Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/JojVJTLBqssoIiEF6AY_6Gr4paQ.roa
File: JojVJTLBqssoIiEF6AY_6Gr4paQ.roa (raw, json)
Hash identifier: NIGflgl/vYg5Pq7wM4VtyWVfeYPDKEZXGANuLEtPgLY=
Subject key identifier: 26:88:D5:25:32:C1:AA:CB:28:22:21:05:E8:06:3F:E8:6A:F8:A5:A4
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0190BC62916F0FE3032CF18FEA5D4EBEA54A
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/JojVJTLBqssoIiEF6AY_6Gr4paQ.roa
Signing time: Tue 16 Jul 2024 16:31:34 +0000
ROA not before: Tue 16 Jul 2024 16:31:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 217.145.76.0/24 maxlen: 24
217.145.78.0/24 maxlen: 24
217.145.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Aug 2024 12:19:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bc:62:91:6f:0f:e3:03:2c:f1:8f:ea:5d:4e:be:a5:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jul 16 16:31:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2688d52532c1aacb28222105e8063fe86af8a5a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3a:16:6b:02:30:a6:89:91:d4:99:df:9a:16:
1c:9b:9d:20:85:dd:42:ed:e9:b0:43:2d:15:29:c1:
ca:78:b2:40:04:48:42:6f:cc:3b:39:bf:7a:e0:ae:
4e:72:b4:82:1c:4c:f4:9c:5f:e4:ac:29:60:48:8e:
42:50:22:b4:e7:24:ff:e1:5a:c2:d0:60:05:f8:3b:
e3:39:bf:e0:61:6c:03:57:f7:2e:f3:f3:9c:d4:21:
14:3e:07:0a:0c:c4:5e:c7:9a:22:7c:fc:50:3d:4a:
73:c5:e3:26:a4:46:59:51:39:fd:c0:a7:5f:58:e8:
93:8f:17:97:28:f5:20:f8:08:33:45:de:ec:4b:95:
fb:c9:a1:4f:27:b2:d5:b1:f5:52:eb:fc:88:9d:4f:
34:fc:b4:5f:69:59:c4:33:6b:e5:ba:ed:67:e7:fe:
72:21:78:a0:a3:e6:53:79:3b:c3:e6:4b:50:4e:38:
cd:92:74:a2:a1:51:4a:49:78:b0:a9:47:64:7b:1f:
e2:0d:ad:b1:10:28:b3:58:ee:0d:6e:6e:be:6a:ec:
c0:87:54:87:92:b1:9a:24:af:fa:8d:36:8e:c3:d6:
6f:be:a9:e7:dd:a5:fb:23:d6:10:40:06:62:fc:2c:
b5:28:f2:bc:16:39:8a:50:40:e5:b3:77:a3:8d:a8:
95:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:88:D5:25:32:C1:AA:CB:28:22:21:05:E8:06:3F:E8:6A:F8:A5:A4
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/JojVJTLBqssoIiEF6AY_6Gr4paQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.145.76.0/24
217.145.78.0/23
Signature Algorithm: sha256WithRSAEncryption
14:4f:72:d9:bb:35:3c:ab:39:7c:8c:68:d5:98:92:ca:64:e9:
c9:7b:ff:b1:34:a9:9f:52:b7:85:1c:fa:d5:7c:36:6f:79:dd:
2a:a9:c7:8e:1d:ea:0f:9e:8b:04:0a:f4:7a:dc:26:f0:e1:b0:
26:41:fd:82:e6:b3:da:ea:a2:74:22:55:b2:1c:aa:8c:81:a6:
86:b0:d6:43:3d:8c:4e:2c:1f:0a:08:71:44:b6:a6:df:67:40:
9b:f9:c3:6d:1d:48:9c:5c:ac:96:1c:ee:30:06:fa:b9:02:2f:
f2:0b:fd:69:90:f0:53:b3:2d:43:72:c0:2c:e7:23:61:c3:d3:
17:ba:62:d1:79:c1:4f:eb:eb:d2:98:4e:e2:43:8e:7a:29:c2:
54:8d:68:42:c6:d7:ec:15:47:20:9d:c6:a5:93:2c:07:04:41:
e9:94:98:98:dc:ac:f7:48:e1:42:a2:37:31:26:90:c1:6b:6b:
e0:bb:65:e2:c1:58:02:1a:5d:d8:fb:7f:f3:51:df:c8:4f:70:
2e:16:58:06:04:52:40:49:dc:05:6a:d6:44:97:f0:70:26:81:
05:ce:cb:01:e0:a9:d6:08:fe:0c:42:93:dc:4f:8b:ee:c3:5e:
01:df:88:71:25:6e:22:54:e9:5d:72:15:b3:c0:41:c7:49:f2:
a8:7b:ec:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:06:33 2025 by rpki-client