Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/e75ad2-1e30-455e-9787-3b55f2327b34/1/eVEOh8zwULj9giuFNxOAGu6LxAI.roa
File: eVEOh8zwULj9giuFNxOAGu6LxAI.roa (raw, json)
Hash identifier: TjiuZsiM+24LsugYqn8gMR6VkTHLDAVhVHdm7AhIWI4=
Subject key identifier: 79:51:0E:87:CC:F0:50:B8:FD:82:2B:85:37:13:80:1A:EE:8B:C4:02
Certificate issuer: /CN=302f09f265e9b278f8073d6982ff175713a5a0fa
Certificate serial: 0189F328DEFC529753294B50AA3519AC20E7
Authority key identifier: 30:2F:09:F2:65:E9:B2:78:F8:07:3D:69:82:FF:17:57:13:A5:A0:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MC8J8mXpsnj4Bz1pgv8XVxOloPo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/e75ad2-1e30-455e-9787-3b55f2327b34/1/eVEOh8zwULj9giuFNxOAGu6LxAI.roa
Signing time: Mon 14 Aug 2023 08:28:09 +0000
ROA not before: Mon 14 Aug 2023 08:28:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21234
IP address blocks: 217.25.128.0/20 maxlen: 20
2a07:fbc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f3:28:de:fc:52:97:53:29:4b:50:aa:35:19:ac:20:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=302f09f265e9b278f8073d6982ff175713a5a0fa
Validity
Not Before: Aug 14 08:28:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79510e87ccf050b8fd822b853713801aee8bc402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1d:4c:f2:f7:c6:bb:bc:05:be:ec:fa:e3:5f:
56:16:53:40:8b:90:df:3d:89:16:d8:78:05:de:fc:
20:53:72:75:21:13:58:2e:95:bd:3b:14:e2:b0:61:
92:54:f4:df:03:86:e1:ae:f7:f3:8b:91:ba:1d:3a:
0f:d3:88:ac:c5:3e:ca:d1:05:3b:4f:5a:80:13:42:
42:69:e9:a8:01:09:f3:3a:4c:11:c7:b4:86:4d:a6:
6e:73:d9:f1:6f:5c:19:b5:bd:4b:6d:04:a6:10:0a:
ee:77:5a:e1:75:ab:75:b5:28:82:0a:5a:78:9b:09:
35:71:a5:69:93:74:91:81:6e:5b:ae:a4:4e:8c:2e:
19:4d:f5:e8:73:5a:e9:cb:d2:03:08:3b:a3:95:62:
20:c8:43:b1:5d:0a:4c:d8:f8:75:01:bc:03:8d:af:
f5:c2:ec:6a:fe:78:03:15:d4:2f:9f:87:9d:e5:85:
10:73:0e:bc:e5:9a:98:16:a2:4d:ec:fe:ee:14:70:
be:b6:37:17:5b:8c:34:6f:bc:00:b9:fe:2c:bf:e9:
e6:2a:50:53:7c:5e:d5:4e:ee:98:b7:38:87:c8:63:
a2:5a:b6:de:3c:c2:13:ac:de:fb:5f:23:a1:bd:68:
16:c1:44:84:bf:12:15:c1:85:90:6e:9c:df:bf:e5:
75:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:51:0E:87:CC:F0:50:B8:FD:82:2B:85:37:13:80:1A:EE:8B:C4:02
X509v3 Authority Key Identifier:
keyid:30:2F:09:F2:65:E9:B2:78:F8:07:3D:69:82:FF:17:57:13:A5:A0:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MC8J8mXpsnj4Bz1pgv8XVxOloPo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/e75ad2-1e30-455e-9787-3b55f2327b34/1/eVEOh8zwULj9giuFNxOAGu6LxAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/e75ad2-1e30-455e-9787-3b55f2327b34/1/MC8J8mXpsnj4Bz1pgv8XVxOloPo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.25.128.0/20
IPv6:
2a07:fbc0::/32
Signature Algorithm: sha256WithRSAEncryption
74:0b:9b:4e:44:60:85:3e:2a:81:50:96:0d:96:2b:5e:ca:87:
b3:6a:5c:e9:d2:e7:00:18:80:8c:1b:21:30:e5:5e:dd:9d:d5:
03:39:f2:14:77:62:e9:ae:d4:60:74:5d:07:b9:53:f4:bc:6a:
9f:12:20:59:b4:e1:5b:3d:ef:f8:ce:9d:1b:2f:c9:b9:9f:db:
10:3a:1f:49:b7:aa:29:da:fb:b1:7c:a9:d4:e2:32:5f:23:3e:
78:3a:d4:5e:8d:b4:6b:a6:b2:6e:18:85:ed:ef:5b:80:73:82:
eb:65:02:36:b9:76:13:11:82:09:d5:d9:93:b8:36:9b:c3:50:
ba:f9:b4:5a:ec:e5:2a:2d:79:d9:23:07:92:bf:1f:11:85:a9:
3f:43:7f:00:fe:1a:ee:55:17:bd:0f:31:77:c9:dd:d1:4c:8a:
2b:02:e5:f3:02:15:f3:68:ea:35:9b:5c:f2:8e:18:18:7a:78:
ca:5f:c7:e2:7d:65:8d:46:e4:dc:22:32:7f:21:2f:bf:e1:41:
1a:a8:0e:61:ff:5c:50:f8:4d:d1:f0:94:ae:50:b1:75:26:0e:
8d:4f:e4:67:37:bf:07:f5:09:d0:41:ed:02:85:5a:6a:0d:a5:
1d:df:43:4c:be:01:aa:f1:23:3d:47:3e:94:33:24:5b:ea:3d:
7b:84:d9:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:02 2024 by rpki-client on console-fra.rpki-client.org