Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/UvxwPVT7ipg6DG0ytE4UDjThbWk.roa
File: UvxwPVT7ipg6DG0ytE4UDjThbWk.roa (raw, json)
Hash identifier: kd4BOlcAh/yZDuiFR+KVHR97G/+I7tfp0UnEqeIfQqY=
Subject key identifier: 52:FC:70:3D:54:FB:8A:98:3A:0C:6D:32:B4:4E:14:0E:34:E1:6D:69
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 01906B03563D36B3D12D00F73D451432D934
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/UvxwPVT7ipg6DG0ytE4UDjThbWk.roa
Signing time: Sun 30 Jun 2024 21:18:18 +0000
ROA not before: Sun 30 Jun 2024 21:18:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215362
IP address blocks: 217.145.66.0/24 maxlen: 24
217.145.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jul 2024 16:38:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6b:03:56:3d:36:b3:d1:2d:00:f7:3d:45:14:32:d9:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jun 30 21:18:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52fc703d54fb8a983a0c6d32b44e140e34e16d69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a0:22:3f:e1:0f:6d:5f:71:ae:7f:68:6b:e0:
23:d3:68:b0:b1:f9:dd:ac:da:41:ba:c6:de:17:c2:
a8:71:91:72:99:93:e8:83:0d:e3:c2:90:5f:5c:61:
9a:48:d6:4f:c2:b7:75:b5:e7:c8:74:01:bb:ff:c0:
fa:8e:c8:83:e9:82:66:9a:42:b1:f0:2a:0b:4c:02:
84:ae:c3:27:54:8c:38:08:ae:61:1b:96:a9:d5:58:
76:d6:b3:e4:5b:ae:dc:24:04:b6:31:79:7a:c7:6c:
60:a4:5f:2d:6c:6a:d3:ad:d4:81:b6:ee:b8:e1:9e:
ec:b6:5e:a9:e0:64:4e:64:99:34:10:5b:09:e0:2e:
3e:a3:a7:27:39:13:3e:de:7e:f2:51:ad:5e:56:12:
16:c7:e0:91:49:25:56:08:96:50:22:68:4f:ca:29:
e4:27:e5:50:0d:00:36:1a:c2:3c:9a:81:6d:9c:2f:
0b:89:14:0e:f8:8c:7b:43:86:3f:da:d4:55:84:54:
c0:1b:33:07:a9:d3:d4:2e:d4:af:2b:64:e9:15:5d:
c6:d4:f1:56:2c:11:40:dd:f8:89:5d:3d:c0:80:67:
cb:cb:20:53:90:8a:e1:a1:20:4f:40:ea:5b:cd:3f:
85:8b:a3:9b:cc:8a:11:fa:44:e4:db:2c:b9:02:79:
c8:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:FC:70:3D:54:FB:8A:98:3A:0C:6D:32:B4:4E:14:0E:34:E1:6D:69
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/UvxwPVT7ipg6DG0ytE4UDjThbWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.145.66.0/24
217.145.77.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:ac:1e:12:fd:03:3a:77:6f:77:a4:b7:81:5d:35:12:5b:a1:
15:95:79:5c:4a:07:65:ba:c6:2b:c5:25:56:93:a6:09:de:08:
c2:33:3f:4e:be:57:7b:f6:5d:fe:17:7f:24:4f:23:af:4e:36:
e0:d3:a1:54:bc:a8:c4:6f:d6:6c:53:7f:0d:9c:92:68:22:13:
13:30:10:cb:42:90:f9:24:2b:a8:4d:02:f0:5d:a8:46:a5:28:
9c:34:96:09:0c:c1:fe:4b:7b:88:17:b4:b1:10:40:95:e2:91:
b2:b1:9c:61:2d:e6:ed:68:a6:33:f1:25:16:de:34:a3:73:60:
1f:c2:fd:aa:8a:07:22:6b:db:b5:8e:83:1e:83:ff:2e:0a:1c:
56:0b:7a:bd:e6:d2:2f:b4:0d:19:3a:37:7c:aa:a5:01:25:47:
24:c8:8a:c8:a7:18:50:21:36:58:58:a6:8a:75:89:df:ed:e4:
48:2e:ec:38:f5:55:36:10:bc:bf:03:b0:e8:d2:d3:c4:47:18:
b0:2f:b4:08:ea:b1:fb:6b:30:30:3a:48:5f:20:55:5e:65:3d:
63:a1:4c:2f:29:25:8e:29:8e:c7:de:5e:e9:25:01:7c:ab:23:
c0:40:df:b0:4a:08:96:bf:e1:a3:0f:a7:bf:8a:bc:77:4c:25:
aa:fb:f4:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:30:31 2025 by rpki-client