Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/EEt1oL6I5jixKztN7jaKQgAdb6I.roa
File: EEt1oL6I5jixKztN7jaKQgAdb6I.roa (raw, json)
Hash identifier: lBAqDr4W98HkmVs/AySaQRKmGNorFVzbL8hM6oXo07Y=
Subject key identifier: 10:4B:75:A0:BE:88:E6:38:B1:2B:3B:4D:EE:36:8A:42:00:1D:6F:A2
Certificate issuer: /CN=68a839cc8159fc5d3d75dedf62aadb81c40eabed
Certificate serial: 018C2688FF2FDF4235946BF6EC2E8F2E835B
Authority key identifier: 68:A8:39:CC:81:59:FC:5D:3D:75:DE:DF:62:AA:DB:81:C4:0E:AB:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKg5zIFZ_F09dd7fYqrbgcQOq-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/EEt1oL6I5jixKztN7jaKQgAdb6I.roa
Signing time: Fri 01 Dec 2023 17:59:21 +0000
ROA not before: Fri 01 Dec 2023 17:59:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 217.28.129.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:26:88:ff:2f:df:42:35:94:6b:f6:ec:2e:8f:2e:83:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a839cc8159fc5d3d75dedf62aadb81c40eabed
Validity
Not Before: Dec 1 17:59:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=104b75a0be88e638b12b3b4dee368a42001d6fa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:29:06:31:c6:0f:45:ca:ee:c0:93:2a:33:e3:
43:08:74:d7:05:eb:c0:b5:b6:ae:89:9e:f2:63:38:
b2:e1:15:6f:d0:dc:0e:47:ee:9f:21:c2:62:2d:d8:
ec:8d:ce:cc:5f:7e:d7:bb:21:0e:18:92:cd:be:6b:
55:d1:04:8f:26:43:d5:1e:9a:5e:21:11:76:c3:67:
5d:a2:3b:c8:21:69:55:89:ea:90:5c:5f:dd:ea:7b:
7a:0b:a8:bf:1a:f9:4c:72:91:62:07:4a:cb:ed:77:
1e:72:82:1d:4e:99:6e:c6:3f:55:11:05:19:8a:4f:
5b:08:4e:15:5a:78:a4:d3:c4:f3:2d:b0:97:9a:a9:
02:8f:d6:4b:8d:2b:87:b6:5d:5c:d0:14:3f:f4:cd:
f9:8f:12:d5:aa:bd:b3:65:7e:de:9a:18:32:22:48:
51:38:51:1b:31:09:bb:90:4b:c1:95:15:50:ac:09:
9b:2e:54:28:9c:5b:90:14:b7:86:93:2d:a5:aa:4a:
fd:cc:3e:e1:f4:aa:50:9f:13:83:bc:2d:10:94:79:
48:10:6e:ae:6c:8d:29:6d:2e:c6:46:53:45:47:bd:
87:54:df:6b:e9:53:49:3f:5f:e3:d9:34:8d:2a:7a:
b0:07:2e:e7:b0:14:81:b0:18:76:d0:0d:f7:5a:c1:
12:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:4B:75:A0:BE:88:E6:38:B1:2B:3B:4D:EE:36:8A:42:00:1D:6F:A2
X509v3 Authority Key Identifier:
keyid:68:A8:39:CC:81:59:FC:5D:3D:75:DE:DF:62:AA:DB:81:C4:0E:AB:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKg5zIFZ_F09dd7fYqrbgcQOq-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/EEt1oL6I5jixKztN7jaKQgAdb6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/aKg5zIFZ_F09dd7fYqrbgcQOq-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.129.0/24
Signature Algorithm: sha256WithRSAEncryption
93:c9:3c:39:4f:db:96:b8:05:2c:ca:fd:ab:7c:4a:f3:74:62:
1b:7c:4d:e5:7e:76:6f:e0:e7:d4:5c:75:6f:f8:8e:94:85:f3:
86:a1:fe:69:1e:8b:20:6e:17:fd:43:ec:04:94:26:05:83:ca:
ca:d1:01:84:3a:f2:35:71:a4:bb:80:b2:c6:7b:45:3e:f3:1a:
c0:da:4f:17:23:df:b8:20:8b:f5:df:09:b6:df:43:6c:7c:d2:
cd:85:98:04:bc:9d:0c:6a:2c:3c:2e:4b:93:f7:b0:20:c3:e1:
4c:87:e4:5c:c8:e9:d8:2a:ec:e0:b6:01:81:e0:29:16:ad:a6:
e4:93:2f:91:44:73:cf:15:1b:b6:26:93:78:c8:a5:fc:70:3d:
31:e3:9e:9e:4a:23:fc:82:e2:6c:25:3a:41:9a:bb:be:e9:db:
6c:c9:ef:19:34:ef:4c:50:47:d8:b8:c1:ff:af:61:33:ab:d2:
f8:61:c8:db:7b:97:b5:59:3c:1d:af:bb:60:bb:27:75:94:81:
7f:0f:1a:e4:68:aa:86:ab:05:96:bd:2e:93:3b:34:df:bc:ed:
0a:8c:b3:21:b3:6c:5c:cc:a9:30:22:cb:e3:b2:38:96:fc:c1:
ef:f6:4e:bf:8a:66:ec:ed:09:71:86:b2:8d:69:93:04:10:46:
76:79:a2:e6
-----BEGIN CERTIFICATE-----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Generated at Sun Dec 3 14:31:03 2023 by rpki-client on console-fra.rpki-client.org