Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/68OXp6OblYpomQCHTVQMce0B7Z8.roa
File: 68OXp6OblYpomQCHTVQMce0B7Z8.roa (raw, json)
Hash identifier: QgNIIK8vyu05Nqy60KTzkWyOmsynTPFOTwqGHgJVmxQ=
Subject key identifier: EB:C3:97:A7:A3:9B:95:8A:68:99:00:87:4D:54:0C:71:ED:01:ED:9F
Certificate issuer: /CN=f030658f16d2d88d34164592fcd4de13131f1695
Certificate serial: 018925500DDAC885A9082387C0798E03ED73
Authority key identifier: F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/68OXp6OblYpomQCHTVQMce0B7Z8.roa
Signing time: Wed 05 Jul 2023 09:09:10 +0000
ROA not before: Wed 05 Jul 2023 09:09:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210281
IP address blocks: 217.196.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Dec 2023 17:25:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:25:50:0d:da:c8:85:a9:08:23:87:c0:79:8e:03:ed:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f030658f16d2d88d34164592fcd4de13131f1695
Validity
Not Before: Jul 5 09:09:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebc397a7a39b958a689900874d540c71ed01ed9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a8:dc:e9:ba:c2:e3:04:fe:67:39:9e:02:45:
83:8b:03:c5:48:fb:63:7a:68:d4:8d:cc:98:65:7a:
a5:1c:e2:1d:76:83:10:1a:3f:7a:7f:63:6c:83:63:
57:fe:05:97:e5:30:07:cd:b8:1d:4a:a1:81:7d:0f:
56:03:3d:e3:b8:56:03:a1:46:be:0a:af:01:58:36:
5e:a1:5f:4b:a6:d8:2b:0f:1f:c1:f2:88:cc:0a:b9:
31:96:d5:1d:b5:cd:27:27:09:98:47:f3:5b:35:8b:
1a:64:b4:bf:c8:93:36:10:d8:ca:e3:c9:69:f0:2a:
f6:4e:31:3b:2c:c8:4e:80:99:c3:17:9d:4c:6c:ef:
96:e6:5e:80:d8:c0:0e:c1:8f:c3:f8:e8:16:1d:2f:
57:4f:ab:7f:ce:7d:3d:a5:0b:bb:e3:65:a2:0a:c5:
48:d9:1b:2e:09:d1:1a:c2:2f:4b:c7:fa:7e:0d:19:
48:95:dd:1f:e3:c6:77:ee:13:ed:d4:5e:b3:05:56:
16:0f:e9:a3:e5:ed:ef:40:82:a3:61:58:53:6f:50:
5c:0c:a9:74:9a:df:c9:2a:6f:10:5d:09:38:64:bf:
49:6e:90:eb:a6:4e:75:0f:6e:b9:d2:f4:33:ae:7d:
df:a4:4b:d5:4e:83:d9:05:4b:1b:f7:6b:41:15:f5:
c0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:C3:97:A7:A3:9B:95:8A:68:99:00:87:4D:54:0C:71:ED:01:ED:9F
X509v3 Authority Key Identifier:
keyid:F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/68OXp6OblYpomQCHTVQMce0B7Z8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/8DBljxbS2I00FkWS_NTeExMfFpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.196.96.0/24
Signature Algorithm: sha256WithRSAEncryption
54:24:22:34:1e:43:2f:60:99:46:75:04:e4:76:e8:61:cb:b6:
7d:05:15:f6:aa:94:a2:7b:89:f7:4c:81:1a:84:1f:37:2b:a7:
69:e8:dd:6a:2b:42:11:01:ae:bd:54:38:a6:e2:3c:f2:43:36:
ff:f1:a8:03:b4:2b:c6:5b:b2:88:10:8a:3f:59:24:c0:95:35:
e3:88:7b:3a:70:f5:af:ac:a1:01:bd:62:f2:97:73:39:43:ab:
dc:2d:b2:93:b5:98:e4:c8:d5:83:41:0a:c7:34:8c:9d:68:72:
61:4d:e9:2c:6f:db:ae:3f:22:08:1a:b6:7f:0f:d4:f7:67:b4:
89:0a:d1:c1:12:84:53:fa:f1:c8:d1:d1:06:39:ff:3e:0f:2b:
b4:7f:89:95:f1:d7:b8:ae:9f:0c:d7:be:d3:8d:6b:c7:58:97:
51:32:ae:11:31:2a:df:0e:14:2e:9d:d1:96:a3:35:e4:7f:79:
75:0a:d6:d6:75:37:ca:5a:2c:3e:ba:fe:86:9d:86:5d:0d:ff:
07:de:a5:63:9e:a1:8c:73:ed:85:10:28:aa:40:80:5a:38:4b:
d9:3a:b1:6c:3e:74:b1:71:8a:2c:29:b4:7b:70:ac:c8:9b:50:
eb:1d:9d:bf:75:28:6d:1d:0e:2f:fb:0d:bc:f5:ea:ec:80:16:
df:92:c7:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:37 2024 by rpki-client on console-fra.rpki-client.org