Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/ba3f2b-a225-44f6-8edd-cfcc20242b9f/1/4L0lOO2rpsh96cwIpXLXR_Cxq9A.roa
File: 4L0lOO2rpsh96cwIpXLXR_Cxq9A.roa (raw, json)
Hash identifier: HeCTdKf3mYxPlvMt5QiAmJQsw9RqvoCx5lFWXh6TXiI=
Subject key identifier: E0:BD:25:38:ED:AB:A6:C8:7D:E9:CC:08:A5:72:D7:47:F0:B1:AB:D0
Certificate issuer: /CN=d598f4b23d3a9937b4434a42fede002dfc4817f2
Certificate serial: 01856D2F474378214FD31E69CC82CE24AE19
Authority key identifier: D5:98:F4:B2:3D:3A:99:37:B4:43:4A:42:FE:DE:00:2D:FC:48:17:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Zj0sj06mTe0Q0pC_t4ALfxIF_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/ba3f2b-a225-44f6-8edd-cfcc20242b9f/1/4L0lOO2rpsh96cwIpXLXR_Cxq9A.roa
Signing time: Sun 01 Jan 2023 11:54:52 +0000
ROA not before: Sun 01 Jan 2023 11:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 217.119.132.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:47:43:78:21:4f:d3:1e:69:cc:82:ce:24:ae:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d598f4b23d3a9937b4434a42fede002dfc4817f2
Validity
Not Before: Jan 1 11:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e0bd2538edaba6c87de9cc08a572d747f0b1abd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2e:36:1e:91:f5:68:9c:06:a4:ba:cd:9e:ce:
1a:ac:1c:25:dd:9e:61:2c:63:8b:f4:e9:07:cf:c9:
52:be:b7:22:42:27:b9:d5:7a:dd:81:cc:0f:13:c4:
fa:df:96:09:c3:b1:6c:c0:f6:3c:13:df:1c:e2:8d:
92:44:0b:9b:45:5b:67:75:32:77:d1:7f:e4:7b:67:
e6:a8:a5:0d:b7:68:61:82:d5:c2:41:6a:68:34:d7:
ce:9a:64:d4:e5:01:38:dd:3a:b5:cb:ee:3d:c0:ea:
45:65:e2:65:3b:2b:50:88:03:ec:cc:4b:c3:77:0f:
3a:79:84:13:7d:7c:74:4b:e0:4f:1b:7f:ce:2c:57:
03:3c:5c:4e:8e:4b:30:ef:d9:42:f5:4b:c2:83:5e:
48:2c:bb:0d:4e:f5:e1:38:0e:f4:7b:fb:35:e5:73:
96:a6:a9:4d:5d:a3:e8:79:f4:0a:37:61:fa:03:3d:
74:ea:49:3a:45:2b:1e:25:cd:e3:51:c7:d3:c1:81:
91:1a:8e:4b:a7:b9:08:b6:18:dc:9a:c0:57:21:63:
c6:48:9e:04:7e:46:3a:c2:dc:cc:eb:c4:31:76:23:
47:68:af:7a:60:ac:62:7f:f3:b2:d1:56:a7:c7:31:
2d:f8:ec:18:8c:30:2b:4e:71:b6:3a:4d:37:64:89:
aa:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:BD:25:38:ED:AB:A6:C8:7D:E9:CC:08:A5:72:D7:47:F0:B1:AB:D0
X509v3 Authority Key Identifier:
keyid:D5:98:F4:B2:3D:3A:99:37:B4:43:4A:42:FE:DE:00:2D:FC:48:17:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Zj0sj06mTe0Q0pC_t4ALfxIF_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/ba3f2b-a225-44f6-8edd-cfcc20242b9f/1/4L0lOO2rpsh96cwIpXLXR_Cxq9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/ba3f2b-a225-44f6-8edd-cfcc20242b9f/1/1Zj0sj06mTe0Q0pC_t4ALfxIF_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.119.132.0/24
Signature Algorithm: sha256WithRSAEncryption
54:81:35:49:9b:56:62:83:b9:ff:95:40:2a:24:e4:74:3c:cd:
5e:49:62:49:e6:0e:19:8c:60:9b:d1:9a:52:4f:a7:ec:6d:0a:
5b:91:04:05:91:1b:58:9a:a6:84:00:0d:d2:d0:51:01:f3:c1:
b4:d4:f7:01:0c:df:75:83:2e:af:a6:fb:91:ef:dc:5a:ec:10:
61:b4:43:d8:7d:b8:7a:ab:e2:1a:5b:42:af:78:ee:04:34:8e:
56:e3:7a:27:10:18:e8:4c:20:5d:34:78:9f:a0:b2:9b:ee:f0:
0b:a0:ac:9a:a5:3e:d2:2f:4f:3e:5a:43:f1:58:e4:e5:68:58:
36:bf:14:a8:8a:44:30:72:98:08:6e:be:57:85:2e:d3:fd:4f:
d2:b5:65:a8:9b:66:c4:25:0e:3b:73:95:9f:94:fe:02:82:5c:
0f:62:93:0d:0b:4a:00:b3:52:e9:50:63:89:91:68:1a:0a:59:
16:df:e5:48:12:60:03:4d:e9:e4:b8:d3:15:b6:53:36:15:c6:
46:76:1c:41:82:9b:2e:b7:d2:19:4c:93:86:26:bd:0b:eb:9a:
19:b5:fe:04:3e:97:a6:f3:57:fc:11:ee:19:c6:8b:a9:92:dd:
f2:4a:56:a2:f7:5c:a6:7e:2a:88:55:bd:29:7b:f2:9e:2f:1f:
e2:0e:90:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:14 2023 by rpki-client on console-ams.rpki-client.org