Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/N92DQGh06sVtxhJvd3GUB16PFTA.roa
File: N92DQGh06sVtxhJvd3GUB16PFTA.roa (raw, json)
Hash identifier: 7jr6WvhbtviqVqTPLSiN66x2S1eO7cyOH4jkBxVbR5w=
Subject key identifier: 37:DD:83:40:68:74:EA:C5:6D:C6:12:6F:77:71:94:07:5E:8F:15:30
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01907E67533C5DCE751EF747CC4D5DCBF63B
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/N92DQGh06sVtxhJvd3GUB16PFTA.roa
Signing time: Thu 04 Jul 2024 15:40:19 +0000
ROA not before: Thu 04 Jul 2024 15:40:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198154
IP address blocks: 217.60.242.0/24 maxlen: 24
217.60.244.0/24 maxlen: 24
217.60.245.0/24 maxlen: 24
217.60.247.0/24 maxlen: 24
217.60.249.0/24 maxlen: 24
217.60.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Jul 2024 11:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7e:67:53:3c:5d:ce:75:1e:f7:47:cc:4d:5d:cb:f6:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jul 4 15:40:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37dd83406874eac56dc6126f777194075e8f1530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:7f:78:a8:dc:3f:b9:bf:27:f7:1a:16:9f:80:
0f:48:50:c7:1b:ff:2c:ef:a1:98:51:88:0e:f6:79:
df:f2:17:cf:e5:21:76:77:5f:d6:2f:20:ff:fb:7f:
f3:1e:a0:23:c4:5a:ab:8d:be:a1:0d:2a:30:60:fb:
c1:39:4c:6d:f3:87:34:73:05:b7:6c:46:96:f4:f8:
c4:15:d6:7b:31:d4:bf:c3:23:9a:e3:db:8c:16:27:
97:e7:63:41:8e:92:0a:48:fa:d0:b5:91:36:60:30:
19:fa:58:cc:a4:3d:ab:23:6c:f5:6b:bc:cd:49:e4:
bd:75:66:50:af:b1:67:99:b0:6e:83:90:04:59:51:
55:db:29:ab:55:cb:df:3e:80:0f:dc:94:f0:8d:0c:
a1:1d:b0:bf:2c:01:31:42:8d:2d:20:97:09:d9:09:
d6:dc:90:97:45:8e:00:75:53:6f:82:95:7e:93:f2:
ea:a9:b8:f0:69:c7:f5:2e:b2:22:6c:91:9b:66:72:
d9:b2:a9:0c:8d:a5:78:58:7b:92:ab:59:78:ce:b5:
48:d1:da:ae:f0:71:01:0b:88:87:da:d7:e0:71:9a:
41:c3:92:3f:87:63:cd:d0:35:4e:04:89:c6:2d:3d:
55:70:68:a9:cb:6e:27:5d:43:1f:29:f6:2f:0d:54:
b7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:DD:83:40:68:74:EA:C5:6D:C6:12:6F:77:71:94:07:5E:8F:15:30
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/N92DQGh06sVtxhJvd3GUB16PFTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.60.242.0/24
217.60.244.0/23
217.60.247.0/24
217.60.249.0/24
217.60.252.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:7c:2a:5d:39:84:c9:f0:70:73:1e:83:d6:d5:fb:c6:78:02:
4d:4f:58:70:04:b8:12:b8:96:b5:3f:23:d3:a8:66:c8:f5:66:
8c:12:86:69:8f:24:7d:a4:a2:c1:bc:46:9e:f3:0d:5e:71:0c:
ff:03:dd:9a:8d:3a:c4:03:ce:2f:0a:bc:e4:f6:d8:4d:df:17:
78:62:71:8e:ff:fd:3b:ec:1a:59:4f:6f:88:43:e0:85:fd:62:
af:f3:ab:5b:3e:22:48:6e:9b:34:d8:a5:e7:6c:d7:4d:95:2f:
b7:d8:c5:fa:6f:e1:6d:df:ae:e5:7d:b3:44:7b:a2:f2:aa:0d:
11:31:6c:6c:4f:7a:d7:f3:54:72:ae:ff:e7:77:22:e7:52:c1:
7f:41:57:b7:13:d0:04:60:ae:5d:36:b7:ec:98:b7:80:aa:7f:
ea:df:af:14:68:9e:05:b3:14:ab:b1:e2:e1:a8:54:8d:12:2b:
c1:9b:a0:a1:9d:78:1b:61:32:a6:46:12:08:d8:a2:8e:f1:1e:
2e:99:7a:43:f0:c0:7a:f1:d6:bd:38:d0:20:e9:ea:1a:f8:06:
8f:30:7d:04:b9:9b:c9:0f:0c:41:d1:be:1a:a3:2a:68:37:c2:
dc:52:83:a5:7b:cd:fd:79:26:e4:b3:97:a7:34:59:e8:df:bd:
34:aa:f4:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 14:05:03 2024 by rpki-client on console-fra.rpki-client.org