Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/KxpMCbN_P2UC0EsSM23vP2IL9OQ.roa
File: KxpMCbN_P2UC0EsSM23vP2IL9OQ.roa (raw, json)
Hash identifier: RnPlqXlIaRBb6DNfd9IAVDseDhuLoyNz++acJKJnUYw=
Subject key identifier: 2B:1A:4C:09:B3:7F:3F:65:02:D0:4B:12:33:6D:EF:3F:62:0B:F4:E4
Certificate issuer: /CN=f030658f16d2d88d34164592fcd4de13131f1695
Certificate serial: 0187E807B5A1151362810FD1B76533FCAA54
Authority key identifier: F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/KxpMCbN_P2UC0EsSM23vP2IL9OQ.roa
Signing time: Thu 04 May 2023 18:30:32 +0000
ROA not before: Thu 04 May 2023 18:30:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206728
IP address blocks: 217.196.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Aug 2023 19:55:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e8:07:b5:a1:15:13:62:81:0f:d1:b7:65:33:fc:aa:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f030658f16d2d88d34164592fcd4de13131f1695
Validity
Not Before: May 4 18:30:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b1a4c09b37f3f6502d04b12336def3f620bf4e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1d:04:21:24:72:43:e5:26:a1:d0:7c:d5:80:
6f:e3:f2:aa:24:77:72:fc:e4:5a:30:6b:20:4c:03:
1a:c0:30:d9:5b:57:4c:1a:eb:80:0c:cb:e1:f3:d6:
c8:ba:bb:d6:bf:29:4e:d1:eb:f6:ff:ad:93:49:e8:
4e:dc:80:91:a4:9f:cd:e8:c8:be:ea:0f:21:2a:41:
c6:3b:ec:20:aa:5b:6c:84:7d:93:c8:44:6f:e2:7a:
31:ce:a1:f9:b0:88:e6:fc:e5:78:4e:71:38:82:53:
d6:8f:c8:d1:24:81:25:01:50:c8:81:81:33:e4:8e:
e1:23:8e:60:d4:bf:c3:44:b1:3b:b4:b2:73:4f:c6:
ad:c3:ad:dd:54:ef:da:df:b9:3d:4c:22:4b:8f:d3:
59:eb:dd:15:f3:84:07:b9:2c:2f:17:ff:e8:24:d4:
5f:db:d9:1d:55:90:91:a5:b3:c3:c9:13:dc:6d:7d:
5e:63:e0:79:7c:eb:34:22:6a:63:03:1b:20:57:99:
c4:e0:53:23:c7:ac:45:de:8e:7e:6a:f4:67:69:d6:
08:1c:7e:4b:3d:37:ca:18:24:db:95:d5:fb:7c:25:
b6:e2:c6:01:74:b2:b2:e5:cc:d1:0d:85:5a:f2:52:
fd:7a:e3:fb:20:af:05:9a:7d:98:36:9f:93:39:59:
ff:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:1A:4C:09:B3:7F:3F:65:02:D0:4B:12:33:6D:EF:3F:62:0B:F4:E4
X509v3 Authority Key Identifier:
keyid:F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/KxpMCbN_P2UC0EsSM23vP2IL9OQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/8DBljxbS2I00FkWS_NTeExMfFpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.196.103.0/24
Signature Algorithm: sha256WithRSAEncryption
35:42:d8:70:31:b7:63:d7:16:99:77:01:12:69:5b:37:35:ab:
79:a0:81:c0:b3:cb:82:ba:8e:ca:fd:e1:99:59:52:f1:6c:f3:
30:37:69:a6:15:72:60:4f:29:36:31:3f:c0:6c:b5:2f:20:f0:
83:ae:e1:04:93:0c:6b:f5:96:fd:7c:82:0e:72:8b:c0:6b:ae:
74:aa:b4:f3:3b:6f:71:7a:bf:8c:eb:23:fd:e8:ed:ce:d2:07:
73:9a:61:7e:34:7e:93:07:72:7f:eb:b2:50:a2:da:b6:39:50:
50:7d:67:d2:de:ac:c9:ee:8a:bf:fe:d7:36:43:f2:c4:b6:23:
82:0b:95:d3:0a:12:d3:40:b0:94:f9:0b:04:3d:a1:a8:2a:66:
40:0e:c0:22:65:35:70:1b:42:fc:06:c2:83:42:18:b9:fa:7d:
51:76:31:d6:25:d6:2a:dd:5a:d5:58:26:91:dc:b3:ad:c0:3d:
f9:3b:04:1c:fd:f3:ac:68:9e:b7:2c:4d:90:90:f9:b5:bd:e4:
4b:08:75:1e:24:27:8a:fa:b4:0e:54:95:bb:0c:31:be:28:6d:
24:5e:33:11:ff:11:be:c3:f7:2d:f6:ef:16:52:ab:e2:72:2b:
a9:6f:3d:c1:cd:e8:90:dd:c1:f9:6d:d6:52:bf:07:b3:1f:c8:
71:b0:40:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:37 2024 by rpki-client on console-fra.rpki-client.org