Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/_p10-_dqAv3XOcLU2QRkHpt_3ao.roa
File: _p10-_dqAv3XOcLU2QRkHpt_3ao.roa (raw, json)
Hash identifier: JRX24ewolP0ZUgd2b1YEklOzfqLumg9gQLRyLqtXvYc=
Subject key identifier: FE:9D:74:FB:F7:6A:02:FD:D7:39:C2:D4:D9:04:64:1E:9B:7F:DD:AA
Certificate issuer: /CN=f030658f16d2d88d34164592fcd4de13131f1695
Certificate serial: 018CC56E6133D59F831AA0D75397281E3F09
Authority key identifier: F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/_p10-_dqAv3XOcLU2QRkHpt_3ao.roa
Signing time: Mon 01 Jan 2024 14:29:54 +0000
ROA not before: Mon 01 Jan 2024 14:29:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52000
IP address blocks: 217.196.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:61:33:d5:9f:83:1a:a0:d7:53:97:28:1e:3f:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f030658f16d2d88d34164592fcd4de13131f1695
Validity
Not Before: Jan 1 14:29:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe9d74fbf76a02fdd739c2d4d904641e9b7fddaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:69:dd:ac:f3:03:d0:40:03:d2:49:78:5c:a3:
df:c7:42:89:d9:15:ed:71:52:6b:69:5f:22:50:cb:
4c:d1:bd:6e:7e:44:b6:a7:67:c6:a4:33:7e:96:15:
27:4f:ba:72:b6:fb:65:92:9e:37:16:a3:13:d1:29:
4b:ae:89:fe:3d:81:08:58:64:c9:1c:24:18:44:4b:
3d:a7:98:66:6c:78:e6:1c:4e:ae:ce:ac:c5:0c:18:
b9:a2:57:9d:bd:db:d1:a2:7e:dc:f8:97:d6:d6:8b:
b6:45:f1:03:fb:d7:18:7f:aa:88:62:e2:13:67:8f:
ab:4c:83:65:e6:67:04:09:8d:cd:16:ac:a9:59:bc:
49:37:ea:04:85:9e:d2:b3:d5:88:20:8b:01:9e:1c:
1e:5e:b7:25:69:22:75:49:3f:4f:93:bc:cb:6b:1c:
bf:d7:65:2f:7d:71:34:7c:f3:1e:e1:9a:f3:db:9a:
ee:68:1d:c4:a3:bd:20:b8:7d:a4:6f:e6:42:c5:ee:
41:83:63:b0:37:8e:c1:0b:d0:8f:ee:ad:e9:e9:af:
20:a8:b6:94:93:88:4c:1a:fc:04:2d:2c:50:4e:4a:
10:8d:f2:2a:37:f3:0d:19:8e:02:70:07:d4:e9:32:
cc:27:be:fe:88:92:c0:06:34:58:9c:b3:93:67:ed:
c8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:9D:74:FB:F7:6A:02:FD:D7:39:C2:D4:D9:04:64:1E:9B:7F:DD:AA
X509v3 Authority Key Identifier:
keyid:F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/_p10-_dqAv3XOcLU2QRkHpt_3ao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/8DBljxbS2I00FkWS_NTeExMfFpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.196.97.0/24
Signature Algorithm: sha256WithRSAEncryption
43:ff:44:c9:03:8a:a7:84:78:91:d8:d5:97:de:79:9b:bd:d1:
c7:a5:84:55:7b:c3:51:2a:46:cb:be:d5:19:1c:32:57:2c:36:
c5:2f:ae:a4:84:36:da:81:86:91:e8:49:cb:85:53:a6:cd:8e:
76:13:3e:21:f3:82:67:9d:cf:5a:26:bd:e3:3b:c1:15:ff:30:
27:09:9e:44:3c:69:2b:15:9c:0a:56:38:b2:fb:cd:06:44:67:
bf:bb:7f:82:42:70:8d:0f:bf:42:21:13:40:65:e4:35:1e:cc:
2b:00:a6:e0:23:41:18:91:e7:0c:27:22:5f:be:65:10:95:d2:
99:f5:e4:9d:fb:07:84:65:6a:a3:53:2b:73:12:7c:e9:c7:01:
63:d8:43:ea:5d:ee:85:f7:76:4a:e0:0c:93:6c:4e:8e:52:ee:
e5:39:44:50:f6:08:23:76:8c:e2:d6:1e:d2:88:12:bb:69:8b:
86:cb:d8:d8:ae:09:77:fe:5e:e3:21:73:01:62:23:53:ee:7a:
a8:be:b2:21:fa:b2:be:02:3d:2b:38:98:76:ce:49:75:01:86:
9e:34:75:7d:c0:cc:a2:83:c9:31:95:cd:0b:74:8a:ab:23:8f:
eb:50:2b:8f:6b:17:29:cf:b5:4c:64:7d:22:ab:83:a8:85:a2:
53:42:b1:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:48 2024 by rpki-client on console-ams.rpki-client.org