Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/3JylQ1EB_gd_-0ZQVTGmW6iu48Y.roa
File: 3JylQ1EB_gd_-0ZQVTGmW6iu48Y.roa (raw, json)
Hash identifier: HE9xL9gTWQ+qWrauBXn9nDPZj4qXX6BQUDacyXW7mPQ=
Subject key identifier: DC:9C:A5:43:51:01:FE:07:7F:FB:46:50:55:31:A6:5B:A8:AE:E3:C6
Certificate issuer: /CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Certificate serial: 018B29A315D426F964D5B62C469E00F28034
Authority key identifier: FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/3JylQ1EB_gd_-0ZQVTGmW6iu48Y.roa
Signing time: Fri 13 Oct 2023 15:23:55 +0000
ROA not before: Fri 13 Oct 2023 15:23:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 217.28.130.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:29:a3:15:d4:26:f9:64:d5:b6:2c:46:9e:00:f2:80:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Validity
Not Before: Oct 13 15:23:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc9ca5435101fe077ffb46505531a65ba8aee3c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:53:00:8f:9d:93:ac:25:8c:06:4d:53:70:c8:
e2:55:39:a2:f8:c9:28:8e:ab:08:66:de:a4:33:dc:
72:52:aa:9a:ba:da:55:6a:c8:0f:93:25:3d:0f:1a:
fb:5d:71:bf:38:fd:15:57:79:e5:b1:77:fc:77:ab:
52:96:3c:92:d8:f3:8b:27:fc:a1:a7:0d:83:33:cc:
a5:13:e7:1b:1a:32:af:82:71:b8:8f:7e:f7:46:24:
eb:62:5e:be:40:50:ad:aa:41:3d:10:a3:f2:e5:61:
f4:8b:af:f6:ba:21:80:10:53:2f:f6:37:2e:95:56:
0c:d6:e8:86:a6:9a:fd:96:73:d5:e5:7d:2a:68:36:
92:4c:4d:cf:7c:15:46:6d:da:20:d4:d9:be:bd:34:
a0:c9:f5:f8:be:bd:9a:f8:47:b2:74:0e:b7:0b:13:
f7:b6:bc:4e:dc:23:2f:d3:a3:d6:fe:e3:85:d2:0a:
2c:8c:2c:e6:f2:e5:ee:ae:d3:ef:2f:dc:15:be:bc:
f0:08:ef:d2:00:4d:07:eb:91:42:78:f8:e0:4a:51:
04:a8:66:60:f6:2c:38:10:24:18:d2:5d:6c:52:78:
8a:af:44:1b:3c:2e:3c:c2:11:b8:eb:46:6d:50:19:
06:39:47:ef:51:ff:66:73:1a:c2:d1:97:f4:a6:55:
53:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:9C:A5:43:51:01:FE:07:7F:FB:46:50:55:31:A6:5B:A8:AE:E3:C6
X509v3 Authority Key Identifier:
keyid:FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/3JylQ1EB_gd_-0ZQVTGmW6iu48Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.130.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:c3:44:99:e3:77:9e:08:2d:5e:b1:21:a7:ad:fe:ba:10:54:
7a:c0:c2:c9:ed:76:98:18:2e:9c:3f:a5:31:8b:f1:4a:b9:e0:
55:3f:dc:0b:c6:cd:5b:c2:61:6a:8a:77:66:98:27:fa:c3:ec:
3d:b7:9b:04:75:9c:5f:49:61:5a:cf:b1:f2:77:4b:15:66:f6:
ec:e3:ec:30:31:9b:b1:79:4f:58:e1:5b:cd:e0:4e:18:07:b5:
26:55:7b:5d:99:e0:b9:75:8d:cb:47:4f:1c:24:08:ca:f6:a1:
bb:db:f9:a6:c0:65:ad:72:46:88:b5:46:4b:1d:12:98:76:1e:
1e:12:95:eb:4a:0f:1b:01:72:3d:96:b1:7a:15:e6:53:f4:43:
25:33:45:40:d9:b2:d1:48:9b:46:d9:40:5a:20:be:88:5c:a6:
63:7b:f1:c8:8d:8a:91:1d:93:5a:6d:e0:cd:77:e5:f0:7f:c1:
2a:bb:45:25:a9:8f:0a:69:1f:27:6b:1f:b4:36:8a:fc:8c:78:
b4:f1:76:69:66:8e:d1:c0:60:55:1a:38:71:49:f3:e7:98:7b:
47:58:06:ce:8e:85:13:9c:1c:3f:28:ec:55:42:df:14:52:4c:
95:20:36:c0:b4:7e:99:a6:37:7c:2f:a0:38:f8:65:fb:f7:d9:
6c:42:d1:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 18 22:30:29 2023 by rpki-client on console-ams.rpki-client.org