Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/V533QDeCQIxNk6YFnyNaaZFraeg.roa
File: V533QDeCQIxNk6YFnyNaaZFraeg.roa (raw, json)
Hash identifier: qSaEeN/Fk9V3tH16B4Sz5+79c1sOh8wXNi9E4C2Q+c0=
Subject key identifier: 57:9D:F7:40:37:82:40:8C:4D:93:A6:05:9F:23:5A:69:91:6B:69:E8
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018B4C187FC772F2C062922DF370855258D9
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/V533QDeCQIxNk6YFnyNaaZFraeg.roa
Signing time: Fri 20 Oct 2023 07:59:15 +0000
ROA not before: Fri 20 Oct 2023 07:59:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216150
IP address blocks: 164.215.96.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4c:18:7f:c7:72:f2:c0:62:92:2d:f3:70:85:52:58:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Oct 20 07:59:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=579df7403782408c4d93a6059f235a69916b69e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:77:02:64:ec:ff:24:8b:96:52:4a:a8:54:69:
cd:dd:50:f8:59:8c:55:db:af:de:da:7d:7a:9f:f7:
aa:d6:fa:1b:93:92:ec:4f:a4:2f:25:33:4e:fb:a4:
7a:30:46:e7:f5:72:5e:cf:13:74:88:4f:f1:c0:25:
2d:7f:8b:79:6a:85:98:bb:e0:5f:70:31:11:1f:dd:
08:12:65:a2:1a:62:7e:12:3a:64:01:10:b2:55:50:
91:e3:a9:ba:40:b8:c1:db:05:ca:49:98:a5:01:f3:
2a:1e:29:b2:72:55:f1:b2:84:12:10:42:e1:14:2e:
9b:01:69:a6:3e:69:6c:c4:07:e8:1b:e5:09:1c:cc:
ba:33:6a:b1:e2:a3:56:50:7e:91:7d:27:2d:25:51:
30:0d:1d:15:b4:f6:67:f6:8e:05:ee:a8:92:6e:cd:
3b:1c:2e:86:d4:f0:11:01:fe:96:7e:7b:32:bb:9a:
2c:b3:81:25:c6:3c:de:ac:00:59:b1:fc:f7:c2:7c:
1a:3c:07:82:1a:41:bc:72:9e:d0:74:0b:24:95:90:
f2:81:d2:55:be:35:d1:8b:e4:93:a9:d0:ab:ef:83:
b3:d0:4b:0c:64:71:a7:f0:f4:03:ac:c1:84:3b:e0:
4e:2a:cd:90:23:d1:09:48:db:4c:8d:be:8f:34:ac:
59:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:9D:F7:40:37:82:40:8C:4D:93:A6:05:9F:23:5A:69:91:6B:69:E8
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/V533QDeCQIxNk6YFnyNaaZFraeg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.215.96.0/24
Signature Algorithm: sha256WithRSAEncryption
80:99:cf:92:db:11:44:aa:fa:4f:5a:69:e1:a6:eb:df:6a:5e:
fa:c1:2b:44:73:8c:ae:54:65:55:b9:64:3a:a6:92:80:98:61:
bd:ad:14:ff:cd:a0:ff:47:7a:c0:51:8e:07:fd:14:6f:05:b1:
80:a7:65:65:0e:a9:3f:f8:0f:07:ca:24:c7:bc:8b:45:b7:72:
53:b3:fe:aa:3a:4f:93:f8:bf:7b:8d:a7:e0:5c:32:da:35:79:
0f:62:32:5a:48:9f:53:50:89:18:7f:34:91:d7:b4:06:3c:3f:
0d:f3:fd:4d:93:a5:61:62:47:e7:1d:d6:20:ca:dd:75:0e:ab:
98:f9:fc:3a:57:8d:1c:85:90:99:5b:20:c2:e1:e3:14:96:fb:
9c:73:c7:58:64:d2:77:07:2b:b7:8b:04:aa:f5:2a:7c:b4:1e:
5f:7a:89:c1:8a:bd:82:53:75:57:cd:1e:f2:e1:37:f8:6c:0a:
75:0e:a7:f8:62:16:9a:6e:df:16:e7:93:78:b4:a9:01:fe:6f:
c8:0f:cc:6a:49:b8:64:a0:08:c4:43:bb:12:7a:94:81:b9:2c:
57:d6:32:1f:43:9d:9e:34:4b:17:13:f4:fa:f9:0e:a5:ce:12:
3f:d3:e6:03:f1:14:3d:d5:f8:b5:cf:52:42:e8:3b:43:6e:ab:
91:cc:10:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:17:09 2024 by rpki-client on console-ams.rpki-client.org