Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/h63nbu1UlBD1s0YStjtUgNVmMvs.roa
File: h63nbu1UlBD1s0YStjtUgNVmMvs.roa (raw, json)
Hash identifier: Qur5PGIS9yfuJ+oSuq1XRJLsCMkMvO2OAk5hLKJXSMg=
Subject key identifier: 87:AD:E7:6E:ED:54:94:10:F5:B3:46:12:B6:3B:54:80:D5:66:32:FB
Certificate issuer: /CN=700a1231d1c27a754e46ef10e92a730ae15d0f55
Certificate serial: 01856FCBBFADC66668622D0D7C50CB3208BE
Authority key identifier: 70:0A:12:31:D1:C2:7A:75:4E:46:EF:10:E9:2A:73:0A:E1:5D:0F:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAoSMdHCenVORu8Q6SpzCuFdD1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/h63nbu1UlBD1s0YStjtUgNVmMvs.roa
Signing time: Mon 02 Jan 2023 00:05:01 +0000
ROA not before: Mon 02 Jan 2023 00:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208732
IP address blocks: 217.11.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:bf:ad:c6:66:68:62:2d:0d:7c:50:cb:32:08:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=700a1231d1c27a754e46ef10e92a730ae15d0f55
Validity
Not Before: Jan 2 00:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87ade76eed549410f5b34612b63b5480d56632fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:cb:d3:6c:30:ae:1f:ff:5b:c2:51:9f:b7:dc:
fc:99:73:a6:0e:39:9e:06:07:5e:19:db:67:f3:a1:
a4:89:34:56:e9:7f:30:18:88:6c:e4:8d:c1:bc:4b:
f8:6e:3a:f4:8d:93:ad:e9:79:3c:69:4b:27:42:b7:
a2:05:f4:fb:f2:de:e7:1d:d1:22:36:e5:74:d9:ae:
9f:09:e7:94:75:c0:62:b7:d7:e2:99:fd:32:ef:5e:
b0:b9:77:ae:69:18:8f:17:e9:15:f2:6e:54:1b:55:
06:67:8a:b2:cf:6d:aa:4b:bb:f1:7c:f4:fc:6b:a1:
51:bf:ca:a1:8a:4a:42:30:0d:b6:23:9a:cc:5a:b0:
3a:f4:1a:26:56:b2:1c:ce:8e:2c:51:40:c3:69:6e:
04:2f:f1:94:e0:c7:7a:3c:77:a5:2f:57:c0:c6:6f:
5e:53:41:cd:d7:ad:cc:9d:3c:8d:8c:b1:2d:71:aa:
c5:be:11:1c:fa:76:61:5b:c7:0c:1c:e9:8b:b4:5d:
0d:12:e0:a6:8a:09:e8:ec:c9:db:44:97:90:90:7a:
b6:d9:4a:a6:57:17:3d:04:a0:8b:fa:ed:09:2c:a2:
f3:22:f3:b3:ce:70:7c:c2:89:3c:a4:a3:d0:d6:37:
c0:c1:75:da:80:77:92:2f:21:f7:12:be:2c:a3:05:
5e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:AD:E7:6E:ED:54:94:10:F5:B3:46:12:B6:3B:54:80:D5:66:32:FB
X509v3 Authority Key Identifier:
keyid:70:0A:12:31:D1:C2:7A:75:4E:46:EF:10:E9:2A:73:0A:E1:5D:0F:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAoSMdHCenVORu8Q6SpzCuFdD1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/h63nbu1UlBD1s0YStjtUgNVmMvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/cAoSMdHCenVORu8Q6SpzCuFdD1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.11.133.0/24
Signature Algorithm: sha256WithRSAEncryption
57:0c:cf:0f:82:bf:92:21:ba:8d:bb:99:d6:bc:8e:b5:ca:e1:
57:86:18:87:56:40:0f:b0:98:1d:83:be:0c:06:ca:1a:f4:f2:
42:54:1c:0e:7a:64:84:15:67:1e:51:5b:87:00:5d:98:14:20:
3f:ae:a8:f4:a1:b7:72:9f:1a:62:f1:ae:43:56:f3:fd:60:e4:
35:e8:d5:38:fc:7e:ae:69:73:91:1e:a5:98:4f:66:06:60:8a:
03:95:1a:5f:a3:ca:01:81:b4:a4:ae:e0:5a:33:66:45:1a:e2:
94:db:9e:63:12:f0:3b:69:7d:4c:fc:97:3c:01:29:d2:d9:eb:
cd:b8:e7:50:6f:01:cc:81:c1:bb:57:3e:ec:b4:ee:13:85:f3:
44:de:6b:7f:f7:40:1b:19:c4:7a:53:e5:bf:73:f4:32:d2:ff:
a9:19:63:07:53:da:0e:71:f2:2f:46:01:97:80:4a:e6:e2:9c:
29:2f:cb:8c:f0:23:c4:2c:20:d3:b5:fc:28:70:be:49:2c:5e:
6a:1a:48:c4:e1:08:f5:59:18:aa:0d:f6:18:14:ef:89:81:4c:
b1:a7:a3:a6:8c:17:71:ff:6c:9c:97:e0:cb:fd:c5:fd:e3:22:
05:f8:51:5e:44:53:b2:9f:71:a4:d5:c9:00:de:29:f1:0c:73:
f9:b3:41:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:01 2024 by rpki-client on console-ams.rpki-client.org