Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/a43c6e-349c-4914-8da3-6c32a6ab1ef2/1/3bJqX7IHhMj06Amnv2thf5k_ay4.roa
File: 3bJqX7IHhMj06Amnv2thf5k_ay4.roa (raw, json)
Hash identifier: TXeIM7qjJGVzilSSQb/s2EUzsnXlMCk1BeQhaTbF1BQ=
Subject key identifier: DD:B2:6A:5F:B2:07:84:C8:F4:E8:09:A7:BF:6B:61:7F:99:3F:6B:2E
Certificate issuer: /CN=c1eb076d16702c7dbea972e2972ef576a1f2c873
Certificate serial: 0187E19FDDB422A90DC89E03164C61FF7345
Authority key identifier: C1:EB:07:6D:16:70:2C:7D:BE:A9:72:E2:97:2E:F5:76:A1:F2:C8:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wesHbRZwLH2-qXLily71dqHyyHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/a43c6e-349c-4914-8da3-6c32a6ab1ef2/1/3bJqX7IHhMj06Amnv2thf5k_ay4.roa
Signing time: Wed 03 May 2023 12:39:23 +0000
ROA not before: Wed 03 May 2023 12:39:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20493
IP address blocks: 217.114.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Jun 2023 11:46:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e1:9f:dd:b4:22:a9:0d:c8:9e:03:16:4c:61:ff:73:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1eb076d16702c7dbea972e2972ef576a1f2c873
Validity
Not Before: May 3 12:39:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ddb26a5fb20784c8f4e809a7bf6b617f993f6b2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:01:3a:7d:1d:bd:e5:74:f3:89:45:95:76:00:
cb:74:72:79:b8:d6:dd:0a:1b:87:d7:3d:5c:ff:83:
e2:d8:8d:5c:80:75:8e:a4:23:cc:f9:cf:2c:3b:81:
ee:14:e1:b3:79:4c:dd:2a:58:45:77:83:84:4f:8b:
40:0d:f0:71:e2:5d:cf:40:c1:52:49:42:02:e6:9f:
4d:4d:af:fa:f7:10:bf:d1:95:cf:4f:a0:b5:bf:2d:
9c:5d:80:00:ab:8f:54:1b:f7:fb:88:22:c5:72:36:
e3:76:61:35:8a:41:04:88:5b:0d:21:3c:0c:da:fa:
cb:94:4b:4d:95:75:9c:27:42:64:27:65:ed:88:10:
61:ef:1d:87:cd:44:57:cd:e2:3c:7c:46:f9:c1:90:
5e:78:92:58:51:be:33:50:17:d0:0c:a3:36:17:88:
02:60:fc:cd:58:1d:37:ce:01:d1:b9:6e:0e:9d:1d:
19:6e:ab:dd:15:7e:37:16:fd:63:5b:82:80:93:04:
29:24:79:45:45:14:f1:91:7f:4b:27:c6:9d:f1:75:
21:0a:6f:3f:be:6d:69:c5:1b:e8:9b:c8:6f:81:40:
45:7e:c5:76:2b:1b:b9:98:88:54:ea:f2:ea:9b:48:
e2:45:00:56:5e:a5:c3:3d:0b:dd:d1:17:f4:72:71:
77:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:B2:6A:5F:B2:07:84:C8:F4:E8:09:A7:BF:6B:61:7F:99:3F:6B:2E
X509v3 Authority Key Identifier:
keyid:C1:EB:07:6D:16:70:2C:7D:BE:A9:72:E2:97:2E:F5:76:A1:F2:C8:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wesHbRZwLH2-qXLily71dqHyyHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/a43c6e-349c-4914-8da3-6c32a6ab1ef2/1/3bJqX7IHhMj06Amnv2thf5k_ay4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/a43c6e-349c-4914-8da3-6c32a6ab1ef2/1/wesHbRZwLH2-qXLily71dqHyyHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.114.207.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:f1:c9:2a:5a:a0:7e:8c:e9:c0:7f:04:48:5d:b0:bb:39:bd:
fa:25:6e:ea:ef:72:b5:2a:65:19:b5:58:f9:16:86:ba:c0:57:
74:24:09:d6:fa:bd:a8:b8:32:df:09:eb:e9:6d:c9:d7:c3:a5:
e6:7b:6e:3d:84:56:ce:5d:8a:ea:a2:ef:8e:2b:7f:27:db:d1:
92:81:eb:1e:b4:79:b5:be:88:b2:0c:f5:73:4e:a3:1d:63:cb:
ca:b7:bc:ee:a0:51:30:5b:c2:b1:c9:8c:ca:a2:2b:7c:e6:b3:
de:8a:6b:2a:53:c4:21:3a:9d:47:3e:33:db:62:ff:fb:f7:3b:
2a:9b:8a:23:dc:7f:dd:7d:4d:7e:d8:bb:48:60:f0:c8:a7:0d:
42:5b:af:e0:c5:88:58:9d:00:19:ce:8c:19:98:f4:bc:7b:18:
50:9b:e1:03:46:77:c9:b0:0e:cf:4c:08:fd:30:54:6d:38:76:
8e:5e:d3:17:00:63:85:e2:3d:46:fc:52:2e:c7:8d:53:09:9f:
ef:19:45:57:c0:e4:00:fd:b5:50:58:3f:88:a3:4a:95:e6:d8:
2a:c8:48:6e:0c:39:5f:55:df:64:e2:93:17:f9:b6:e9:27:a4:
93:a0:3b:08:2f:44:aa:00:ae:14:17:03:f1:eb:b3:40:1e:56:
cc:d8:5a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:22 2024 by rpki-client on console-ams.rpki-client.org