Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/7SEfwsM4N9JJyr5ZUGvCDQ5RgPk.roa
File: 7SEfwsM4N9JJyr5ZUGvCDQ5RgPk.roa (raw, json)
Hash identifier: /xCI9oABkIF+xrNpbvysTqH9xbjzmJLuH+tMaTHJ9dw=
Subject key identifier: ED:21:1F:C2:C3:38:37:D2:49:CA:BE:59:50:6B:C2:0D:0E:51:80:F9
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 01933A5DDCB675E48619407DF97FD0C812E8
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/7SEfwsM4N9JJyr5ZUGvCDQ5RgPk.roa
Signing time: Sun 17 Nov 2024 13:44:10 +0000
ROA not before: Sun 17 Nov 2024 13:44:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 37.202.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Dec 2024 11:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:3a:5d:dc:b6:75:e4:86:19:40:7d:f9:7f:d0:c8:12:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Nov 17 13:44:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed211fc2c33837d249cabe59506bc20d0e5180f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:51:b5:e2:c6:72:f4:82:ff:d4:2a:97:62:32:
d9:f9:3e:53:1e:f3:fa:16:d7:80:33:6b:72:ce:2a:
74:4c:a9:e4:13:67:1c:93:77:31:a9:3b:a8:a0:f5:
aa:49:c5:60:be:83:f2:5e:ea:31:a0:a8:1b:cd:1a:
97:9f:9a:a2:11:74:bf:21:24:6a:87:75:e5:51:51:
b8:f5:c5:c0:e9:24:d8:fd:a7:04:81:04:03:1b:43:
84:2f:72:3a:b7:c6:db:c7:84:e7:d7:92:49:f2:2c:
17:e0:86:2f:fe:73:b7:dc:9b:3a:00:2b:db:84:cb:
4f:13:d8:5f:cb:39:cd:f0:57:f9:8e:5b:09:aa:35:
2d:25:c3:bc:19:17:32:d1:3b:92:9a:23:cd:e4:c1:
af:be:11:f8:21:9b:35:6f:80:5b:00:98:57:5a:ba:
1d:b0:5a:9d:a2:42:ef:8a:96:a6:be:7e:0f:b8:9c:
92:03:e5:cb:04:48:cc:22:a8:b2:13:a3:33:76:26:
68:c9:d1:dc:67:33:6c:ef:85:b4:19:a6:80:3d:64:
9d:5b:ed:b3:09:06:c1:05:44:a5:10:e9:f1:ab:62:
65:87:13:3c:59:67:a5:01:aa:df:a4:44:9c:08:fb:
08:b3:1f:ad:16:cc:13:09:f4:9e:20:25:6d:61:05:
b0:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:21:1F:C2:C3:38:37:D2:49:CA:BE:59:50:6B:C2:0D:0E:51:80:F9
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/7SEfwsM4N9JJyr5ZUGvCDQ5RgPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.217.0/24
Signature Algorithm: sha256WithRSAEncryption
68:d9:42:77:be:1f:d2:e6:2a:68:5b:8c:ff:72:d1:ea:d7:cf:
07:61:ec:86:37:f3:ef:18:5d:ec:9f:6d:3c:94:eb:8d:a2:29:
1a:19:9e:2d:22:24:3d:80:ab:7f:6f:8f:77:66:b7:5c:8b:67:
0c:63:cc:71:8d:84:32:6f:70:5e:63:35:75:b2:e8:63:c9:10:
41:e0:19:70:ed:01:b2:54:43:e4:3a:c3:31:e1:68:25:22:3b:
8b:13:7e:bd:78:8f:dc:d0:5e:0f:ca:47:24:11:71:26:0c:81:
48:db:37:1e:f3:f6:91:79:45:90:97:6a:8b:79:1d:0f:89:12:
43:b9:6c:94:6b:c1:8c:a9:b7:b0:4e:0f:e7:0d:21:b9:82:44:
1c:94:a5:01:11:63:eb:7d:a7:5e:25:92:da:20:d0:01:96:25:
2b:cc:4e:fd:7e:eb:bc:c1:1a:40:bc:10:09:70:14:46:c3:b2:
20:3e:73:03:75:45:82:24:4a:27:46:e0:73:7b:5b:3e:5c:bb:
c2:ce:37:3b:af:1c:3b:ec:95:e4:8f:54:4f:8c:e4:35:e4:9d:
7c:dd:7e:5a:d8:b2:e8:7f:eb:b9:66:c8:aa:6f:22:d7:a0:3f:
d5:be:7f:1d:cb:29:f0:dc:3d:88:eb:06:2d:c8:34:12:ef:9e:
9d:63:7c:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:56:08 2025 by rpki-client