Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/GcXo-Wa4sYCRD9Z8tzMjAm92GTQ.roa
File: GcXo-Wa4sYCRD9Z8tzMjAm92GTQ.roa (raw, json)
Hash identifier: lPFf7WloLPRKVmiip14jyvI19d8v/Kds5FcUO0eFJGE=
Subject key identifier: 19:C5:E8:F9:66:B8:B1:80:91:0F:D6:7C:B7:33:23:02:6F:76:19:34
Certificate issuer: /CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Certificate serial: 018BB0651A83339CB1FED2538C9731EA9F2E
Authority key identifier: 17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/GcXo-Wa4sYCRD9Z8tzMjAm92GTQ.roa
Signing time: Wed 08 Nov 2023 19:24:57 +0000
ROA not before: Wed 08 Nov 2023 19:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216022
IP address blocks: 217.119.143.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b0:65:1a:83:33:9c:b1:fe:d2:53:8c:97:31:ea:9f:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Validity
Not Before: Nov 8 19:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19c5e8f966b8b180910fd67cb73323026f761934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:aa:57:f1:b1:58:77:b5:6c:fd:6e:9a:cd:91:
0b:e4:43:74:70:65:1e:24:a0:95:76:12:1c:95:db:
1c:d2:37:42:9f:ec:8b:44:4e:5a:7f:78:3e:10:7b:
27:ce:34:2d:a9:15:76:6b:46:90:2f:a9:8c:f3:f7:
bb:4e:e3:16:17:77:56:43:fd:aa:fd:95:8f:e2:75:
b1:26:c7:a9:05:6d:43:59:e4:52:37:5f:0f:67:7f:
5c:05:ac:2d:ef:38:ed:a8:ff:5f:2c:ca:36:db:36:
f1:99:9f:7a:e1:c9:dd:da:6e:75:b3:2d:d3:6e:d0:
50:c7:72:e9:f1:c5:1a:72:be:38:8d:3a:a0:91:36:
e5:9d:53:a3:db:7e:1e:25:31:c4:56:f1:ea:03:bb:
12:b2:56:5c:73:18:04:56:99:90:89:30:4e:b0:4e:
7a:7a:14:36:91:6d:59:e8:20:68:4e:cb:20:fd:3a:
51:d1:d4:d6:28:a5:9e:b3:2c:4d:a5:16:a9:b2:e9:
85:0e:ee:77:b8:0d:43:ac:21:ad:25:f7:30:e5:68:
00:fe:04:43:ec:3b:78:85:8d:3b:a0:c2:84:b3:39:
0a:37:3d:0d:6c:ea:b0:b1:4b:48:6f:d7:b5:a7:3e:
b1:6a:dd:3b:46:be:b0:80:79:89:97:1a:5c:ab:07:
e7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:C5:E8:F9:66:B8:B1:80:91:0F:D6:7C:B7:33:23:02:6F:76:19:34
X509v3 Authority Key Identifier:
keyid:17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/GcXo-Wa4sYCRD9Z8tzMjAm92GTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.119.143.0/24
Signature Algorithm: sha256WithRSAEncryption
80:25:1e:01:d2:6b:c1:36:3a:55:48:18:65:91:e9:e4:fb:e7:
44:05:ba:36:74:35:e7:47:ff:0c:6b:bf:39:4b:10:24:08:e0:
5e:6e:c1:02:b2:be:a8:3b:1b:06:e3:3d:bf:49:e4:be:c6:99:
ee:ff:71:b1:52:42:b9:fd:94:f9:39:fc:3d:1f:ce:37:c9:bb:
00:25:b5:b2:17:86:42:e4:91:2d:52:17:75:9d:94:12:94:75:
ff:79:09:78:87:6c:4e:d3:8c:49:4e:9d:12:1e:46:67:ac:ce:
cc:9b:d9:1e:85:4d:da:2c:5e:8b:30:26:ef:6a:9e:d0:d1:2d:
02:34:68:37:d4:56:ba:68:f7:fc:18:3e:f9:e1:a0:07:c2:3c:
d2:bb:cf:3c:07:76:67:bf:34:68:3c:eb:d1:e3:d2:74:cc:94:
69:d4:e8:1a:0e:36:42:75:66:17:a8:04:c9:9e:e0:e8:46:76:
d2:c2:92:83:1d:c0:c1:eb:22:5e:7d:3e:5c:fa:94:13:7b:a7:
26:0e:47:6c:d4:e1:0c:df:7d:75:2e:dc:88:c5:57:a4:6d:dd:
12:d9:42:12:05:e4:64:e1:44:c3:13:5f:3e:c8:12:4c:cc:27:
ed:65:fc:6c:17:e1:08:a5:0f:3a:e9:dc:e3:90:70:ff:e7:bc:
c2:35:a1:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:18 2024 by rpki-client on console-fra.rpki-client.org