Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/e75e41-a828-4dc5-8ed3-9fc36411accc/1/VMzDyYGqigA7t1i_YNXQQgQHJNo.roa
File: VMzDyYGqigA7t1i_YNXQQgQHJNo.roa (raw, json)
Hash identifier: nDzdxZuxeR907KVmnuvOr7TAt8Ksddu0myYFBCo68ao=
Subject key identifier: 54:CC:C3:C9:81:AA:8A:00:3B:B7:58:BF:60:D5:D0:42:04:07:24:DA
Certificate issuer: /CN=3939f92b825ce110903c31d522b0f50cafd74a6f
Certificate serial: 01920E93A1892AC9297BFED1C887D94E854A
Authority key identifier: 39:39:F9:2B:82:5C:E1:10:90:3C:31:D5:22:B0:F5:0C:AF:D7:4A:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTn5K4Jc4RCQPDHVIrD1DK_XSm8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/e75e41-a828-4dc5-8ed3-9fc36411accc/1/VMzDyYGqigA7t1i_YNXQQgQHJNo.roa
Signing time: Fri 20 Sep 2024 08:36:49 +0000
ROA not before: Fri 20 Sep 2024 08:36:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 314618
IP address blocks: 217.12.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Sep 2024 06:11:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:0e:93:a1:89:2a:c9:29:7b:fe:d1:c8:87:d9:4e:85:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3939f92b825ce110903c31d522b0f50cafd74a6f
Validity
Not Before: Sep 20 08:36:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=54ccc3c981aa8a003bb758bf60d5d042040724da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:27:5c:87:c0:7e:cb:bb:69:1b:de:3e:25:52:
17:c1:35:62:c0:f5:82:e9:a2:38:fb:3e:b9:e8:12:
82:55:74:33:0d:dc:90:1f:88:53:eb:ec:80:87:ac:
95:a5:7f:b7:4b:dc:4e:0f:7d:c4:a5:d4:28:92:6b:
81:b0:06:c0:b5:7f:49:00:71:90:6a:1d:49:97:57:
71:30:8a:98:ad:36:4f:de:52:d5:c0:3f:00:a0:65:
30:18:ec:13:f1:9a:bc:c3:1d:ee:ea:f8:9e:4f:96:
52:f7:8e:00:af:c3:e8:f8:c3:df:c4:06:12:66:5d:
a6:7e:70:96:60:95:16:59:f4:6d:f0:3c:ff:b1:2b:
42:23:09:69:5d:5f:3d:80:f2:34:65:c0:9d:2e:62:
ba:36:f6:dc:09:2f:12:e2:29:10:a2:4e:ef:32:3c:
26:71:5a:1e:69:96:2a:95:71:54:0c:d2:31:2e:5d:
d8:d6:45:33:b2:e0:5d:02:28:b5:ae:2a:64:0e:8d:
2b:e3:64:dc:f7:d6:e6:25:cd:bf:7d:e3:32:96:85:
c6:b4:a5:d4:63:83:7f:6a:8e:59:81:3f:c6:e8:ab:
50:c0:fc:2d:79:02:58:f8:0e:e5:20:12:f4:79:bc:
50:9f:2a:de:fc:aa:c6:30:01:65:34:7d:18:ac:2f:
5a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:CC:C3:C9:81:AA:8A:00:3B:B7:58:BF:60:D5:D0:42:04:07:24:DA
X509v3 Authority Key Identifier:
keyid:39:39:F9:2B:82:5C:E1:10:90:3C:31:D5:22:B0:F5:0C:AF:D7:4A:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTn5K4Jc4RCQPDHVIrD1DK_XSm8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/e75e41-a828-4dc5-8ed3-9fc36411accc/1/VMzDyYGqigA7t1i_YNXQQgQHJNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/e75e41-a828-4dc5-8ed3-9fc36411accc/1/OTn5K4Jc4RCQPDHVIrD1DK_XSm8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.12.19.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:ef:26:e2:ee:13:4c:3d:56:8b:8c:06:9d:c7:50:d8:20:53:
86:89:55:af:f6:2d:89:35:97:cd:9f:f9:b6:39:76:95:ea:e8:
06:1e:1b:30:e5:d8:87:2a:9c:c9:83:a5:18:38:3e:37:40:56:
11:8e:05:c2:8f:37:cf:ef:12:b7:c1:9d:81:cd:de:cf:d7:06:
cb:f9:9c:24:46:20:55:c2:12:76:e2:82:37:fd:5b:4e:7b:ec:
ca:d0:f2:33:15:fb:67:3b:d9:ea:9a:e8:44:1c:31:ec:32:39:
69:79:f6:5c:2b:d7:7e:3e:9c:a5:2f:c6:ed:c0:c3:02:f9:4b:
7f:12:bb:f9:81:c2:90:a4:2b:ce:40:92:80:23:8a:13:26:c4:
73:e0:ca:d7:ba:15:aa:36:2d:13:8b:99:54:d8:80:55:24:b9:
82:6a:60:77:12:6b:02:e7:f6:7f:da:79:de:4a:bb:7a:e2:b1:
7c:d5:95:59:f9:5f:e6:1f:07:87:34:d1:a6:88:54:61:66:fd:
53:d1:0f:fd:2e:fe:a1:62:f9:0f:8b:49:39:1a:3a:13:32:33:
1c:88:88:da:b7:e8:97:e1:35:1a:c6:db:6b:6c:7f:fe:90:c1:
8a:b2:8d:42:92:eb:22:5e:31:c8:8e:bf:70:23:3a:bb:f9:dd:
6a:a2:35:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 23 07:59:20 2024 by rpki-client on console-fra.rpki-client.org