Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/2548a4-7715-4134-8132-2bf0a3bcc4f1/1/jw2mSMkNJys78iSMtjLjiXdCdu4.roa
File: jw2mSMkNJys78iSMtjLjiXdCdu4.roa (raw, json)
Hash identifier: 42O+0yIhqj0aBgil66DQvVFv+ELk1Git0NCW6ngZ5yk=
Subject key identifier: 8F:0D:A6:48:C9:0D:27:2B:3B:F2:24:8C:B6:32:E3:89:77:42:76:EE
Certificate issuer: /CN=e7f9a8a239683263e755e12c97d2d7a432d0b377
Certificate serial: 01856D0AB80FD86FB648B1CE9071B26339DB
Authority key identifier: E7:F9:A8:A2:39:68:32:63:E7:55:E1:2C:97:D2:D7:A4:32:D0:B3:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_moojloMmPnVeEsl9LXpDLQs3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/2548a4-7715-4134-8132-2bf0a3bcc4f1/1/jw2mSMkNJys78iSMtjLjiXdCdu4.roa
Signing time: Sun 01 Jan 2023 11:14:57 +0000
ROA not before: Sun 01 Jan 2023 11:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 217.198.72.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:b8:0f:d8:6f:b6:48:b1:ce:90:71:b2:63:39:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f9a8a239683263e755e12c97d2d7a432d0b377
Validity
Not Before: Jan 1 11:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f0da648c90d272b3bf2248cb632e389774276ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:66:39:be:60:b8:bf:af:80:2c:94:fd:6e:2e:
73:05:49:0a:da:08:59:f9:ee:08:1c:9d:2b:e8:29:
5c:e7:ce:cd:53:a4:3b:6c:02:32:0e:6f:50:b3:5a:
e2:61:93:d0:3e:be:d8:78:3a:a8:fd:72:ff:1d:4a:
f3:88:d2:42:02:9a:ab:6d:aa:5b:6b:5e:76:12:ae:
87:6a:21:01:14:6b:fb:80:9b:5d:97:d3:65:f3:f3:
64:64:f1:e3:fe:0d:5a:5b:99:00:c2:24:aa:87:e4:
6b:3c:f0:7a:98:7c:dc:d2:93:1c:2c:48:31:8e:fe:
5f:e1:1b:f3:5f:27:9b:14:47:5f:b3:48:a4:e3:19:
ba:e8:f5:bb:e1:00:a4:8a:22:e7:1c:5c:00:00:c6:
f2:85:8b:25:27:a9:be:15:65:9c:54:e9:d8:d9:c7:
78:3b:04:3c:a0:84:d1:2b:df:50:10:c4:b2:2f:32:
0d:00:cc:5e:83:43:47:e6:86:f2:3b:df:c8:02:d3:
d0:fd:95:f2:07:98:36:db:fc:f9:61:67:98:14:95:
78:06:1e:4a:c6:94:a4:4c:8b:43:3c:8a:17:14:68:
e4:00:7f:f5:2b:17:7c:0d:e9:15:b8:83:fa:0d:e4:
88:44:b9:41:ab:4c:f4:de:94:d7:ae:f2:fe:af:60:
7b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:0D:A6:48:C9:0D:27:2B:3B:F2:24:8C:B6:32:E3:89:77:42:76:EE
X509v3 Authority Key Identifier:
keyid:E7:F9:A8:A2:39:68:32:63:E7:55:E1:2C:97:D2:D7:A4:32:D0:B3:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_moojloMmPnVeEsl9LXpDLQs3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/2548a4-7715-4134-8132-2bf0a3bcc4f1/1/jw2mSMkNJys78iSMtjLjiXdCdu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/2548a4-7715-4134-8132-2bf0a3bcc4f1/1/5_moojloMmPnVeEsl9LXpDLQs3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.72.0/21
Signature Algorithm: sha256WithRSAEncryption
07:8f:96:2f:32:e3:97:01:92:d9:ea:9d:7b:4b:cc:57:b0:f1:
fc:8c:71:42:f8:b9:3e:aa:b4:a9:77:6b:e7:2f:ed:38:10:17:
0b:8e:9f:03:fa:47:05:bd:c2:d5:73:81:dc:ce:8a:b3:35:0d:
66:f1:64:61:e3:19:9a:66:f0:a6:3b:6b:17:cb:60:37:87:c0:
c4:2f:df:f0:c6:23:45:ba:c4:46:56:9b:5f:29:b8:d2:76:25:
82:b7:93:c0:50:c0:c9:de:ab:a2:c4:03:34:fe:e2:22:b8:6d:
1a:9f:fe:39:18:b2:93:af:ff:e1:b1:7a:1c:a3:db:26:7e:8b:
c0:80:78:9e:7b:66:cd:ee:e2:e5:2e:ef:15:bc:a7:b3:a3:dc:
93:73:37:33:b7:e3:5c:63:86:c5:9b:8d:db:7b:67:2d:6f:27:
bc:5f:73:b5:7a:44:14:3e:39:a5:6c:0e:48:fe:db:2c:71:61:
fb:10:92:74:e8:c2:b7:a9:95:f8:05:8d:9e:fe:ff:a1:31:1a:
e5:bd:0c:d1:f7:95:11:11:51:2c:50:d7:2f:e2:8e:5c:c9:6f:
92:c1:ab:32:68:e9:aa:0d:4d:23:f0:72:7a:9e:6e:a7:a0:f6:
40:52:72:b8:e1:42:06:ab:1e:fe:0f:7a:4a:82:6f:a3:58:f6:
9b:f6:0d:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:51 2024 by rpki-client on console-ams.rpki-client.org