Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/UbVMjldgEJ_ln46bEivEYIdpRtQ.roa
File: UbVMjldgEJ_ln46bEivEYIdpRtQ.roa (raw, json)
Hash identifier: bO6SlUU5NF8qXn83IeNYo4Ih83xoi57ExSHYGiBpu7w=
Subject key identifier: 51:B5:4C:8E:57:60:10:9F:E5:9F:8E:9B:12:2B:C4:60:87:69:46:D4
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019354CF464179AF49F406374184772ACAB6
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/UbVMjldgEJ_ln46bEivEYIdpRtQ.roa
Signing time: Fri 22 Nov 2024 16:58:10 +0000
ROA not before: Fri 22 Nov 2024 16:58:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215350
IP address blocks: 217.60.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 22 Dec 2024 08:57:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:cf:46:41:79:af:49:f4:06:37:41:84:77:2a:ca:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 22 16:58:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=51b54c8e5760109fe59f8e9b122bc460876946d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:23:69:48:93:e6:1e:19:d8:16:d3:c3:e6:02:
cc:29:af:91:f0:d4:44:32:df:df:32:04:44:e7:78:
a7:23:ce:dd:b2:d4:d4:dd:c1:da:b5:08:34:55:89:
66:1a:44:79:ee:f2:a0:eb:b4:84:a5:ab:f4:03:b0:
15:05:06:c8:46:a7:90:56:bd:ae:ca:dc:d0:64:bd:
f8:60:1c:22:80:6f:84:7d:d6:32:df:51:43:7b:b5:
ca:28:35:9b:77:f2:20:a8:c5:95:7f:a5:9a:9d:25:
0c:7c:5a:93:76:33:9e:4d:f9:38:f5:fb:d7:62:fb:
8d:67:f7:58:3d:f7:18:5f:d7:18:e3:40:ab:42:80:
53:9f:72:4b:4d:33:17:76:21:54:26:fc:49:50:6f:
a7:07:69:c9:04:e8:72:88:f6:fa:cb:f2:ae:e3:94:
be:ba:a8:09:42:df:4a:a4:b1:bb:64:7c:33:3d:08:
61:c6:17:25:66:bf:b2:e6:2a:ed:31:12:7b:60:f1:
54:c7:46:2d:bd:af:55:a0:fd:d1:26:aa:c6:b6:fa:
df:a9:fd:f5:66:54:a3:2e:20:14:8d:15:05:17:32:
d5:c4:20:14:dc:1c:1c:9c:75:b6:0b:96:d6:d9:e4:
92:52:e8:38:b8:18:95:a4:65:e5:6f:30:e8:00:34:
77:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:B5:4C:8E:57:60:10:9F:E5:9F:8E:9B:12:2B:C4:60:87:69:46:D4
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/UbVMjldgEJ_ln46bEivEYIdpRtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.60.236.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:b6:56:e3:f0:76:45:53:c0:d4:84:ef:c2:2e:c3:4a:a8:2e:
d7:ef:ee:af:51:60:b7:e7:a2:2e:ba:04:07:0a:99:09:fe:05:
f5:be:ae:b4:34:bd:ca:bf:07:86:98:dc:79:c8:86:4e:01:54:
fa:4c:6f:af:99:5d:e2:a4:56:1b:b0:32:86:ae:37:5a:f6:d2:
c4:e0:6f:fc:e6:88:63:56:e9:64:68:54:77:07:2f:b3:b0:5d:
91:2f:19:d6:2d:78:f9:63:ea:b5:98:fa:67:43:fd:36:8a:93:
7d:f5:8c:48:0e:5a:e4:90:ca:ad:94:c9:3b:e0:2d:d1:d4:bb:
91:d4:d0:d4:c4:68:ab:de:30:6c:2d:e0:d5:6c:a2:ae:9b:88:
08:0d:0b:1c:20:f3:60:f5:6a:ab:df:eb:2a:ad:0f:24:f2:0e:
b2:ae:05:23:08:10:5d:3e:24:76:60:40:e0:05:66:4e:9f:6e:
d9:7b:3b:57:f4:22:2d:d5:a5:5b:04:73:89:74:aa:66:d6:69:
16:73:cd:4a:29:b3:c7:41:e4:af:7f:b4:02:ba:df:2b:70:61:
ab:32:c3:66:cb:2a:04:e2:89:6e:74:d0:ed:d5:13:46:79:4b:
b6:5d:a4:74:a6:7c:b0:6c:5f:4f:8c:02:e4:d7:7b:86:97:1c:
a8:0b:05:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:47:16 2025 by rpki-client