Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/aRtOKjETh-j9UQVtXZqlHbZUE7Y.roa
File: aRtOKjETh-j9UQVtXZqlHbZUE7Y.roa (raw, json)
Hash identifier: +GxzK43O+0djcKC3UR2Ks8G1D4BCWX+jXAUe5sstpa0=
Subject key identifier: 69:1B:4E:2A:31:13:87:E8:FD:51:05:6D:5D:9A:A5:1D:B6:54:13:B6
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0189C69CE3F1171FDA3978EA9216A7376139
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/aRtOKjETh-j9UQVtXZqlHbZUE7Y.roa
Signing time: Sat 05 Aug 2023 16:51:58 +0000
ROA not before: Sat 05 Aug 2023 16:51:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57428
IP address blocks: 164.215.101.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c6:9c:e3:f1:17:1f:da:39:78:ea:92:16:a7:37:61:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Aug 5 16:51:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=691b4e2a311387e8fd51056d5d9aa51db65413b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:8e:87:29:bf:87:45:31:b4:1d:b5:25:0e:e3:
fe:92:a4:5c:d1:13:90:6b:a8:c5:91:24:65:22:7c:
1b:00:aa:54:75:10:0c:63:0e:75:06:c4:0b:ae:27:
22:2a:2b:a9:9c:6d:2c:18:5b:33:99:90:1a:2f:f8:
69:59:32:e6:ce:6c:c7:a6:12:c0:85:a5:31:0a:45:
5f:3f:ad:80:d6:d6:75:e4:3a:15:d5:ca:5b:53:c8:
df:b5:3f:c6:cf:5e:30:11:3c:4e:80:b7:51:38:49:
4a:ef:c5:a2:67:1f:06:78:d4:b9:4d:cc:8e:22:72:
c3:12:27:87:3e:62:06:96:84:6f:76:a1:2e:7a:98:
d0:ff:f8:63:50:c2:2b:6c:93:81:59:f7:33:48:81:
1c:09:10:eb:35:92:d1:ff:86:be:05:93:d4:f0:5b:
1a:85:f8:b8:5b:42:d4:0a:c4:d0:71:f5:3d:74:d7:
d5:85:ea:16:f0:71:26:2a:c4:57:56:a7:61:4a:29:
78:9b:4a:e8:d8:38:7a:95:61:dc:66:33:2c:00:48:
43:69:51:05:fe:5e:7b:4f:5e:0a:81:29:ec:d9:b2:
9e:b1:7c:86:17:4c:74:61:eb:5a:7a:72:71:45:a4:
32:c2:bc:31:d6:10:5f:02:de:a3:88:95:5f:7b:71:
18:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:1B:4E:2A:31:13:87:E8:FD:51:05:6D:5D:9A:A5:1D:B6:54:13:B6
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/aRtOKjETh-j9UQVtXZqlHbZUE7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.215.101.0/24
Signature Algorithm: sha256WithRSAEncryption
10:c7:b5:17:37:d8:55:a7:19:78:e1:2b:99:c7:42:05:c9:57:
2a:51:ed:70:c4:c5:5e:e5:d9:eb:92:d8:a4:14:cd:20:8e:8a:
ee:2a:35:53:2d:bf:b7:33:75:b9:e4:d4:61:3d:cf:6c:f8:5d:
58:7d:4b:38:23:11:32:3f:5a:9b:15:a7:98:e2:60:87:3d:a3:
4e:01:58:6d:be:9c:b2:d5:68:65:fa:a0:c0:e5:2d:b0:a3:cb:
05:28:bf:5d:f5:f6:6e:de:ee:89:fa:0e:09:cb:50:e8:bc:a0:
2c:d0:a3:d1:6d:e1:5f:65:d7:7c:44:5b:18:ea:5a:ed:07:46:
f2:46:bb:17:34:56:8e:e9:17:47:9d:ab:b1:49:6e:84:b7:85:
c6:bd:bd:8d:c2:79:97:32:2e:a2:81:4e:a3:c6:c9:51:79:65:
8c:5a:d6:3c:51:9a:41:6c:8d:83:f9:63:b0:11:66:67:47:37:
9e:80:28:b2:f8:49:bc:86:31:6c:51:eb:3a:f8:df:82:d2:11:
87:23:92:bf:ff:f9:2b:ce:d4:00:f6:82:2b:fd:b4:ff:51:75:
43:64:71:29:37:95:10:80:81:80:13:93:61:ba:fb:c4:c9:63:
b6:93:d7:b3:7f:7e:9e:69:a5:f6:e7:fb:5d:15:73:09:86:f9:
cb:73:66:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:17:09 2024 by rpki-client on console-ams.rpki-client.org