Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/btVuIWwyWwV1BN2L2YCOl1cnrKE.roa
File: btVuIWwyWwV1BN2L2YCOl1cnrKE.roa (raw, json)
Hash identifier: twCl0bcM7lFD6n9BxBQKdNE7LK3l4aZHKdoX4EfbWi0=
Subject key identifier: 6E:D5:6E:21:6C:32:5B:05:75:04:DD:8B:D9:80:8E:97:57:27:AC:A1
Certificate issuer: /CN=f030658f16d2d88d34164592fcd4de13131f1695
Certificate serial: 018C59237996C542F5A10A435E476C7F26C8
Authority key identifier: F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/btVuIWwyWwV1BN2L2YCOl1cnrKE.roa
Signing time: Mon 11 Dec 2023 13:49:06 +0000
ROA not before: Mon 11 Dec 2023 13:49:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216024
IP address blocks: 217.196.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:59:23:79:96:c5:42:f5:a1:0a:43:5e:47:6c:7f:26:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f030658f16d2d88d34164592fcd4de13131f1695
Validity
Not Before: Dec 11 13:49:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ed56e216c325b057504dd8bd9808e975727aca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e1:41:5c:9b:3f:82:42:93:f0:84:9b:fe:dc:
93:18:90:5c:f7:57:66:10:3e:72:26:9b:6a:61:d8:
fa:4b:e0:ef:cb:ff:7c:ba:d2:8b:3f:45:ab:3f:7b:
ad:94:8b:08:b5:59:5f:ad:2e:8c:3f:96:99:ca:7e:
b5:23:bb:df:7c:b8:ac:b1:9f:11:8a:42:5f:db:35:
00:a7:40:ae:c7:77:b2:4f:83:f0:89:89:e9:3c:a6:
f7:87:7e:26:07:08:34:5a:46:2e:49:b6:c3:07:93:
50:43:38:bc:eb:64:f6:c5:b8:58:89:ce:6a:c0:d0:
66:2e:c3:46:14:71:67:4d:e4:3a:8e:99:ad:71:50:
98:c3:46:a5:31:32:cd:f1:74:07:f2:8d:85:e0:27:
c7:ef:d2:f9:8a:77:ab:94:71:ab:41:c7:45:9d:b5:
ed:72:25:27:aa:7e:5f:cb:72:96:a0:10:bf:b3:74:
77:45:72:cc:9e:09:70:52:dd:b8:27:22:ae:66:70:
5f:74:6b:af:47:7b:08:89:f4:15:78:75:7d:af:62:
7a:72:05:73:b1:e4:78:35:0f:1e:75:96:4a:11:e1:
3a:8e:a1:72:7b:f9:b9:19:90:53:40:48:d0:df:ff:
d1:d2:23:ae:e1:4b:0c:f4:6f:d9:06:3a:0a:76:35:
35:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:D5:6E:21:6C:32:5B:05:75:04:DD:8B:D9:80:8E:97:57:27:AC:A1
X509v3 Authority Key Identifier:
keyid:F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/btVuIWwyWwV1BN2L2YCOl1cnrKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/8DBljxbS2I00FkWS_NTeExMfFpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.196.104.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:7f:58:68:ea:3a:d0:a5:22:5d:e5:86:15:24:82:2e:46:ce:
f9:c5:ce:84:38:1f:6a:ff:e6:72:43:c4:be:06:d8:90:1a:86:
31:cd:cd:17:5b:46:0f:16:ab:bf:13:08:dc:6b:84:c5:63:7c:
6a:de:fc:10:21:d2:d8:12:86:73:fd:f0:ee:29:90:42:8b:d2:
6f:40:fc:27:d9:e8:23:df:1d:bf:14:af:8e:07:e1:4a:7b:8f:
74:f7:59:f3:51:01:01:90:a6:5b:ec:60:f7:ef:91:04:d2:a8:
55:33:e6:0b:73:96:f5:db:44:d8:5f:0c:42:77:cd:79:51:b8:
8c:82:e5:6b:2f:e4:bd:cf:2f:19:ba:df:63:2f:6f:de:c9:9b:
dd:e9:c7:27:6d:87:36:2b:b4:7e:48:05:46:f6:80:9f:93:40:
66:e4:7f:20:88:0c:be:7f:98:3c:77:63:0b:cf:04:a0:bb:6d:
a7:b6:5f:f9:04:55:23:20:b3:da:7e:e1:26:98:9a:43:5a:35:
3b:22:a7:71:24:d5:73:2a:da:9a:f9:4a:21:64:f8:11:2a:3b:
45:3e:9c:66:86:29:9b:e7:ea:73:43:0d:be:12:7f:b3:8c:eb:
e1:23:89:bd:66:b4:cd:b1:3f:3e:a2:bb:ed:19:26:00:41:5f:
aa:19:4e:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:48 2024 by rpki-client on console-ams.rpki-client.org