Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/09BJCEaXg9fJZkzKTp0PmZm2ddU.roa
File: 09BJCEaXg9fJZkzKTp0PmZm2ddU.roa (raw, json)
Hash identifier: 1oEBw8vvF3Q3sjqewLtV11x/lWOoUbAcywnEwaAEwXA=
Subject key identifier: D3:D0:49:08:46:97:83:D7:C9:66:4C:CA:4E:9D:0F:99:99:B6:75:D5
Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Certificate serial: 01929AA8592ECFA835C33FF39A053D5EDBFB
Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/09BJCEaXg9fJZkzKTp0PmZm2ddU.roa
Signing time: Thu 17 Oct 2024 13:26:16 +0000
ROA not before: Thu 17 Oct 2024 13:26:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 207.244.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 18 Oct 2024 09:28:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9a:a8:59:2e:cf:a8:35:c3:3f:f3:9a:05:3d:5e:db:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Validity
Not Before: Oct 17 13:26:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d3d04908469783d7c9664cca4e9d0f9999b675d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:59:cc:ad:e1:9e:18:5a:01:b6:45:9b:af:ae:
47:88:51:b5:93:ba:39:8a:cc:6a:59:af:05:5d:30:
51:67:8f:57:68:89:d9:13:e9:ab:3a:ec:7c:85:1d:
65:f2:d0:ab:60:89:e3:a3:59:bd:2c:e5:3b:34:a9:
51:32:1c:d8:1a:06:ee:d6:fb:48:80:6d:44:1b:23:
af:8d:11:19:e0:52:3c:aa:06:fd:6f:82:3f:a0:f2:
b9:24:af:7c:98:9e:a1:7f:35:b6:b4:4a:d3:e6:b0:
01:d1:0f:12:f7:d9:95:90:54:68:b1:75:98:f6:57:
bc:f8:33:4c:84:15:68:f4:f0:f7:38:cc:5a:41:c9:
76:b2:ed:e5:04:ed:dc:d3:75:f1:af:53:fc:d0:88:
f9:04:4d:f8:c9:73:1c:ed:74:67:91:85:a4:ab:d6:
5a:37:49:6d:ab:73:99:29:17:69:9f:f3:6c:e3:b3:
70:2f:9d:b4:c0:88:ff:b9:9c:9c:0c:5a:49:a8:a9:
79:3b:1c:65:75:7b:32:3a:c5:7e:fe:c3:93:e1:28:
aa:ea:8c:6d:bb:ca:2a:da:83:06:0d:69:b8:68:6f:
ab:68:f2:2c:ea:87:4d:fb:23:f6:8b:8a:d3:65:0a:
43:41:b3:5d:f2:ff:2f:9c:ef:ae:09:28:70:6f:2b:
85:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:D0:49:08:46:97:83:D7:C9:66:4C:CA:4E:9D:0F:99:99:B6:75:D5
X509v3 Authority Key Identifier:
keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/09BJCEaXg9fJZkzKTp0PmZm2ddU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
207.244.208.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:4b:b1:da:cf:65:11:d8:9b:8a:89:9d:de:8b:be:30:73:a2:
2c:87:8b:3b:1a:d6:eb:f2:ec:33:ff:e8:12:63:bd:f9:53:b7:
ad:15:be:34:7e:6d:5e:1a:64:6d:cc:60:30:ed:8f:35:8f:d5:
17:3b:05:e6:5d:36:eb:6e:49:cc:52:eb:b6:c7:3a:48:8b:87:
8a:df:8b:eb:31:ee:f0:e8:ec:c3:88:fa:cd:e3:5c:f5:53:0f:
70:6f:a5:7e:96:43:0d:7f:23:14:6d:1c:2b:d5:92:17:51:9c:
1c:e3:5b:07:fe:2a:17:ce:9b:7c:92:5a:5e:32:94:a2:3c:c0:
8b:ee:96:6f:c3:02:e7:41:8a:5a:84:ab:32:6b:80:94:59:4d:
22:6d:4b:04:f1:61:d9:63:06:81:42:c2:b9:b7:c0:2f:64:ba:
06:63:47:90:ca:eb:21:84:b6:d5:74:96:ca:03:ad:fd:dd:19:
29:44:9d:da:89:79:13:52:7c:84:5f:b9:39:d0:95:16:d7:7b:
8e:b3:f2:aa:23:b8:e8:76:61:2e:7f:a4:67:58:08:ed:ab:11:
a7:af:2d:ca:80:50:01:15:7b:cf:47:3a:bb:37:ac:8f:e6:f7:
f3:1e:b6:61:3f:32:4a:b4:a5:06:71:1c:30:b9:5a:2f:33:7d:
b2:c3:2a:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 18 12:04:42 2024 by rpki-client on console-fra.rpki-client.org