Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/t7PtbYJYToA8j6ULBaQ2_W_UnnA.roa
File: t7PtbYJYToA8j6ULBaQ2_W_UnnA.roa (raw, json)
Hash identifier: /BHYBon4IWCf+JSbna74lJUKEtHfPFBmKczHenftwXA=
Subject key identifier: B7:B3:ED:6D:82:58:4E:80:3C:8F:A5:0B:05:A4:36:FD:6F:D4:9E:70
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0190985C76E7702DE0953DF5948360DF9EB9
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/t7PtbYJYToA8j6ULBaQ2_W_UnnA.roa
Signing time: Tue 09 Jul 2024 16:38:34 +0000
ROA not before: Tue 09 Jul 2024 16:38:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215362
IP address blocks: 217.145.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jul 2024 13:56:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:98:5c:76:e7:70:2d:e0:95:3d:f5:94:83:60:df:9e:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jul 9 16:38:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b7b3ed6d82584e803c8fa50b05a436fd6fd49e70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9c:99:70:f2:50:df:e2:6d:34:c3:40:78:34:
94:ac:60:2a:c5:b9:22:a7:71:2d:9a:e9:94:20:a2:
17:4e:7d:fd:ab:0a:6f:27:73:59:d4:b3:02:3a:04:
86:46:73:c5:d6:7b:84:a4:f0:41:a0:f5:58:d5:ee:
24:e2:24:96:40:b4:a8:ba:77:f9:44:4b:a8:0a:8a:
57:48:82:49:05:89:42:2c:68:d5:02:1f:09:f8:13:
81:22:de:ca:08:1c:83:c9:75:3f:fa:14:8c:8f:d4:
b2:3a:00:40:25:54:32:cc:40:3b:32:90:ff:22:3d:
f2:06:2e:62:b4:59:95:47:0d:c5:45:e4:1f:e4:11:
f8:01:10:d5:58:22:1c:83:ba:b2:f0:39:57:1f:2b:
a9:3c:0b:06:1e:fc:5d:d6:00:e8:a6:08:b4:d9:86:
c5:94:8c:c6:7d:de:be:6f:89:d1:60:03:64:bf:70:
45:34:81:fb:39:39:d5:49:32:b3:b4:64:92:40:67:
74:d7:16:c3:0e:5e:83:70:02:23:24:fe:66:ed:d4:
fb:44:98:3a:8d:9a:dd:0b:af:d2:86:bb:63:c8:2d:
4e:71:16:9d:6a:09:2e:24:4e:f3:28:9a:3e:fc:4e:
0f:d4:21:0f:c5:f8:33:84:1b:4c:89:a8:c1:c1:36:
03:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:B3:ED:6D:82:58:4E:80:3C:8F:A5:0B:05:A4:36:FD:6F:D4:9E:70
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/t7PtbYJYToA8j6ULBaQ2_W_UnnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.145.77.0/24
Signature Algorithm: sha256WithRSAEncryption
23:52:99:ef:be:4c:8b:01:a9:20:dd:2e:47:6a:ea:0e:88:cf:
c4:5a:6a:92:16:51:3c:9d:03:78:7b:a8:2e:ac:1b:ac:97:80:
cd:74:5a:fa:b3:dd:8e:09:f8:ba:38:f1:5e:19:d9:84:47:7b:
fb:92:ad:56:9b:a8:00:a4:fc:db:1e:5e:60:65:25:f5:fe:03:
53:06:64:38:90:6b:f2:59:d7:2c:c9:66:26:07:3b:ac:13:1c:
d0:8e:24:3c:a1:a8:66:73:be:bb:f3:6e:d8:81:5d:43:34:04:
86:a0:90:f6:7e:8b:88:bb:b4:05:5f:c2:28:42:d5:fd:ea:b0:
7c:eb:2d:89:42:ce:7e:cc:3e:7c:72:0b:8e:86:b9:9b:1e:75:
a8:ae:ef:d5:da:ab:35:25:fc:26:77:05:6a:95:cb:65:19:98:
0b:2e:19:e0:26:cb:1d:45:63:cd:7a:5f:3e:15:7c:cb:6f:33:
4c:16:46:f9:4b:a3:9f:2a:c4:5f:ff:3b:40:6f:a5:91:9c:8d:
af:7c:63:b0:8c:42:e8:9d:71:2b:22:76:02:e5:e8:88:ca:66:
81:8a:04:d9:00:12:61:df:26:3d:ce:0b:eb:f1:e5:68:8c:70:
4b:1e:09:06:04:76:74:90:7e:8a:a1:21:5e:36:6e:1e:20:cd:
87:41:f3:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:16:01 2025 by rpki-client