Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/f2tLUH0Ss3tZYLgnxTXRL4Wu6n0.roa
File: f2tLUH0Ss3tZYLgnxTXRL4Wu6n0.roa (raw, json)
Hash identifier: Ay8s/ZmAt+JHHB4WzlLsmnkko1BiuENU2+Y+XGyH6tE=
Subject key identifier: 7F:6B:4B:50:7D:12:B3:7B:59:60:B8:27:C5:35:D1:2F:85:AE:EA:7D
Certificate issuer: /CN=68a839cc8159fc5d3d75dedf62aadb81c40eabed
Certificate serial: 018CC8017087C445AC2BCB28997205B3872D
Authority key identifier: 68:A8:39:CC:81:59:FC:5D:3D:75:DE:DF:62:AA:DB:81:C4:0E:AB:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKg5zIFZ_F09dd7fYqrbgcQOq-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/f2tLUH0Ss3tZYLgnxTXRL4Wu6n0.roa
Signing time: Tue 02 Jan 2024 02:29:46 +0000
ROA not before: Tue 02 Jan 2024 02:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208287
IP address blocks: 217.28.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Feb 2024 15:56:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:70:87:c4:45:ac:2b:cb:28:99:72:05:b3:87:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a839cc8159fc5d3d75dedf62aadb81c40eabed
Validity
Not Before: Jan 2 02:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7f6b4b507d12b37b5960b827c535d12f85aeea7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:57:6f:ef:d6:01:54:98:7d:ec:1b:de:c6:83:
ee:84:37:bd:2b:1a:3e:74:73:c1:3b:85:60:34:6f:
52:40:77:91:b1:37:b5:c0:5b:97:b6:41:83:2a:67:
9a:48:c5:4e:b2:07:c9:24:f8:e6:64:5a:ee:42:04:
b2:38:78:8b:b4:24:74:8c:9f:d8:b7:7d:ea:3c:d8:
c6:4a:e5:3f:9f:3c:fa:24:f1:e6:ce:1d:f7:b2:4a:
f5:45:6b:b1:df:2a:ea:93:44:1d:4b:1d:f7:7e:6f:
7d:b1:0f:fe:e4:d0:81:6f:44:a9:c3:2e:f0:5f:01:
36:d1:50:3d:80:9e:49:b3:04:d2:c7:9d:31:0f:f2:
e5:61:84:5b:3a:55:74:de:c1:08:1f:40:95:13:3d:
d7:43:f2:ce:4e:26:ad:a3:7e:15:da:43:30:5a:a6:
9a:e1:2f:a0:85:33:e7:2c:bb:34:92:81:0c:83:2e:
ce:ad:9f:bc:2d:75:d1:52:54:33:54:9c:92:af:b7:
aa:7f:32:1a:93:1b:f4:82:5e:09:a8:2d:75:c5:2e:
b5:0e:cd:ad:96:96:ff:39:ad:1d:8f:6a:5d:c7:65:
97:7d:c6:5b:ae:18:c6:b8:ab:4c:63:12:6f:ee:ce:
3b:9b:f7:ff:b3:f3:a3:62:08:71:89:df:82:9a:a8:
98:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:6B:4B:50:7D:12:B3:7B:59:60:B8:27:C5:35:D1:2F:85:AE:EA:7D
X509v3 Authority Key Identifier:
keyid:68:A8:39:CC:81:59:FC:5D:3D:75:DE:DF:62:AA:DB:81:C4:0E:AB:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKg5zIFZ_F09dd7fYqrbgcQOq-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/f2tLUH0Ss3tZYLgnxTXRL4Wu6n0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/aKg5zIFZ_F09dd7fYqrbgcQOq-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.129.0/24
Signature Algorithm: sha256WithRSAEncryption
20:1a:4e:31:f5:17:a0:71:03:91:25:72:1f:1f:97:b0:1f:77:
32:04:8f:12:ab:42:40:71:68:99:c5:08:21:1f:b4:c1:8d:58:
de:9e:ef:ec:24:94:ba:7a:3e:ad:e3:38:ae:e4:be:0a:4f:91:
05:93:38:83:3f:16:6f:70:9f:60:3d:19:b5:05:2c:d8:c7:1f:
ad:71:2c:c4:7b:f4:0d:1b:82:1a:b4:18:e5:74:f0:44:39:23:
c9:5d:c9:f6:be:c6:9b:1c:e5:15:e2:ff:52:b5:09:5e:35:8c:
3b:10:72:59:c1:36:92:3a:f1:d7:02:7c:ed:ca:ee:ab:0a:85:
8a:2b:01:6b:7d:b3:b0:f2:2d:6f:ac:11:25:3a:16:34:f3:1e:
8d:6f:a2:83:31:6a:c3:90:3a:98:6f:6e:b0:34:2a:e2:e9:b0:
05:36:89:ad:9d:c0:d2:37:73:1f:8c:f9:3e:91:7d:b7:c8:21:
d7:61:b7:52:45:15:b7:4a:13:80:c6:85:0a:5b:3c:c6:7f:bc:
9e:c9:88:45:83:46:f0:6a:1c:5d:b7:b5:fb:99:6d:c5:b6:20:
08:9c:40:e7:3d:28:52:64:39:37:77:02:9b:e7:a6:77:aa:0b:
24:b8:87:33:75:07:5d:40:b7:6c:c4:c5:bb:bf:69:43:70:09:
40:27:4b:fb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIAXCHxEWsK8somXIFs4ctMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YTgzOWNjODE1OWZjNWQzZDc1ZGVkZjYyYWFkYjgxYzQw
ZWFiZWQwHhcNMjQwMTAyMDIyOTQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZjZiNGI1MDdkMTJiMzdiNTk2MGI4MjdjNTM1ZDEyZjg1YWVlYTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgVdv79YBVJh97BvexoPuhDe9Kxo+
dHPBO4VgNG9SQHeRsTe1wFuXtkGDKmeaSMVOsgfJJPjmZFruQgSyOHiLtCR0jJ/Y
t33qPNjGSuU/nzz6JPHmzh33skr1RWux3yrqk0QdSx33fm99sQ/+5NCBb0Spwy7w
XwE20VA9gJ5JswTSx50xD/LlYYRbOlV03sEIH0CVEz3XQ/LOTiato34V2kMwWqaa
4S+ghTPnLLs0koEMgy7OrZ+8LXXRUlQzVJySr7eqfzIakxv0gl4JqC11xS61Ds2t
lpb/Oa0dj2pdx2WXfcZbrhjGuKtMYxJv7s47m/f/s/OjYghxid+CmqiYgQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH9rS1B9ErN7WWC4J8U10S+Frup9MB8GA1UdIwQY
MBaAFGioOcyBWfxdPXXe32Kq24HEDqvtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUtnNXpJRlpfRjA5ZGQ3ZllxcmJnY1FPcS0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy83ZjYzMWQtZDBhMS00ZTIzLTk2Zjgt
MWIyYjJmYWYxY2FjLzEvZjJ0TFVIMFNzM3RaWUxnbnhUWFJMNFd1Nm4wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy83ZjYzMWQtZDBhMS00ZTIzLTk2ZjgtMWIyYjJmYWYxY2Fj
LzEvYUtnNXpJRlpfRjA5ZGQ3ZllxcmJnY1FPcS0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2RyBMA0G
CSqGSIb3DQEBCwUAA4IBAQAgGk4x9RegcQORJXIfH5ewH3cyBI8Sq0JAcWiZxQgh
H7TBjVjenu/sJJS6ej6t4ziu5L4KT5EFkziDPxZvcJ9gPRm1BSzYxx+tcSzEe/QN
G4IatBjldPBEOSPJXcn2vsabHOUV4v9StQleNYw7EHJZwTaSOvHXAnztyu6rCoWK
KwFrfbOw8i1vrBElOhY08x6Nb6KDMWrDkDqYb26wNCri6bAFNomtncDSN3MfjPk+
kX23yCHXYbdSRRW3ShOAxoUKWzzGf7yeyYhFg0bwahxdt7X7mW3FtiAInEDnPShS
ZDk3dwKb56Z3qgskuIczdQddQLdsxMW7v2lDcAlAJ0v7
-----END CERTIFICATE-----
Generated at Tue Feb 13 20:34:26 2024 by rpki-client on console-fra.rpki-client.org