Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/qHLo_keGHM0fpWSMAoRBXQ8UEpo.roa
File: qHLo_keGHM0fpWSMAoRBXQ8UEpo.roa (raw, json)
Hash identifier: 8+q+bTkstrCQYIJ8x5+2ePDcMwycSwy8r+1HkUnV6aE=
Subject key identifier: A8:72:E8:FE:47:86:1C:CD:1F:A5:64:8C:02:84:41:5D:0F:14:12:9A
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018E14D9C9DB8961EB0BDA13B28B57D35BBE
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/qHLo_keGHM0fpWSMAoRBXQ8UEpo.roa
Signing time: Wed 06 Mar 2024 17:40:01 +0000
ROA not before: Wed 06 Mar 2024 17:40:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60117
IP address blocks: 217.19.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 17:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:14:d9:c9:db:89:61:eb:0b:da:13:b2:8b:57:d3:5b:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Mar 6 17:40:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a872e8fe47861ccd1fa5648c0284415d0f14129a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:31:46:be:4a:a2:77:23:84:0a:ce:ac:db:72:
7d:e2:09:e4:8d:c3:3b:ae:1c:b4:65:79:9d:5e:8b:
56:c7:05:a4:46:59:90:cc:2a:ae:cb:2b:5d:b3:9c:
2a:23:8c:94:77:6f:2c:d0:59:38:11:5a:54:f8:29:
48:73:2d:15:c0:36:23:f5:f9:1c:10:c0:46:c9:2a:
ca:11:e1:7e:1a:99:9e:07:87:5a:42:7b:31:c8:2f:
18:83:3d:df:4a:ce:0e:5a:d3:a4:8c:0c:fd:68:a9:
bd:1d:7e:0c:16:6b:22:e3:e9:07:48:9e:bb:b6:57:
63:92:35:21:12:13:47:91:24:e3:8c:03:73:1e:d0:
47:32:7b:ab:9b:53:9f:d2:95:12:a3:2d:85:be:e9:
c1:1b:42:17:f8:18:ad:58:d9:45:7f:d5:af:c5:72:
35:d5:91:f8:2a:cc:d3:cf:62:74:07:88:f5:3a:52:
2e:5e:b7:61:9d:79:94:1b:97:9c:5d:4c:9b:29:94:
15:a4:74:45:b2:0d:8b:8c:a5:f7:61:d2:f9:d5:b8:
13:59:ac:12:5c:4d:13:11:3f:77:aa:11:ef:21:92:
51:92:cb:c6:4a:0f:b0:60:3d:ba:a8:4b:6e:ed:a9:
34:c6:c8:1c:c8:21:20:ab:c2:6f:2e:cb:f0:af:45:
d0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:72:E8:FE:47:86:1C:CD:1F:A5:64:8C:02:84:41:5D:0F:14:12:9A
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/qHLo_keGHM0fpWSMAoRBXQ8UEpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.19.4.0/24
Signature Algorithm: sha256WithRSAEncryption
61:bc:9c:8d:57:e8:79:f2:f7:2e:37:7a:f5:ff:f7:00:ef:31:
19:10:82:d0:ac:52:d5:a1:64:65:aa:44:71:62:36:0a:c5:67:
9a:38:b5:97:3e:22:7f:f5:fd:92:c1:74:8a:27:2e:d8:c1:90:
97:28:4e:b0:51:b2:74:bc:1b:ca:9a:aa:3f:a5:df:4f:9e:52:
f4:b4:ea:f0:fb:34:48:f2:8a:26:07:55:94:23:f7:62:05:c7:
9c:9e:9f:3b:8b:21:51:44:a8:00:0b:4e:6f:c5:59:97:cf:92:
c7:67:24:d9:6e:71:8b:e5:35:72:98:8f:ca:91:8b:de:19:3c:
60:85:c1:8b:78:33:1e:02:cd:6c:ee:17:75:2f:a6:57:ee:d0:
8e:39:17:e7:7c:24:25:7e:75:ff:23:2a:e6:39:0f:54:4a:95:
2c:30:fe:0a:6f:a8:59:b4:fe:1e:67:10:fe:a6:8f:60:a1:c0:
91:0e:0f:3f:05:66:98:eb:14:33:73:1c:f8:9e:1f:59:f1:ff:
c5:f2:90:70:39:f7:ad:6f:40:cf:20:d0:d3:88:d7:dd:a5:a8:
7c:98:1c:e2:81:25:2b:be:5b:4b:18:62:ed:d1:3c:cc:1a:86:
e7:3d:8d:f4:16:58:64:b4:1d:dd:82:85:82:ce:2e:85:c3:09:
6c:09:ff:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org