:7b:51:3a:
44:92:20:0e:4f:2a:54:b5:61:cf:83:c3:1a:07:1f:2e:49:98:
d2:67:f1:54:2c:67:74:3a:b3:8f:c1:12:a0:16:ea:53:4a:80:
a2:32:03:5e:11:72:04:78:cd:b0:7c:93:25:e2:16:1c:27:03:
22:79:b5:c7:bf:a5:ae:fd:16:7a:25:eb:4f:3d:6d:dd:a3:97:
4a:24:5c:01:02:69:e2:f4:d3:1c:da:8a:fb:7f:12:d6:77:c8:
71:44:b8:7e:b4:43:89:a1:9a:dc:66:62:c0:1e:e7:b4:bc:1a:
e5:68:86:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:16 2024 by rpki-client on console-fra.rpki-client.org