Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/25a747-8426-430a-9e30-45b3443a76f9/1/13c1D8ZLCVAcWw--HQRuUf448Zk.roa
File: 13c1D8ZLCVAcWw--HQRuUf448Zk.roa (raw, json)
Hash identifier: FGB+BhgHD70GYiy7iTzrCaNR6kz3EV+mJzVP8MhG4Is=
Subject key identifier: D7:77:35:0F:C6:4B:09:50:1C:5B:0F:BE:1D:04:6E:51:FE:38:F1:99
Certificate issuer: /CN=556c9a9c61980a90b5d0c51f86d7cbac9ff142da
Certificate serial: 01856FA707DAA0ADFEB9B37C204D3D6E635C
Authority key identifier: 55:6C:9A:9C:61:98:0A:90:B5:D0:C5:1F:86:D7:CB:AC:9F:F1:42:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VWyanGGYCpC10MUfhtfLrJ_xQto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/25a747-8426-430a-9e30-45b3443a76f9/1/13c1D8ZLCVAcWw--HQRuUf448Zk.roa
Signing time: Sun 01 Jan 2023 23:24:55 +0000
ROA not before: Sun 01 Jan 2023 23:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20553
IP address blocks: 217.168.192.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:07:da:a0:ad:fe:b9:b3:7c:20:4d:3d:6e:63:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=556c9a9c61980a90b5d0c51f86d7cbac9ff142da
Validity
Not Before: Jan 1 23:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d777350fc64b09501c5b0fbe1d046e51fe38f199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b6:c0:01:33:34:39:20:97:0f:46:9e:c7:cd:
c2:ff:2d:7f:77:ef:c0:60:49:6a:35:42:ae:80:b4:
2f:f5:79:5d:b2:7a:a0:e0:02:04:ea:6e:a2:a6:d2:
99:38:28:22:cf:50:b5:af:59:36:fc:a0:e1:1a:4c:
2b:5a:91:80:6d:06:4d:2b:bc:cf:d8:3f:30:8f:fb:
32:b2:99:e7:a3:d9:38:22:a6:c1:ec:92:b7:00:5b:
8a:ac:23:f9:8c:cc:06:cc:26:e7:9f:c3:fc:7c:47:
76:3b:f3:f0:6c:43:27:b2:64:85:61:69:24:25:16:
fa:24:fd:08:82:42:ec:b4:4e:32:74:99:1e:0a:5c:
3f:c5:7e:29:be:5e:e1:45:57:5d:b8:6f:fc:c3:64:
90:50:14:57:21:78:b3:5c:b2:3b:07:30:c4:c9:87:
d1:c9:fb:83:5e:b1:14:cf:c4:07:2c:1e:df:19:f1:
1c:d4:15:47:25:a8:20:26:30:87:fa:cb:3f:27:20:
75:aa:83:5c:e1:1a:1e:ff:9f:d0:91:ba:49:ce:cd:
86:23:61:35:f7:9f:0a:3e:b9:5c:8d:2c:70:30:de:
a0:cf:05:84:41:ab:d6:27:19:cd:20:6b:1c:78:71:
b1:4e:dc:45:8a:73:d9:21:19:db:5d:fe:7d:99:d7:
ac:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:77:35:0F:C6:4B:09:50:1C:5B:0F:BE:1D:04:6E:51:FE:38:F1:99
X509v3 Authority Key Identifier:
keyid:55:6C:9A:9C:61:98:0A:90:B5:D0:C5:1F:86:D7:CB:AC:9F:F1:42:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VWyanGGYCpC10MUfhtfLrJ_xQto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/25a747-8426-430a-9e30-45b3443a76f9/1/13c1D8ZLCVAcWw--HQRuUf448Zk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/25a747-8426-430a-9e30-45b3443a76f9/1/VWyanGGYCpC10MUfhtfLrJ_xQto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.168.192.0/20
Signature Algorithm: sha256WithRSAEncryption
2e:b5:35:28:96:04:d2:dc:4b:b5:70:75:63:a4:71:4f:30:95:
f4:71:bc:13:f8:d9:31:ef:8a:1b:f0:8e:8c:7d:ba:8c:8a:ce:
a2:b4:a8:87:08:85:7f:f4:79:08:d0:cb:ba:87:a0:9a:d0:36:
a9:90:a9:ff:1b:0a:e1:3c:5a:89:9a:bb:72:76:6c:ce:5e:ea:
89:aa:ca:12:f9:15:12:2a:8b:ec:02:d7:48:6c:51:58:a4:c3:
c2:22:bd:7e:af:e3:2a:0a:95:79:9d:53:40:be:2c:87:09:66:
16:6b:17:63:55:b2:51:69:0b:0b:79:d8:30:9f:ad:91:19:23:
6d:17:b7:27:66:80:d1:70:21:3b:58:a7:91:ab:98:09:80:b4:
49:e4:d8:d1:76:31:ee:6c:2e:63:98:d3:af:b0:db:f9:83:f8:
9c:8d:02:12:77:37:96:a2:5a:ce:47:0f:f9:ac:c2:c1:15:74:
a7:f6:92:1a:ab:ef:90:04:de:86:76:8f:cd:63:b2:b5:2e:e3:
df:9c:c8:0e:92:75:fe:c6:e7:e0:7d:a7:6e:ee:64:58:bc:36:
6d:0a:ba:c5:b2:0b:3a:85:b2:a2:37:2d:7b:f0:0c:8e:8d:2c:
42:8a:36:4b:35:d3:3b:84:b3:c4:7e:6d:52:1f:52:4c:ba:b6:
45:1f:7e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:58 2024 by rpki-client on console-ams.rpki-client.org