Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/DQrPTvHJbuCXX413tSLHD6oTfQI.roa
File: DQrPTvHJbuCXX413tSLHD6oTfQI.roa (raw, json)
Hash identifier: KPzv32VGFWkxeJgxAIR/4zD6+hGWEd1+wCT1XxMQsAY=
Subject key identifier: 0D:0A:CF:4E:F1:C9:6E:E0:97:5F:8D:77:B5:22:C7:0F:AA:13:7D:02
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019182A1BA97F13DD175136A7FBF9AD9F130
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/DQrPTvHJbuCXX413tSLHD6oTfQI.roa
Signing time: Sat 24 Aug 2024 04:25:22 +0000
ROA not before: Sat 24 Aug 2024 04:25:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214857
IP address blocks: 217.60.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 26 Oct 2024 11:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:82:a1:ba:97:f1:3d:d1:75:13:6a:7f:bf:9a:d9:f1:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Aug 24 04:25:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d0acf4ef1c96ee0975f8d77b522c70faa137d02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a0:cc:9e:a0:fa:d8:13:7b:5b:03:2e:a9:9a:
3c:b2:e8:fa:33:0e:18:57:a2:be:cf:b6:73:0b:c2:
45:d9:e8:bf:74:53:41:17:ea:17:7f:60:aa:80:18:
da:3a:32:94:1c:f2:07:eb:ba:3c:2a:ba:e0:97:8c:
b1:2b:18:b3:0a:aa:ba:63:bc:cf:df:a6:5f:58:03:
f5:17:5c:63:de:fd:1e:b2:52:25:ff:f5:cf:6b:b5:
e1:b7:4e:f7:97:af:bc:59:13:39:dc:7c:51:be:ac:
0a:1d:ee:62:ef:8b:65:72:7c:00:b2:48:be:d0:f7:
67:be:10:d4:d6:87:ef:6b:15:7d:87:50:82:cd:b8:
8d:35:0a:4e:e7:58:9e:ba:34:52:31:96:18:e1:85:
92:68:32:fb:5a:9d:b0:37:c5:75:f6:8e:d4:3e:4c:
75:6a:80:78:93:2f:b2:cf:16:f7:3c:5d:97:5d:f0:
ab:70:0a:6d:f8:0a:ab:03:1c:07:dc:49:1a:cf:86:
21:70:9a:3f:28:07:2a:43:d1:62:3e:d6:43:ab:92:
3e:98:f6:de:30:fb:c1:23:08:81:53:91:59:16:c1:
57:5d:84:66:18:8c:ea:7b:2b:e9:22:1b:3d:13:9c:
b2:32:74:84:d2:64:5e:83:44:a7:dd:00:76:05:24:
96:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:0A:CF:4E:F1:C9:6E:E0:97:5F:8D:77:B5:22:C7:0F:AA:13:7D:02
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/DQrPTvHJbuCXX413tSLHD6oTfQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.60.237.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:72:f5:a2:fe:39:0d:39:d5:ff:b8:ae:1b:2e:91:71:fb:25:
1c:12:b7:44:71:9d:80:7b:f0:5c:b1:ed:22:fc:84:0d:31:a4:
f7:4e:45:c7:a1:2d:42:b9:7a:28:d7:8b:1f:f1:47:2b:9f:12:
ce:35:dc:2b:fb:da:0b:d3:9f:14:ae:90:b5:dd:43:46:f3:23:
0b:02:20:10:dc:fa:e3:b5:97:af:a6:89:28:e3:10:27:f2:09:
0c:1a:a3:fc:db:fa:da:2e:57:ff:86:15:f0:e8:ca:22:53:15:
9f:72:5e:0b:33:fb:37:ef:04:f9:99:22:9b:93:1d:b7:df:11:
a1:bd:8c:6c:86:b4:92:ff:dd:5a:01:0d:1c:a3:a6:8a:bc:68:
01:40:bf:1f:e5:58:ff:8b:d5:1c:27:d8:74:18:e4:20:52:73:
17:6e:12:8e:06:4d:78:ac:57:7d:cf:f3:df:fc:e1:23:19:bd:
85:bb:78:9c:65:ff:69:9d:a4:c0:20:c8:82:82:66:e9:bb:eb:
47:b1:ae:43:3f:68:46:19:c4:44:eb:5a:00:84:c0:ce:f3:ad:
0d:a6:5c:02:63:99:f2:f9:3c:24:af:53:8f:bd:a9:41:df:10:
8a:a0:54:2c:94:ae:10:69:9d:f5:99:ee:30:67:53:99:e1:92:
14:23:15:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 26 12:16:29 2024 by rpki-client on console-fra.rpki-client.org