Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/0fbf48-5db7-49fe-bf44-6a36705bba6f/1/PrL2VR-xdvlKQQdcN3lD4fW3CMc.roa
File: PrL2VR-xdvlKQQdcN3lD4fW3CMc.roa (raw, json)
Hash identifier: R3M/5biaU702/VryZkj1VzOl9lYvdfpd6Qt5KDrOWLo=
Subject key identifier: 3E:B2:F6:55:1F:B1:76:F9:4A:41:07:5C:37:79:43:E1:F5:B7:08:C7
Certificate issuer: /CN=0c05ca111c0093b56514215be467b515dda56c06
Certificate serial: 018F0A36677FF5BC11845E7B293D393629EC
Authority key identifier: 0C:05:CA:11:1C:00:93:B5:65:14:21:5B:E4:67:B5:15:DD:A5:6C:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DAXKERwAk7VlFCFb5Ge1Fd2lbAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/0fbf48-5db7-49fe-bf44-6a36705bba6f/1/PrL2VR-xdvlKQQdcN3lD4fW3CMc.roa
Signing time: Tue 23 Apr 2024 09:08:08 +0000
ROA not before: Tue 23 Apr 2024 09:08:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209824
IP address blocks: 217.113.54.0/23 maxlen: 23
2a13:e700::/56 maxlen: 56
Validation: Failed, certificate revoked on Thu 25 Apr 2024 11:55:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0a:36:67:7f:f5:bc:11:84:5e:7b:29:3d:39:36:29:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c05ca111c0093b56514215be467b515dda56c06
Validity
Not Before: Apr 23 09:08:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3eb2f6551fb176f94a41075c377943e1f5b708c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4c:e6:15:da:f0:be:67:06:60:73:e6:9e:99:
12:1e:10:42:21:f3:90:46:89:0c:fa:1b:30:01:6c:
d2:ba:79:b6:52:8d:50:80:45:a0:c7:98:7c:14:5a:
cc:fc:ac:48:2a:e7:51:e1:39:d9:63:fa:97:c8:44:
6b:d3:26:7c:aa:f8:03:f1:9a:01:4f:cd:e7:36:f6:
69:e8:d5:9b:01:12:a7:e1:3b:4c:06:dc:52:7e:1f:
63:b1:62:67:95:f5:54:e8:fe:91:1a:45:ee:ed:96:
e8:7a:90:e8:6e:55:08:7d:24:15:fd:a6:7f:f4:46:
96:ba:ec:76:3f:f9:1f:b9:1e:33:49:d7:68:83:3b:
04:cc:a7:0c:5e:6b:0e:ac:f9:2f:7c:31:e6:a7:d2:
37:ec:88:47:fc:3e:3e:de:48:c9:fe:c1:e6:20:1e:
13:3b:68:26:b6:c2:6b:2f:b0:78:cc:d8:68:70:57:
3d:e0:3f:10:6c:2b:4e:aa:8f:2f:b2:e8:8f:fc:6a:
5b:87:d9:e8:13:28:a5:35:99:14:7e:0b:39:84:f0:
9b:e7:6c:8f:b3:ca:7a:6e:06:99:dc:19:ff:74:fd:
c6:b0:0e:6e:b6:e1:b3:16:3b:f2:b5:7c:fb:89:0d:
c3:a1:9a:bd:35:12:07:20:57:6a:8c:9d:30:3e:cb:
41:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:B2:F6:55:1F:B1:76:F9:4A:41:07:5C:37:79:43:E1:F5:B7:08:C7
X509v3 Authority Key Identifier:
keyid:0C:05:CA:11:1C:00:93:B5:65:14:21:5B:E4:67:B5:15:DD:A5:6C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DAXKERwAk7VlFCFb5Ge1Fd2lbAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0fbf48-5db7-49fe-bf44-6a36705bba6f/1/PrL2VR-xdvlKQQdcN3lD4fW3CMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0fbf48-5db7-49fe-bf44-6a36705bba6f/1/DAXKERwAk7VlFCFb5Ge1Fd2lbAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.54.0/23
IPv6:
2a13:e700::/56
Signature Algorithm: sha256WithRSAEncryption
43:f9:c1:8a:f7:c2:4a:87:7c:ba:e7:2a:db:b1:dd:2f:45:1b:
f4:42:c5:a9:d2:cd:24:8d:60:eb:0b:a9:c3:2b:15:bf:90:d0:
9e:c3:03:79:4d:86:69:be:9a:64:cd:f0:e8:a4:99:16:7b:9d:
ca:6f:2f:31:d9:17:d5:b9:4b:a6:ed:39:8d:12:f4:a2:4f:a0:
16:93:b3:ec:f3:9a:f7:85:44:90:31:ef:f2:cd:32:6c:c2:ba:
87:4d:9b:ef:0d:6a:6d:10:8c:d4:8a:ba:66:8b:90:a7:42:5a:
b4:aa:cc:17:c6:a0:90:e2:4b:00:06:14:5a:f1:0b:97:36:88:
29:0d:ad:ad:8b:f6:31:a9:40:bb:69:af:ca:7c:5c:0f:9c:ef:
50:7b:2b:4d:39:7b:58:47:2e:aa:d9:ae:30:5e:f6:2f:7e:53:
27:2e:6a:0f:06:e3:e6:70:8b:b3:5c:b3:38:c3:df:e0:ad:b0:
1f:ea:69:75:8e:73:f5:9c:25:cd:40:47:aa:34:d4:b2:d3:ae:
de:31:4a:b9:29:27:4c:4d:95:d0:25:c4:ed:32:47:27:70:a6:
7b:17:fc:d2:62:e3:48:eb:7f:35:bd:04:f6:20:29:3e:20:6e:
7c:bf:45:ac:21:ad:fd:d7:30:42:a9:70:41:33:77:6c:e7:4e:
4e:df:64:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 15:37:22 2024 by rpki-client on console-ams.rpki-client.org