Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/CkHsEn_Ztg2B20ojinouY5Eo3Nk.roa
File: CkHsEn_Ztg2B20ojinouY5Eo3Nk.roa (raw, json)
Hash identifier: U2p0nrpBJcfh+N0kn/ALnRRW2Yb1l3dBvobOBSEpKmc=
Subject key identifier: 0A:41:EC:12:7F:D9:B6:0D:81:DB:4A:23:8A:7A:2E:63:91:28:DC:D9
Certificate issuer: /CN=fc4d06978969a8bdab6d6359062d7781e03449ca
Certificate serial: 018C5E26449F0380862AF7079999FCFDCF81
Authority key identifier: FC:4D:06:97:89:69:A8:BD:AB:6D:63:59:06:2D:77:81:E0:34:49:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_E0Gl4lpqL2rbWNZBi13geA0Sco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/CkHsEn_Ztg2B20ojinouY5Eo3Nk.roa
Signing time: Tue 12 Dec 2023 13:10:15 +0000
ROA not before: Tue 12 Dec 2023 13:10:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 217.77.24.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5e:26:44:9f:03:80:86:2a:f7:07:99:99:fc:fd:cf:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc4d06978969a8bdab6d6359062d7781e03449ca
Validity
Not Before: Dec 12 13:10:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a41ec127fd9b60d81db4a238a7a2e639128dcd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:82:dd:f6:7e:2c:a1:90:9e:52:49:11:1b:52:
ae:9e:a3:96:45:7c:1a:56:b3:db:92:3c:6d:66:e9:
0a:a5:c3:39:a7:92:29:3f:42:9a:a9:f5:2c:5e:34:
1e:e2:8f:d3:06:32:62:d1:a7:7d:c1:a3:39:e6:f9:
9d:3e:2b:c7:22:fa:b0:24:f8:79:57:a9:6d:5d:a5:
7d:28:1a:71:17:41:c7:34:1b:fe:45:ca:0e:fe:e9:
e8:f8:e5:2e:a8:50:e2:13:88:73:54:54:c3:3a:82:
73:f0:18:78:36:78:da:a5:6b:4f:24:36:72:78:86:
a6:2f:a1:38:14:91:9e:08:26:3e:5f:ee:99:0d:57:
97:c5:72:b1:8e:35:b0:cf:d3:7f:71:f9:ea:51:36:
5c:57:fc:eb:92:1a:f2:ff:06:6c:5c:22:4e:c1:a9:
30:9b:53:63:3e:ed:3b:f0:0f:05:16:42:26:ae:9d:
d8:a8:39:9b:ed:ce:ec:15:b2:9b:8e:e2:d0:d7:94:
f6:52:de:a7:c7:e7:2b:a0:77:9a:4c:e5:c4:7f:1b:
2b:2d:5b:34:d7:90:70:78:64:5a:c0:13:23:11:97:
df:7e:43:d6:1a:9e:2a:8f:d1:62:25:57:b3:71:e8:
62:71:ff:ac:11:e7:40:5e:10:fe:d5:7b:41:36:50:
a2:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:41:EC:12:7F:D9:B6:0D:81:DB:4A:23:8A:7A:2E:63:91:28:DC:D9
X509v3 Authority Key Identifier:
keyid:FC:4D:06:97:89:69:A8:BD:AB:6D:63:59:06:2D:77:81:E0:34:49:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_E0Gl4lpqL2rbWNZBi13geA0Sco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/CkHsEn_Ztg2B20ojinouY5Eo3Nk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/_E0Gl4lpqL2rbWNZBi13geA0Sco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.77.24.0/21
Signature Algorithm: sha256WithRSAEncryption
36:6c:d6:a6:a9:16:a3:12:c0:84:c1:7b:0f:cc:5b:19:b0:1b:
8f:4b:d4:9f:67:49:d8:90:4e:6b:24:48:78:5c:b5:a3:5d:5a:
3e:cd:fa:05:2b:0b:9f:95:11:37:87:9f:65:17:d1:c4:41:e6:
a4:06:b2:ba:10:ba:f3:3e:e8:2f:47:e7:a4:a6:86:22:5b:7e:
dd:7d:8d:9b:fa:fc:e5:96:a3:e5:c8:3e:54:b8:f9:f2:2c:01:
68:03:da:6a:c8:e9:a7:92:a3:ab:f5:88:1f:5a:6b:4a:10:65:
16:95:16:5a:7c:85:71:48:24:1c:37:a1:82:0f:ee:79:ee:3f:
04:44:4b:4a:45:4e:19:5a:3c:d6:fb:b4:d3:ec:ac:59:66:4f:
5c:8a:e3:04:15:20:3a:6a:8b:ba:66:bb:97:45:81:df:f6:a5:
83:cc:36:b8:3a:85:74:7e:53:13:25:36:91:97:e7:58:9f:ae:
61:80:9c:91:3e:89:45:8a:68:89:a2:0c:94:7d:78:b6:a3:6b:
ba:e6:fa:c2:ba:9e:84:bf:07:db:22:f6:72:2c:04:42:82:ea:
3b:cd:fe:1d:39:75:f1:97:c0:02:60:95:0d:bb:25:b6:02:93:
a9:16:f2:84:2f:85:9d:34:26:e5:56:7d:1c:87:41:fa:b1:c0:
20:5e:bb:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:38 2024 by rpki-client on console-fra.rpki-client.org