Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/48db10-3ba8-4e80-b3dc-ab31eacbffca/1/edg9zqduUz1WkrRylRcUR7QLMWc.roa
File: edg9zqduUz1WkrRylRcUR7QLMWc.roa (raw, json)
Hash identifier: e7tXn/hFZnoUX/6X9Rz+itMhJ68ZdjAGVR/ZtI+pJLM=
Subject key identifier: 79:D8:3D:CE:A7:6E:53:3D:56:92:B4:72:95:17:14:47:B4:0B:31:67
Certificate issuer: /CN=8110149fd12130b3cdcf35862b0dcdb98a9471c9
Certificate serial: 018EA9EB9CCC4100DF94E59BF35BEA6CAC9C
Authority key identifier: 81:10:14:9F:D1:21:30:B3:CD:CF:35:86:2B:0D:CD:B9:8A:94:71:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gRAUn9EhMLPNzzWGKw3NuYqUcck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/48db10-3ba8-4e80-b3dc-ab31eacbffca/1/edg9zqduUz1WkrRylRcUR7QLMWc.roa
Signing time: Thu 04 Apr 2024 16:22:54 +0000
ROA not before: Thu 04 Apr 2024 16:22:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 217.73.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Apr 2024 12:09:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a9:eb:9c:cc:41:00:df:94:e5:9b:f3:5b:ea:6c:ac:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8110149fd12130b3cdcf35862b0dcdb98a9471c9
Validity
Not Before: Apr 4 16:22:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79d83dcea76e533d5692b47295171447b40b3167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:b0:7d:b9:25:b2:7a:48:9f:a8:84:4a:cc:0a:
2c:16:0d:13:c5:50:75:f6:13:3c:b0:82:0a:51:c6:
00:95:3d:b2:51:2d:de:2c:58:98:b7:46:a3:08:cd:
dd:98:d0:c0:2d:eb:ed:5e:41:c8:e2:dc:e4:17:fa:
f4:ff:d1:45:2c:59:de:19:72:ed:e1:1b:72:dd:f8:
35:fe:f1:38:b1:95:74:28:73:79:56:18:cd:40:c6:
b1:af:bd:38:7a:08:01:53:c6:97:50:9e:7e:d2:5c:
44:1b:5a:d1:5b:7e:c1:e9:c9:9d:88:23:c5:79:7a:
b7:54:07:5d:0f:9d:2c:e3:5a:39:18:d2:0c:e7:ca:
79:50:a4:3f:74:70:4c:46:a6:7b:18:52:f9:db:63:
98:d9:82:9d:4b:6d:c3:9f:22:04:80:54:30:6e:dc:
07:9e:69:cb:b4:f9:dd:28:50:a4:2e:66:4d:5b:5c:
cd:2a:14:5d:d9:6b:78:e5:fa:21:e7:73:82:d5:d7:
11:12:df:70:77:42:0e:0e:28:68:83:2b:38:fc:bc:
a6:b0:cf:cc:89:8e:85:e3:f2:1e:86:ca:45:0c:95:
f0:3a:31:de:d8:93:be:d3:f8:e8:c3:1a:49:54:60:
1b:e2:1f:c7:f5:c4:de:9a:1e:34:f8:b6:19:d4:34:
de:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D8:3D:CE:A7:6E:53:3D:56:92:B4:72:95:17:14:47:B4:0B:31:67
X509v3 Authority Key Identifier:
keyid:81:10:14:9F:D1:21:30:B3:CD:CF:35:86:2B:0D:CD:B9:8A:94:71:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gRAUn9EhMLPNzzWGKw3NuYqUcck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/48db10-3ba8-4e80-b3dc-ab31eacbffca/1/edg9zqduUz1WkrRylRcUR7QLMWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/48db10-3ba8-4e80-b3dc-ab31eacbffca/1/gRAUn9EhMLPNzzWGKw3NuYqUcck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.73.79.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:a6:d2:57:b5:91:e3:bf:7c:51:d1:e9:df:3d:66:ee:5c:ea:
02:55:72:84:b9:62:ed:04:b0:c3:4f:9b:c3:26:ee:d6:2e:28:
4d:ca:3b:ed:58:2b:44:dc:a8:38:3a:0d:d1:4c:95:ef:31:00:
fe:6d:2b:1d:7f:e1:db:81:65:04:0c:09:4b:d8:63:cf:e7:73:
01:75:d9:b2:9c:b9:8c:74:3e:e3:90:0d:d6:b0:b1:4f:e5:43:
57:52:c7:4b:76:26:9d:15:48:e8:1e:37:66:8a:a6:50:b1:d8:
19:31:26:c7:44:92:5e:2d:c5:29:62:34:14:ef:eb:a3:e8:35:
6f:a7:90:4d:74:dd:d8:ce:74:0c:ab:be:e9:7b:c4:bd:70:ff:
dd:ea:48:2c:36:8f:25:07:ea:86:c6:e7:d6:d4:af:15:3b:ab:
30:17:01:c0:84:50:be:2c:96:87:32:21:97:49:95:1c:57:ee:
56:47:29:ec:0f:af:19:67:dd:e0:f2:dc:aa:9f:a5:36:b1:aa:
e4:f3:b4:ad:f9:cb:fd:f9:5e:82:fe:1a:a7:c0:f0:26:78:14:
4b:69:e1:7b:8f:6c:0d:09:db:ab:5e:2e:67:c0:37:47:08:0b:
1d:39:75:a2:c8:07:4c:21:53:8e:43:af:73:9b:18:c3:2b:d5:
88:d1:fc:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:16 2024 by rpki-client on console-ams.rpki-client.org