Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/cIRRYQh67nXk0HQF_OQz6mw7Blk.roa
File: cIRRYQh67nXk0HQF_OQz6mw7Blk.roa (raw, json)
Hash identifier: HSYG7slDAzds/vwYJbG71fys1iMQzT5rMWWqCXCTtVY=
Subject key identifier: 70:84:51:61:08:7A:EE:75:E4:D0:74:05:FC:E4:33:EA:6C:3B:06:59
Certificate issuer: /CN=f030658f16d2d88d34164592fcd4de13131f1695
Certificate serial: 018B6C0DA6F7237B03EA881F788E61DDFC42
Authority key identifier: F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/cIRRYQh67nXk0HQF_OQz6mw7Blk.roa
Signing time: Thu 26 Oct 2023 12:55:15 +0000
ROA not before: Thu 26 Oct 2023 12:55:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206728
IP address blocks: 217.196.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Oct 2023 13:32:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6c:0d:a6:f7:23:7b:03:ea:88:1f:78:8e:61:dd:fc:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f030658f16d2d88d34164592fcd4de13131f1695
Validity
Not Before: Oct 26 12:55:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70845161087aee75e4d07405fce433ea6c3b0659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d4:20:2d:82:cc:2d:d1:dd:27:00:c9:8a:34:
42:30:48:34:2e:8b:8e:91:ee:38:b9:13:64:47:9e:
7b:e4:38:76:03:45:b1:bb:75:f8:a4:2d:23:c8:ff:
db:c9:5b:8d:c6:14:e2:8f:3b:57:c5:35:99:6e:bb:
a8:3c:a4:73:b4:85:38:67:03:42:fe:b4:17:33:f5:
4b:2b:73:cf:b9:b4:7b:58:60:51:88:8e:23:54:3c:
02:0b:01:f3:99:f8:b6:3f:4c:d5:62:34:03:08:84:
78:7d:d4:39:cd:f7:42:0d:f9:e6:d0:12:03:99:72:
08:8b:8f:92:38:55:28:44:c1:bc:b7:31:c1:8f:f9:
9b:14:dd:99:50:c8:82:04:b6:0c:f3:3c:19:22:0a:
65:df:ef:75:10:b2:80:a4:1e:78:e9:c5:67:ce:77:
54:cc:08:7d:76:50:ac:c4:38:77:e8:a0:15:8a:d6:
33:0b:8a:cb:3a:b0:c1:28:a7:d3:aa:2d:3d:31:b4:
6d:ee:ab:37:90:85:89:6f:21:35:48:b8:d6:c9:ba:
af:69:f8:22:49:3a:61:e7:be:bd:0a:c9:40:f4:43:
b4:5c:79:cc:f3:5a:3a:cb:45:1e:2b:24:49:52:18:
cd:78:64:de:0b:73:fc:0e:7d:46:34:7c:dd:2b:68:
c8:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:84:51:61:08:7A:EE:75:E4:D0:74:05:FC:E4:33:EA:6C:3B:06:59
X509v3 Authority Key Identifier:
keyid:F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/cIRRYQh67nXk0HQF_OQz6mw7Blk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/8DBljxbS2I00FkWS_NTeExMfFpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.196.102.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:5c:58:cf:64:f1:55:01:48:e9:d3:fa:68:1c:53:a5:22:c1:
73:39:27:21:b3:31:71:4b:7d:96:0a:76:34:65:a8:cc:05:27:
ae:c0:0a:39:81:5b:68:1d:6b:7b:83:46:5e:a9:28:6a:61:ea:
ef:f7:6e:e2:f0:64:6b:6e:fa:bf:ff:e7:8b:5f:88:38:6d:c6:
0f:9f:bc:9c:bd:8c:b9:b6:30:bc:2f:32:1c:c0:57:d3:d1:8d:
8e:1b:0c:62:e5:52:ab:29:b7:6b:c9:86:f0:95:fb:77:67:dd:
8b:3d:c7:39:68:f9:67:77:1d:78:14:5e:51:1b:04:e9:e1:1b:
22:68:39:ce:db:d7:0f:f6:bf:b3:46:58:29:c1:a9:0d:e2:bb:
5d:dd:e7:45:de:b2:5a:ab:66:c7:90:36:d1:75:80:71:01:48:
bd:1d:bc:49:6c:bb:99:ae:11:60:32:f0:a9:13:ee:d5:8c:15:
7a:bc:e8:90:ea:d0:cc:bb:15:ff:61:84:d9:96:2b:73:3f:a4:
55:f9:2b:0f:06:81:12:cb:b7:5c:6e:0f:db:76:ce:30:fe:65:
56:46:55:73:70:fc:2c:16:10:06:32:36:b5:d4:34:66:5a:ea:
8e:b9:49:81:3d:cd:62:cf:9a:85:9b:24:eb:fc:4f:2d:f7:1e:
54:09:b9:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:48 2024 by rpki-client on console-ams.rpki-client.org