Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/lsEGbM10L4aCg99PJbY2YlrD6aQ.roa
File: lsEGbM10L4aCg99PJbY2YlrD6aQ.roa (raw, json)
Hash identifier: wYgLrAQt1N0DN8VLL4Q51HNJbUcnI4PpRUD2pbKC1as=
Subject key identifier: 96:C1:06:6C:CD:74:2F:86:82:83:DF:4F:25:B6:36:62:5A:C3:E9:A4
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0190F904E06E3DBEEEF92DF090F1545F1ABD
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/lsEGbM10L4aCg99PJbY2YlrD6aQ.roa
Signing time: Sun 28 Jul 2024 11:06:04 +0000
ROA not before: Sun 28 Jul 2024 11:06:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215350
IP address blocks: 217.60.236.0/24 maxlen: 24
217.60.248.0/24 maxlen: 24
217.60.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Sep 2024 04:43:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f9:04:e0:6e:3d:be:ee:f9:2d:f0:90:f1:54:5f:1a:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jul 28 11:06:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96c1066ccd742f868283df4f25b636625ac3e9a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3d:84:4e:d4:35:ea:03:8c:de:af:36:0a:d7:
d2:92:ab:5a:eb:d8:3d:45:51:28:ee:21:f6:99:a3:
60:2c:b1:7e:df:36:96:2d:81:6d:e8:02:8b:18:3f:
80:cc:7c:e7:b9:38:6f:21:47:8a:30:30:c2:05:b5:
93:d7:73:6c:83:1f:ec:57:cc:9f:82:6d:26:5f:a1:
12:45:2f:ca:1f:12:76:9b:0e:4a:c3:32:ad:36:f1:
23:f3:13:3a:74:a0:c4:34:c5:0f:b5:93:09:fc:62:
7d:22:07:f1:be:e3:31:39:cc:a5:0c:19:ce:fd:35:
cc:64:67:71:8f:c7:cb:2c:de:73:0e:de:9b:33:0d:
6f:4b:a9:ba:22:d8:61:4b:8f:ef:11:c1:32:ae:a7:
a4:47:89:da:60:55:ef:30:2c:ab:7b:2c:d0:25:e8:
2e:88:5e:04:12:90:6e:14:b4:99:d2:cd:97:b1:f7:
b4:15:3f:6a:d0:a3:b1:10:69:f8:a7:d2:86:f1:40:
e9:ec:f5:34:89:ec:10:3a:b4:8e:e8:f6:90:c3:b0:
d7:9c:f3:98:9c:a9:2d:45:23:05:a4:38:f3:1d:c1:
b1:cb:a9:5d:a1:7f:4d:be:2c:0a:72:ec:eb:1c:73:
f9:86:fc:f3:32:5f:ae:61:d4:7a:1f:09:fa:5d:fc:
1c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C1:06:6C:CD:74:2F:86:82:83:DF:4F:25:B6:36:62:5A:C3:E9:A4
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/lsEGbM10L4aCg99PJbY2YlrD6aQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.60.236.0/24
217.60.248.0/24
217.60.250.0/24
Signature Algorithm: sha256WithRSAEncryption
95:95:11:b9:ee:93:aa:23:a9:12:e8:2b:3f:74:9e:66:af:f5:
6a:5c:1e:f8:23:d1:bf:2c:37:79:d5:5c:21:36:97:e9:af:e6:
e9:e2:5d:bb:c6:95:0c:70:c1:04:d5:6d:da:46:16:7e:81:cc:
99:b8:4d:db:26:d1:7e:21:86:79:8d:ef:95:00:1f:15:7a:65:
f8:91:82:23:1a:59:27:24:b5:91:bb:ab:19:ff:3c:37:2c:a1:
89:82:d9:0e:c7:fb:8b:fe:be:21:31:1e:7a:09:a3:d5:3e:db:
0c:41:c7:d5:46:17:2c:7b:d5:bc:49:97:3e:c7:43:94:8e:73:
ea:c7:73:6c:57:5d:c5:d7:3e:b7:ee:94:ba:43:d4:4c:aa:9c:
8d:76:7d:d0:dc:88:7e:da:cf:85:3d:83:49:f4:a5:93:db:fd:
c9:79:19:0d:b4:81:b4:25:6f:4b:6c:82:34:f4:eb:18:42:08:
86:a7:74:93:37:52:8f:7e:4d:a5:15:47:4d:ca:c7:9c:d3:0e:
2d:de:11:e0:32:69:42:16:a0:23:c1:ee:55:2c:f5:27:5b:ff:
56:8b:03:1e:64:62:c7:87:d0:eb:7e:c3:39:dd:79:03:77:5e:
7e:62:74:e3:a3:3c:89:d0:fe:cd:a6:57:12:9c:43:73:a7:19:
66:a4:85:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 24 05:55:20 2024 by rpki-client on console-ams.rpki-client.org