Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/fpUW3N7D1aCCo803O1lgE3MqEYc.roa
File: fpUW3N7D1aCCo803O1lgE3MqEYc.roa (raw, json)
Hash identifier: x2JjUyGtLFeT/25vlbUm19K+uLKExzQfIMYRgexE5FA=
Subject key identifier: 7E:95:16:DC:DE:C3:D5:A0:82:A3:CD:37:3B:59:60:13:73:2A:11:87
Certificate issuer: /CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Certificate serial: 01940AEEA3099652B25D7B929F4BA8C010A4
Authority key identifier: 42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/fpUW3N7D1aCCo803O1lgE3MqEYc.roa
Signing time: Sat 28 Dec 2024 01:43:18 +0000
ROA not before: Sat 28 Dec 2024 01:43:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 217.147.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:47:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:0a:ee:a3:09:96:52:b2:5d:7b:92:9f:4b:a8:c0:10:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Validity
Not Before: Dec 28 01:43:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e9516dcdec3d5a082a3cd373b596013732a1187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:78:9d:98:fd:0a:ee:b2:48:11:25:a7:63:20:
25:1a:8f:6d:b4:ef:c0:9f:f9:a3:8b:3a:d0:c4:81:
ba:5e:81:34:67:64:01:7a:4a:ac:47:23:34:1b:f2:
41:14:90:e1:91:db:7a:fe:60:26:8a:91:82:ac:05:
b6:1f:a8:7a:3d:43:b1:20:95:fe:00:f0:5b:ed:7c:
24:24:98:a5:03:dd:7c:4a:50:f9:6a:05:75:d6:b9:
d9:c1:96:59:47:ee:13:f8:50:6e:b1:f8:a9:a0:09:
c3:85:ca:a4:e0:ac:a1:4d:d3:c5:5c:b0:21:0e:dd:
7a:08:16:bc:15:b0:d3:e1:d7:3d:51:b4:6b:50:69:
5c:22:4e:dc:03:2c:8e:5e:8c:cf:57:8a:ce:49:05:
0d:81:28:04:93:91:66:30:e4:15:fc:a8:5b:44:0b:
0b:4a:33:41:a1:5d:ad:b7:fe:98:64:80:47:2b:3a:
71:c6:6f:7d:ab:57:87:c9:46:ca:78:6c:62:67:10:
83:7c:44:34:fa:a3:9c:dc:67:6d:99:94:18:c7:db:
2a:99:bb:c6:d5:05:c4:93:32:4f:ad:63:f6:43:b2:
22:f2:92:f3:59:95:f2:7d:d7:34:9a:97:ea:d1:94:
5c:c2:95:64:18:0c:72:45:16:c9:64:14:0c:f2:fd:
a8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:95:16:DC:DE:C3:D5:A0:82:A3:CD:37:3B:59:60:13:73:2A:11:87
X509v3 Authority Key Identifier:
keyid:42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/fpUW3N7D1aCCo803O1lgE3MqEYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/QvirK6JIeeRcRFSG_Oshr0ZlbVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.166.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:cc:97:4a:40:48:8a:b0:d5:97:e6:67:2c:da:4b:66:ae:e4:
90:96:55:6e:45:77:3b:69:44:ae:cc:32:42:8f:03:22:2a:cb:
08:17:64:65:94:cb:ac:72:be:94:99:0b:d6:d3:05:86:12:a8:
fb:0a:7a:3c:e2:53:ec:c1:2f:e5:df:7f:d9:a4:cc:56:32:10:
ba:36:ee:3d:1b:55:1c:12:fc:00:e3:e1:1c:d7:ab:92:09:43:
06:bf:6f:89:6e:a0:24:f3:a6:77:dd:4e:76:f8:45:b3:23:f2:
84:64:70:38:21:56:82:e6:3a:6f:37:42:c2:5b:3a:43:4c:a3:
05:b3:e9:da:c1:16:3a:5a:d2:d1:f1:ef:72:95:39:51:dd:d4:
1d:cd:b3:f4:ef:5b:1b:41:01:36:35:40:37:7d:74:89:9c:47:
cc:45:5f:97:2b:16:34:f2:25:72:3e:e6:a7:a3:87:e6:10:eb:
5c:c5:6e:b0:27:e6:29:d1:f2:36:65:e8:85:a3:86:af:26:25:
7a:31:ad:7a:83:3b:bd:d3:65:33:23:02:49:60:02:37:7f:57:
3f:6c:b9:df:32:fc:a2:d9:a6:6d:63:04:67:6c:50:f6:e5:46:
aa:57:fb:08:a3:e0:c2:e0:5a:71:85:81:c7:5f:78:c9:13:ca:
f7:9a:14:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:35:24 2025 by rpki-client