Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/444d22-4b05-4b83-b8e7-779820a6c81c/1/P9wPyBJqcTK3Z0dg6L6KFF4gnL4.roa
File: P9wPyBJqcTK3Z0dg6L6KFF4gnL4.roa (raw, json)
Hash identifier: W2rWuh5l43ZMjDz59b8om+l7bUwHVr3LMTh9Q1BNW1c=
Subject key identifier: 3F:DC:0F:C8:12:6A:71:32:B7:67:47:60:E8:BE:8A:14:5E:20:9C:BE
Certificate issuer: /CN=79cf8b7942917e960f17297dc61747bcb0768e11
Certificate serial: 0186E0CD28CBE3097EE5A497E6C14B494737
Authority key identifier: 79:CF:8B:79:42:91:7E:96:0F:17:29:7D:C6:17:47:BC:B0:76:8E:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ec-LeUKRfpYPFyl9xhdHvLB2jhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/444d22-4b05-4b83-b8e7-779820a6c81c/1/P9wPyBJqcTK3Z0dg6L6KFF4gnL4.roa
Signing time: Tue 14 Mar 2023 15:46:27 +0000
ROA not before: Tue 14 Mar 2023 15:46:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211895
IP address blocks: 217.18.90.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Mar 2023 11:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e0:cd:28:cb:e3:09:7e:e5:a4:97:e6:c1:4b:49:47:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79cf8b7942917e960f17297dc61747bcb0768e11
Validity
Not Before: Mar 14 15:46:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3fdc0fc8126a7132b7674760e8be8a145e209cbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:7b:4e:d4:44:0c:24:3a:cc:82:40:bf:ca:2c:
d2:4a:91:21:b1:7b:d1:86:82:cf:42:ac:30:62:c8:
c0:2d:92:7b:87:38:37:0c:36:90:d3:9e:ea:ca:3f:
cc:c2:ec:09:e3:1b:4b:83:0e:41:50:6d:fa:ce:ed:
67:9a:0a:12:7a:01:54:05:89:0f:20:65:26:cf:87:
4f:2a:2c:dd:5e:23:66:bc:d7:7c:bd:d5:91:cd:78:
cc:38:2e:b6:71:fd:00:b2:c4:3a:59:9c:21:9c:96:
28:1f:87:7c:5d:f9:89:f6:ab:bc:ba:e6:b8:25:67:
99:5d:f4:9e:46:80:7a:ee:dd:7f:7a:b5:31:96:ca:
d3:73:6b:5b:7f:c6:a9:04:4f:e9:fe:52:69:3b:b6:
c4:e4:77:e3:07:c3:14:f3:34:dc:3a:3d:4c:9f:b4:
e8:65:95:b1:ee:ec:e6:80:ab:a6:d0:f2:49:55:31:
9b:4b:a4:c2:4a:ac:18:47:02:2e:eb:7a:c2:31:02:
c6:61:32:db:75:94:d5:b5:3e:ad:56:ab:cb:c7:9b:
ee:44:3f:36:c8:74:0e:41:42:e5:95:69:9d:3f:6a:
3b:15:0d:63:8d:de:5c:67:a4:7f:8a:4a:50:b5:31:
a5:c0:88:f3:a6:62:11:e5:59:fd:46:a6:38:3c:37:
1b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:DC:0F:C8:12:6A:71:32:B7:67:47:60:E8:BE:8A:14:5E:20:9C:BE
X509v3 Authority Key Identifier:
keyid:79:CF:8B:79:42:91:7E:96:0F:17:29:7D:C6:17:47:BC:B0:76:8E:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec-LeUKRfpYPFyl9xhdHvLB2jhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/444d22-4b05-4b83-b8e7-779820a6c81c/1/P9wPyBJqcTK3Z0dg6L6KFF4gnL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/444d22-4b05-4b83-b8e7-779820a6c81c/1/ec-LeUKRfpYPFyl9xhdHvLB2jhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.18.90.0/24
Signature Algorithm: sha256WithRSAEncryption
16:ce:7e:5b:a6:45:01:85:72:c5:a4:10:57:08:b9:e8:8e:5a:
81:01:66:d1:51:69:b9:bd:07:45:b6:0d:8a:56:b8:e9:2d:42:
9c:0f:5d:9f:7c:15:ce:3e:33:e1:a5:55:e4:0e:85:78:9b:ab:
ed:fc:15:c9:a9:c8:f2:bc:14:41:be:69:92:54:a0:cc:9b:e9:
46:99:63:2d:c7:50:27:87:ea:ea:25:1c:9e:fc:8e:22:55:6a:
cd:6a:2a:d1:59:e3:1f:82:b6:0d:25:70:a3:e4:a6:05:01:d2:
03:07:ce:1f:e4:6e:51:77:6e:13:9f:dd:bc:01:39:eb:5e:85:
7c:25:3f:35:c8:0e:fd:0e:ad:a4:59:eb:f0:15:7e:ca:bc:9c:
8c:4c:54:73:ea:86:d8:dc:b7:d9:d2:0d:69:53:d5:59:58:e4:
eb:1a:43:5b:cc:24:da:73:83:7e:76:70:c0:19:e2:0c:7a:6e:
24:c2:9f:dc:0d:bc:56:c9:3b:f8:34:9e:c5:d6:b7:51:a8:98:
fd:b3:2a:34:61:f5:cb:cb:3e:ab:34:23:c6:1d:3d:b5:6c:89:
84:f9:92:58:13:2a:ff:a7:cd:6f:75:12:26:24:1a:cb:49:c8:
c7:45:c8:b1:66:f0:25:b2:db:74:b9:b9:ff:5b:ef:4f:95:7c:
b9:2e:76:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:51 2024 by rpki-client on console-fra.rpki-client.org