Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/1-iuXV6o6noxxzHmhx1pR47PG0BA.roa
File: 1-iuXV6o6noxxzHmhx1pR47PG0BA.roa (raw, json)
Hash identifier: vU589rdiFN+3jXLG+b4qI8B2yLuVmoXeKkbB3jdkw5I=
Subject key identifier: FA:2B:97:57:AA:3A:9E:8C:71:CC:79:A1:C7:5A:51:E3:B3:C6:D0:10
Certificate issuer: /CN=1129ad014072de6617438fb1afbe41a2dbdc811c
Certificate serial: 01856F42CB6D1537EBC11E00CA7704C099A3
Authority key identifier: 11:29:AD:01:40:72:DE:66:17:43:8F:B1:AF:BE:41:A2:DB:DC:81:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/1-iuXV6o6noxxzHmhx1pR47PG0BA.roa
Signing time: Sun 01 Jan 2023 21:35:26 +0000
ROA not before: Sun 01 Jan 2023 21:35:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208346
IP address blocks: 217.198.186.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:cb:6d:15:37:eb:c1:1e:00:ca:77:04:c0:99:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1129ad014072de6617438fb1afbe41a2dbdc811c
Validity
Not Before: Jan 1 21:35:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa2b9757aa3a9e8c71cc79a1c75a51e3b3c6d010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:24:33:8c:db:ea:f5:ca:30:a1:57:81:33:52:
9d:a9:f6:69:25:48:9b:29:b1:87:1d:c9:31:63:83:
29:6d:72:4a:f2:30:2e:3a:e4:96:bf:eb:51:23:eb:
aa:8a:fd:86:20:a3:2f:4f:be:5c:90:39:e3:38:52:
c4:ab:d1:25:06:5c:34:c3:fd:29:8f:eb:a6:fb:49:
32:6d:07:c5:da:7b:48:df:bf:13:9e:29:10:70:25:
4d:19:2b:fa:4a:f8:18:d0:b8:7b:d7:2f:1a:04:e4:
8d:ba:35:03:42:9e:e8:29:17:46:c4:d5:ea:4c:ab:
89:f1:80:bd:e0:46:a3:9f:42:b1:a2:88:06:c2:fc:
e6:59:2a:83:f1:5b:59:36:4b:43:4d:69:b9:08:26:
1b:95:f7:4a:ba:8e:9f:c7:bf:22:b3:cf:be:86:cb:
7e:36:bf:cc:15:f4:41:8c:58:fe:ac:49:0e:0c:b6:
74:d6:48:3f:30:27:7c:c9:f4:1f:d1:f3:e7:d1:ae:
cd:21:e8:42:9a:96:79:22:93:63:56:0f:c9:fe:4c:
b9:45:d9:d8:42:24:fa:23:3d:e4:e4:35:5e:a9:db:
19:6e:6e:77:8d:05:4d:69:f2:e6:93:d4:ec:f8:e6:
e1:2c:a4:06:bc:9c:ff:98:c0:a6:68:6c:7f:7b:f3:
14:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:2B:97:57:AA:3A:9E:8C:71:CC:79:A1:C7:5A:51:E3:B3:C6:D0:10
X509v3 Authority Key Identifier:
keyid:11:29:AD:01:40:72:DE:66:17:43:8F:B1:AF:BE:41:A2:DB:DC:81:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/1-iuXV6o6noxxzHmhx1pR47PG0BA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.186.0/24
Signature Algorithm: sha256WithRSAEncryption
67:69:07:b5:68:60:f4:bf:41:6e:a2:c9:ba:71:b1:55:fb:a4:
05:bb:93:19:1d:81:fe:86:2f:fc:54:47:64:21:b0:89:3b:87:
81:bf:8f:c1:3d:b7:7d:56:e9:85:1d:1a:74:fa:0f:56:e2:d7:
a3:19:34:79:f7:c8:ee:63:d1:82:dc:52:f1:ae:30:d3:45:f0:
c7:96:27:bb:7b:d3:d7:d8:8e:c4:f8:9a:b1:95:6a:fb:e2:3c:
7f:6c:af:b5:5e:1a:e2:26:e9:44:95:24:a6:a4:cd:e1:a3:1c:
21:f4:cb:6a:ea:e3:a7:08:23:ea:af:a4:eb:73:ef:8a:85:6b:
f7:21:f1:fa:80:7d:eb:d7:23:30:07:f1:f9:83:26:f6:8a:35:
0e:8b:10:50:a0:e3:6b:3f:1b:32:be:c0:de:a5:bb:75:06:df:
e6:1b:8d:be:3d:70:53:32:b6:89:7f:ab:4a:ae:6a:bf:d6:cf:
1f:6e:c7:6b:aa:e6:b6:99:e6:66:79:65:32:49:f7:3a:eb:0d:
7d:12:81:fd:8c:92:e2:40:cc:70:e0:35:1a:c6:4b:56:41:10:
ac:23:eb:9c:a1:fe:54:75:e7:2b:6c:9d:99:1f:a3:c9:81:c8:
e3:70:f8:e3:80:73:f3:e6:a4:6d:60:3c:cd:09:f0:c7:b2:55:
2f:ca:41:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:53 2024 by rpki-client on console-fra.rpki-client.org