Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/SceNX_tyRy7gJUoCHzS26PlTN8E.roa
File: SceNX_tyRy7gJUoCHzS26PlTN8E.roa (raw, json)
Hash identifier: 1Xte90eVS4NFabrcdI+zeKONa2G/bCMBJSpqRSajpFQ=
Subject key identifier: 49:C7:8D:5F:FB:72:47:2E:E0:25:4A:02:1F:34:B6:E8:F9:53:37:C1
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 018CC9BBCA968A7F63E9F16E64C043629E61
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/SceNX_tyRy7gJUoCHzS26PlTN8E.roa
Signing time: Tue 02 Jan 2024 10:32:56 +0000
ROA not before: Tue 02 Jan 2024 10:32:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24822
IP address blocks: 217.65.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 11:48:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:ca:96:8a:7f:63:e9:f1:6e:64:c0:43:62:9e:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 10:32:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49c78d5ffb72472ee0254a021f34b6e8f95337c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:51:61:52:8b:0f:cb:50:f0:85:80:de:63:4f:
03:75:ad:bf:c9:d8:1a:33:ad:4a:60:b0:4a:18:04:
f9:09:2c:64:25:80:4f:05:e0:a7:65:0c:e8:a1:21:
6e:53:f8:30:54:a5:4a:b2:49:ac:4d:18:75:14:d0:
a3:b6:f0:c2:a0:ad:b6:b9:62:36:e9:e9:54:f9:2b:
29:12:ae:88:a3:52:7f:85:1a:ad:b8:c1:d1:51:74:
ba:61:12:87:db:d6:65:87:36:76:6f:b0:94:99:5a:
08:6d:4a:12:20:e2:0b:42:72:2a:9d:40:fd:cf:1f:
b1:cb:df:9f:a2:73:d0:8a:e5:95:5c:c6:83:ed:c6:
fe:7d:fd:48:2c:6c:6f:c4:c1:c0:55:18:11:6e:57:
6f:0b:6c:a0:81:24:71:f5:19:a4:9b:dc:e1:b0:cd:
56:83:ea:8d:09:ce:64:a1:26:33:c9:20:bf:9a:df:
18:43:d8:16:d3:5a:10:d0:9b:61:31:57:44:01:32:
4e:2f:e9:af:42:ae:83:e8:5e:21:86:d6:e0:8f:7e:
6c:82:4d:40:f7:8c:15:fb:6d:0a:da:45:17:94:02:
3c:f3:95:59:bf:bc:e8:e8:42:ff:9d:36:6d:a9:46:
26:74:e7:33:00:b2:70:42:d3:16:ce:04:53:56:60:
a6:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:C7:8D:5F:FB:72:47:2E:E0:25:4A:02:1F:34:B6:E8:F9:53:37:C1
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/SceNX_tyRy7gJUoCHzS26PlTN8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.65.109.0/24
Signature Algorithm: sha256WithRSAEncryption
37:dc:6a:de:e4:51:14:41:cd:1b:d5:5d:51:01:73:b6:ac:d2:
74:e5:76:15:eb:d6:4e:24:34:ec:06:e7:cd:5b:ca:be:de:6e:
e8:76:b0:84:ae:68:38:6d:c1:f9:e1:fd:34:9c:4b:43:db:85:
14:0a:0c:94:3b:e4:72:c5:f3:51:09:7c:1b:e6:75:36:18:28:
56:ea:6d:a8:21:bb:fd:62:67:b5:c1:43:8d:5a:f5:25:66:8b:
74:4c:65:7e:82:8e:b0:de:fb:72:6d:45:04:4a:80:ea:34:fa:
12:90:8e:06:4f:33:1d:7e:a2:3e:2e:d9:e0:bd:b6:58:bc:bd:
fc:bb:77:62:da:ed:22:21:08:ae:2e:68:c5:2c:c0:e6:37:44:
02:ed:a6:f5:89:d8:d4:ca:b4:36:26:fe:63:9c:41:33:fa:82:
8e:91:61:4d:0e:66:d6:49:d7:b0:8e:d9:86:42:be:8f:bc:f4:
48:26:68:f9:8a:1c:6c:3c:63:4a:3d:35:c6:8c:d2:c0:0e:78:
82:09:55:fa:7d:0c:5d:59:d8:63:ea:5c:3b:15:57:2f:50:d8:
fd:7d:9d:d0:fd:0d:49:17:10:5f:de:0d:32:9e:9f:05:0b:3a:
40:42:d0:2f:e9:01:6d:ee:e3:f2:80:f8:68:9f:83:57:9a:08:
ab:58:cc:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 04:51:37 2025 by rpki-client