Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9f5f57-e828-4bcf-8d2b-8eab7f4fe77e/1/JiTu037MJZbkIBfh33SzHXxfuC4.roa
File: JiTu037MJZbkIBfh33SzHXxfuC4.roa (raw, json)
Hash identifier: 2wFeONt2l6WdNnRcDyyyMzrXg4ht4jrzpiQVCZMQ/nc=
Subject key identifier: 26:24:EE:D3:7E:CC:25:96:E4:20:17:E1:DF:74:B3:1D:7C:5F:B8:2E
Certificate issuer: /CN=4dd74fbbbae58dd0876d99e80ec82a11a4477f7e
Certificate serial: 019193B733352CFEAEB07ABCC8484767FC21
Authority key identifier: 4D:D7:4F:BB:BA:E5:8D:D0:87:6D:99:E8:0E:C8:2A:11:A4:47:7F:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TddPu7rljdCHbZnoDsgqEaRHf34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9f5f57-e828-4bcf-8d2b-8eab7f4fe77e/1/JiTu037MJZbkIBfh33SzHXxfuC4.roa
Signing time: Tue 27 Aug 2024 12:02:22 +0000
ROA not before: Tue 27 Aug 2024 12:02:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209596
IP address blocks: 109.162.240.0/21 maxlen: 21
213.207.224.0/21 maxlen: 21
Validation: Failed, certificate revoked on Sat 16 Nov 2024 06:11:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:93:b7:33:35:2c:fe:ae:b0:7a:bc:c8:48:47:67:fc:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd74fbbbae58dd0876d99e80ec82a11a4477f7e
Validity
Not Before: Aug 27 12:02:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2624eed37ecc2596e42017e1df74b31d7c5fb82e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:98:48:7a:80:dc:70:14:69:20:2d:da:ef:3e:
d5:81:8a:0f:f9:8c:1a:78:0c:84:e8:4f:97:f3:b2:
71:ff:e5:91:d3:c2:85:99:df:70:27:8b:ed:05:d9:
a8:4e:cc:28:69:c2:76:54:ca:13:36:88:b6:40:96:
ce:82:3c:07:49:67:d6:f0:9c:7a:77:32:76:24:af:
ff:c6:de:a2:38:61:00:85:f9:e6:af:fb:25:6c:e7:
56:aa:47:94:b0:1d:e6:72:7f:4d:70:04:43:0a:a8:
e2:25:74:5e:22:b6:21:66:85:fd:55:20:10:14:e8:
68:ad:92:50:c5:32:ec:4d:b6:42:a0:e3:f1:d2:9c:
f2:57:2c:2d:ee:1b:7e:67:aa:4d:e0:83:7e:eb:96:
07:a1:1b:b5:7c:7f:37:54:af:42:b6:8b:b1:b9:32:
9f:ba:9f:10:33:ac:ac:6a:fe:c4:ef:1d:b6:d1:92:
ec:f8:fe:9e:75:55:d6:0f:30:05:ed:f8:0d:28:b7:
14:31:0f:cb:69:47:dd:f4:cb:72:95:c7:5c:bc:5c:
f0:10:62:03:ea:d8:13:cc:ba:12:14:b4:eb:4c:2d:
63:9c:69:eb:c8:ef:e2:96:12:d5:b6:4d:b1:9d:25:
31:5a:4e:f2:50:ef:b9:5e:84:77:28:6a:0f:ab:d2:
74:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:24:EE:D3:7E:CC:25:96:E4:20:17:E1:DF:74:B3:1D:7C:5F:B8:2E
X509v3 Authority Key Identifier:
keyid:4D:D7:4F:BB:BA:E5:8D:D0:87:6D:99:E8:0E:C8:2A:11:A4:47:7F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TddPu7rljdCHbZnoDsgqEaRHf34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f5f57-e828-4bcf-8d2b-8eab7f4fe77e/1/JiTu037MJZbkIBfh33SzHXxfuC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f5f57-e828-4bcf-8d2b-8eab7f4fe77e/1/TddPu7rljdCHbZnoDsgqEaRHf34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.162.240.0/21
213.207.224.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:2b:45:96:53:53:d7:bc:be:9f:98:1c:b2:e2:5d:7a:8a:ab:
b8:91:d0:e6:43:23:d7:34:82:af:46:45:61:ee:13:fc:b3:cb:
6f:9c:42:6f:51:86:cb:3b:4a:f6:7c:41:e1:76:98:1d:a3:fd:
f5:42:b0:a0:3b:41:f1:89:81:5c:bf:b3:7a:aa:18:6e:be:e9:
1d:9e:02:3e:19:9a:b1:0a:1f:79:bf:e0:0e:a4:08:6c:fd:93:
3a:18:6e:1d:8e:28:e1:d4:66:b3:95:7f:1c:d1:1c:b5:03:34:
81:05:f6:a0:69:8b:ee:6d:24:ae:9b:29:36:b1:1b:7f:78:10:
37:7c:ae:d8:52:e2:4b:6c:31:6f:29:69:99:e1:3f:e9:f4:83:
c5:5a:c9:26:14:b7:ba:7d:bd:56:6a:51:fa:50:8d:f9:cc:ad:
86:20:ff:8e:fd:83:86:85:9d:30:cd:e2:7f:97:85:12:c2:c8:
22:e8:a5:7b:c4:34:fa:ef:73:7e:8a:50:27:60:2d:9d:b8:0b:
ff:7c:e8:d1:f7:19:95:a6:29:ac:37:d6:08:c0:4e:c4:86:ff:
20:fa:7a:de:41:3b:22:6e:13:dd:84:b1:67:b4:d3:1c:c8:61:
47:33:69:a1:44:8e:e4:46:5e:f8:24:8a:d0:ae:c6:56:f5:c6:
92:2f:3e:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:34:37 2025 by rpki-client