Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/DVqJgJPjdHnyDmOnKBd31lEfYtI.roa
File: DVqJgJPjdHnyDmOnKBd31lEfYtI.roa (raw, json)
Hash identifier: L1WTJ2AneLnkWtqFtKeD8Rke/zGgQ6Dve8gs9j7WL2g=
Subject key identifier: 0D:5A:89:80:93:E3:74:79:F2:0E:63:A7:28:17:77:D6:51:1F:62:D2
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192F2509A70CE6E3708C70C5F365D8FF277
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/DVqJgJPjdHnyDmOnKBd31lEfYtI.roa
Signing time: Sun 03 Nov 2024 13:57:01 +0000
ROA not before: Sun 03 Nov 2024 13:57:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212742
IP address blocks: 217.60.128.0/19 maxlen: 24
217.60.160.0/20 maxlen: 24
217.60.176.0/21 maxlen: 24
217.60.184.0/23 maxlen: 24
217.60.186.0/24 maxlen: 24
217.60.200.0/21 maxlen: 24
217.60.208.0/20 maxlen: 24
217.60.224.0/21 maxlen: 24
217.60.232.0/22 maxlen: 24
217.60.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Nov 2024 11:33:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f2:50:9a:70:ce:6e:37:08:c7:0c:5f:36:5d:8f:f2:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 3 13:57:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d5a898093e37479f20e63a7281777d6511f62d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:70:90:a8:1a:d5:44:3b:aa:ce:31:e6:8d:92:
9a:7c:96:eb:e8:0a:bb:18:8f:6a:a6:5b:63:53:17:
2e:5f:a8:07:07:90:8f:7a:6d:b1:61:04:ef:12:6c:
0b:db:40:90:95:89:51:f2:56:21:4a:9a:f6:15:bb:
61:c6:47:d0:7d:84:e6:b8:72:8d:df:72:dd:fc:02:
08:cd:b1:fa:bc:58:a8:0d:1e:79:ca:5b:8a:0a:8c:
20:34:64:b5:a0:ce:86:12:d3:f8:43:bc:1b:a5:da:
a8:37:43:8e:37:0e:2a:65:31:01:bb:c0:f0:32:ef:
97:34:cf:97:fb:72:86:d7:e8:09:3a:54:e5:c7:55:
9e:ab:e0:93:1c:73:be:44:db:b1:16:fb:fb:bb:d2:
e3:a2:75:bd:6d:e1:09:bc:8d:3a:f9:e5:3a:37:1c:
df:42:a4:32:34:9d:98:22:ec:0b:0d:2e:52:c0:a9:
0b:b3:61:68:90:14:6a:10:06:90:28:47:c1:7e:6d:
cd:86:88:66:d9:83:6c:9c:87:bb:79:fe:47:d9:8b:
8c:b5:70:fb:90:d1:18:f7:27:65:f8:3e:f3:fb:fb:
f4:08:82:42:ea:10:58:12:46:3d:c9:6a:cc:fb:3d:
12:a1:55:ad:25:ab:a2:f0:ca:78:e5:8c:17:6a:5c:
0c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:5A:89:80:93:E3:74:79:F2:0E:63:A7:28:17:77:D6:51:1F:62:D2
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/DVqJgJPjdHnyDmOnKBd31lEfYtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.60.128.0-217.60.186.255
217.60.200.0-217.60.235.255
217.60.250.0/24
Signature Algorithm: sha256WithRSAEncryption
60:d9:f5:61:be:fd:cf:89:0c:9d:89:5b:e5:40:ec:8f:10:f2:
d0:d7:5f:7a:c2:cd:c6:65:b8:06:95:e6:f9:8f:a8:b9:c3:b7:
77:79:5e:24:50:93:e5:ce:fb:c0:31:8e:46:69:d8:04:63:b8:
cb:49:97:61:eb:53:7e:3e:94:46:23:fa:b7:17:09:da:6b:07:
a1:48:71:38:e7:53:1b:8e:b0:9a:cf:cc:bc:7f:71:b4:28:3c:
c9:44:57:5a:f9:34:ee:06:fc:e1:19:b7:01:c8:10:9a:dc:52:
98:1c:05:a0:de:e6:65:5e:5c:78:13:00:20:42:cf:6a:59:6e:
45:ff:08:1d:25:61:a5:ec:9c:e5:d9:52:a1:d1:77:03:18:24:
88:d1:c5:34:5d:4d:9d:71:d5:03:7b:11:89:1b:3a:e3:07:f1:
e8:b1:20:af:5c:80:8d:4d:0b:89:86:15:4a:33:f4:8f:f9:f0:
7b:72:f2:fb:25:95:35:f0:57:fa:92:78:ca:88:08:73:90:01:
54:b8:8d:46:45:cd:a9:5e:3a:6c:5d:6b:42:48:40:b7:23:0a:
ba:d9:a8:a9:f1:52:8c:9f:85:be:c9:68:1a:8a:1a:33:61:5c:
f1:8e:82:6d:5b:30:47:95:bc:17:1f:65:87:cd:50:9e:68:9b:
25:fd:e0:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 14:58:13 2024 by rpki-client on console-fra.rpki-client.org