Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/5_-InZoQHav0GWnUHn4syd0jn_k.roa
File: 5_-InZoQHav0GWnUHn4syd0jn_k.roa (raw, json)
Hash identifier: p4xV9Z1+hXBnv6Ab8S+9NYIQYyIXnu7ae/MkeII3rd4=
Subject key identifier: E7:FF:88:9D:9A:10:1D:AB:F4:19:69:D4:1E:7E:2C:C9:DD:23:9F:F9
Certificate issuer: /CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce
Certificate serial: 018571FA42AFC850749F23F96178C9E94CB6
Authority key identifier: 9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/5_-InZoQHav0GWnUHn4syd0jn_k.roa
Signing time: Mon 02 Jan 2023 10:15:04 +0000
ROA not before: Mon 02 Jan 2023 10:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208752
IP address blocks: 217.199.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:42:af:c8:50:74:9f:23:f9:61:78:c9:e9:4c:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce
Validity
Not Before: Jan 2 10:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7ff889d9a101dabf41969d41e7e2cc9dd239ff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c5:cb:fb:c1:60:b5:53:5a:54:15:7f:c0:c6:
d9:56:d9:0a:f7:c2:da:ef:6e:9b:cc:10:33:b5:94:
e2:04:df:f5:ae:30:4f:73:cf:d5:10:b3:af:87:ee:
41:78:dd:93:5e:62:4a:4f:a6:da:61:65:95:37:08:
e5:5e:88:42:db:41:b6:92:fe:e4:b1:a2:1c:0c:9d:
f6:0c:d6:b9:40:7e:bb:31:eb:6e:52:03:3d:da:5e:
e4:c3:c9:86:ae:35:c6:75:99:4b:b3:f5:d2:4e:68:
4f:64:ff:d2:cd:dd:7a:14:de:3f:1b:72:50:ca:62:
8b:0c:b8:b3:dd:72:4e:88:64:c6:06:7b:f9:f9:fb:
c4:56:7d:4a:22:b2:0c:ee:73:fd:f5:8d:09:09:99:
5a:bb:aa:76:43:91:cc:1c:63:18:41:62:a6:72:51:
78:4a:2c:21:d4:ce:ee:d2:3a:65:01:c0:b9:b7:a4:
43:11:7b:65:ae:ff:4f:88:99:8b:7f:1a:59:ac:38:
34:70:03:0a:23:ef:d0:3e:12:ec:1a:68:80:90:76:
9b:63:59:99:41:03:38:4c:a3:50:54:ec:ec:86:e9:
51:2e:69:22:15:e1:e3:46:39:aa:2d:e7:ec:fc:cb:
99:ef:8f:53:de:89:2f:b3:7e:06:60:9b:69:2c:13:
4b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:FF:88:9D:9A:10:1D:AB:F4:19:69:D4:1E:7E:2C:C9:DD:23:9F:F9
X509v3 Authority Key Identifier:
keyid:9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/5_-InZoQHav0GWnUHn4syd0jn_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.199.217.0/24
Signature Algorithm: sha256WithRSAEncryption
14:cc:72:b4:1a:b6:f9:a7:8d:42:d7:55:88:2d:d0:0b:c1:62:
17:5c:03:c7:4c:cc:27:01:10:78:7b:c5:ee:db:59:fd:c9:63:
5d:75:b4:9d:1b:3f:cb:f0:f1:41:47:a2:7f:45:59:f2:c4:aa:
fc:18:df:82:55:85:29:44:c7:05:15:1f:68:cb:d3:c9:43:62:
6b:70:0b:d5:3d:2c:47:66:58:2b:50:68:7e:2c:b8:7b:9c:c7:
f5:84:d5:1a:91:ed:d2:c9:0b:dd:3e:33:0b:46:8f:a8:7e:5e:
ac:ee:62:e3:08:46:0a:b7:f3:7b:46:3e:0d:a0:72:6f:83:68:
73:09:72:01:83:91:cc:10:f7:11:3a:b7:92:07:94:07:61:ef:
0b:3e:bf:bc:88:9f:20:9b:f7:da:74:24:a4:b5:eb:57:e8:fc:
ee:a3:30:58:d4:69:93:fb:06:cd:c1:c4:83:cb:81:f5:56:42:
31:ab:79:7a:72:14:ad:7d:79:f2:83:0b:dd:5c:ba:31:13:db:
83:dd:7c:64:0f:2f:65:7d:77:39:f0:f3:b1:98:5f:bb:de:42:
c8:77:c4:04:a7:94:1b:86:f8:cc:f0:96:db:66:49:52:ed:0c:
b9:53:ec:d6:0b:95:d8:e4:82:48:f4:6f:bf:92:f3:e4:76:e7:
2e:83:66:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:10 2024 by rpki-client on console-fra.rpki-client.org