Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/g8ho2RUEz95Gp3L7HHlbUnO6qhI.roa
File: g8ho2RUEz95Gp3L7HHlbUnO6qhI.roa (raw, json)
Hash identifier: ZbzDrzbEBoz/1Zsa9LwIfmoBdXBY2GxiylkNVvJ1Ln4=
Subject key identifier: 83:C8:68:D9:15:04:CF:DE:46:A7:72:FB:1C:79:5B:52:73:BA:AA:12
Certificate issuer: /CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Certificate serial: 01856D41753F8E9D8D16B14460A7D57660EA
Authority key identifier: FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/g8ho2RUEz95Gp3L7HHlbUnO6qhI.roa
Signing time: Sun 01 Jan 2023 12:14:44 +0000
ROA not before: Sun 01 Jan 2023 12:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 217.28.130.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:75:3f:8e:9d:8d:16:b1:44:60:a7:d5:76:60:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Validity
Not Before: Jan 1 12:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83c868d91504cfde46a772fb1c795b5273baaa12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0d:fc:be:07:0a:c5:49:f3:d8:37:af:00:ae:
34:b9:a3:82:82:a8:8a:21:94:97:c5:7a:db:3d:ed:
96:e6:07:bd:89:81:3b:9a:41:53:74:01:1d:b8:2b:
08:51:6a:fd:8c:19:9c:30:96:29:b0:8e:24:84:e7:
15:be:62:f9:6d:e5:cf:1c:a7:41:23:af:be:c0:99:
a6:fc:44:1b:46:69:43:1a:f2:10:af:7f:87:1e:4b:
9d:a8:33:6a:d2:2c:ea:d5:9b:07:b5:2d:5b:50:7a:
f8:f2:35:6f:3a:07:6d:b3:c0:69:b7:b2:3d:b3:f4:
c2:a5:ee:ae:b2:97:7b:e6:22:08:65:19:b0:ff:9f:
8d:0d:b4:cf:1e:b4:b2:21:6c:f3:09:c0:0c:83:13:
70:a9:80:8f:9f:a7:d1:68:e7:ba:e1:96:5b:4d:17:
b7:2d:67:3c:10:71:82:29:c7:5e:43:08:ae:aa:f4:
99:8a:0e:4f:de:db:41:4d:e5:d1:63:14:c9:fa:f0:
70:09:62:fb:9e:f5:a6:f2:ac:a5:cb:f8:78:6e:0d:
eb:4f:39:5c:fc:e1:b7:05:f7:f0:d4:4d:a3:0b:8b:
33:a1:40:93:e2:dc:b3:9f:3d:43:30:e8:80:27:a8:
1d:3a:e1:9c:90:7b:66:1e:35:ef:88:e3:a8:89:00:
65:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:C8:68:D9:15:04:CF:DE:46:A7:72:FB:1C:79:5B:52:73:BA:AA:12
X509v3 Authority Key Identifier:
keyid:FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/g8ho2RUEz95Gp3L7HHlbUnO6qhI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.130.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:8d:7e:bd:5f:37:04:23:91:da:ea:2d:b7:47:c6:26:93:90:
b1:66:00:c5:e6:1a:3f:fb:a8:c8:5d:ce:d8:c5:fb:c6:a7:1f:
f2:b6:a7:ae:cc:39:d7:3d:e3:bd:a0:3c:fa:33:e5:78:da:11:
b5:ce:8b:a8:2a:5f:58:d2:46:3e:7b:d2:02:ca:59:9e:7f:cb:
5d:93:8c:21:39:19:d7:99:da:70:ea:99:c6:68:90:81:a6:47:
3f:e9:26:01:cf:21:65:98:c0:9c:80:e2:63:86:bc:6d:bb:8c:
f8:3d:31:36:7c:00:be:c0:73:a7:3d:77:a0:03:b5:67:69:69:
51:11:91:86:22:92:57:a0:5d:4f:34:9a:b4:05:26:8a:bd:16:
66:68:94:55:0b:89:c6:8f:65:6c:fe:90:f3:44:c9:00:0d:7a:
85:72:11:37:2d:2d:ef:03:d3:a9:e5:21:09:67:e0:32:f5:fb:
d9:df:5f:46:7a:26:3a:e7:b0:86:d5:5d:61:c5:5e:bc:17:be:
c9:a3:05:a4:da:67:fd:ca:58:e4:1b:cc:f6:f4:52:91:f2:9c:
36:4c:06:55:86:5b:9c:e5:0c:35:93:32:04:8b:db:8f:91:16:
f2:c9:36:15:1c:7d:4f:e8:41:23:6a:9c:34:bb:f5:3c:88:36:
40:20:c2:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:22 2023 by rpki-client on console-fra.rpki-client.org