Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/7avA3SQ4D0X719bNJjkxrRJKeS0.roa
File: 7avA3SQ4D0X719bNJjkxrRJKeS0.roa (raw, json)
Hash identifier: AQFwNmq8ulS9L/MZIL220L5xpod27jP3CZuskqTclPo=
Subject key identifier: ED:AB:C0:DD:24:38:0F:45:FB:D7:D6:CD:26:39:31:AD:12:4A:79:2D
Certificate issuer: /CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Certificate serial: 018B44CAD9B4474EFA3A106E18F1E77C8426
Authority key identifier: FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/7avA3SQ4D0X719bNJjkxrRJKeS0.roa
Signing time: Wed 18 Oct 2023 21:57:06 +0000
ROA not before: Wed 18 Oct 2023 21:57:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200636
IP address blocks: 217.28.130.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:44:ca:d9:b4:47:4e:fa:3a:10:6e:18:f1:e7:7c:84:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Validity
Not Before: Oct 18 21:57:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=edabc0dd24380f45fbd7d6cd263931ad124a792d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:26:71:88:87:ef:ee:74:28:73:84:dd:ec:c0:
ff:89:bb:31:7f:63:9f:94:83:b1:13:4f:52:f0:26:
23:4c:cd:d7:50:7a:59:08:8a:bd:67:1d:6d:24:c9:
3a:11:98:a8:b4:ba:fd:28:e5:05:8b:1d:96:62:d6:
6b:89:40:4c:69:f2:81:bd:e0:8c:ed:35:c0:76:f2:
05:b6:a2:17:95:d8:b2:a7:e5:6e:ef:6a:8e:05:a6:
e4:16:f3:e4:1c:32:d2:1a:d5:3d:08:1f:b0:fc:9d:
88:0b:3a:85:a6:7b:63:af:67:8b:9f:09:a4:ce:2f:
85:44:cd:1c:67:6f:3c:aa:f2:f8:61:6b:fa:24:bc:
4d:ec:62:d6:0c:9c:d0:91:6d:f2:93:d3:20:98:2e:
9b:b7:78:b9:3b:69:a6:4a:d1:0d:14:39:29:04:bd:
53:bf:6a:22:8f:99:ed:5c:c8:13:c7:2c:8c:8e:29:
e1:05:4b:93:55:f4:9f:81:5d:f4:6a:53:c4:41:30:
25:b2:65:65:b5:d2:03:a8:1e:d0:10:60:fe:f2:01:
22:cb:28:e5:c9:64:d2:a9:74:f4:94:3f:7e:6b:f7:
ab:4c:cc:e6:8e:46:c4:34:4a:dd:56:d5:e1:d5:51:
01:53:e4:a1:6b:b8:c3:59:47:74:29:9b:e9:4f:13:
b8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:AB:C0:DD:24:38:0F:45:FB:D7:D6:CD:26:39:31:AD:12:4A:79:2D
X509v3 Authority Key Identifier:
keyid:FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/7avA3SQ4D0X719bNJjkxrRJKeS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.130.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:4e:ce:95:97:80:0e:e4:39:0c:07:ba:9f:20:1c:bb:3f:65:
0a:7a:d0:f1:c5:6e:55:50:7b:4c:54:38:08:87:fe:51:2e:28:
c0:6f:5b:75:c1:c9:dc:ba:4b:69:0d:08:ab:46:88:72:91:70:
15:cd:66:e9:17:56:6a:d4:61:8c:3d:9a:a2:2b:39:d2:8c:83:
e4:39:b9:ae:07:97:f1:aa:e3:52:b9:7f:96:fe:66:93:a2:2c:
db:26:06:81:a9:bc:cb:20:ac:d5:86:c4:06:ac:82:5e:8a:ef:
88:6a:63:f7:58:ca:26:5f:e8:31:89:eb:35:33:3c:22:a3:5e:
d1:b2:33:e5:db:d6:dd:95:93:ef:33:90:b2:e9:a7:19:64:36:
54:ff:31:cd:eb:c9:73:c1:73:84:04:89:9b:6d:18:f5:1e:f1:
19:04:6d:39:08:9e:8e:7e:5e:5f:0e:fb:c8:02:ad:6e:8b:bb:
f0:97:fb:c0:ac:2e:de:12:6f:49:c3:bb:02:83:17:8a:04:24:
06:6e:18:d4:5d:68:f3:a1:25:73:93:b2:86:e9:fd:a4:fa:6f:
01:6a:35:4f:61:5b:37:d6:78:dd:1f:dc:f9:8f:9d:9f:83:00:
29:8f:c1:30:30:b4:2e:1b:88:b8:53:e6:49:c9:e1:49:c8:74:
7c:06:75:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 27 18:44:59 2023 by rpki-client on console-ams.rpki-client.org