Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/838ef1-7393-4fbd-b67b-664b8f03d180/1/7VyYV7dcBnN0Z64SKZ_Qap6jafY.roa
File: 7VyYV7dcBnN0Z64SKZ_Qap6jafY.roa (raw, json)
Hash identifier: dSX06nMRBFocP7LTIra09vM1NzUNlQyf+Coc6dNBhJY=
Subject key identifier: ED:5C:98:57:B7:5C:06:73:74:67:AE:12:29:9F:D0:6A:9E:A3:69:F6
Certificate issuer: /CN=598fa4201344d4107f792eee2566c62d65714e2d
Certificate serial: 018572959C78509E6F0150029E812D9AF5F0
Authority key identifier: 59:8F:A4:20:13:44:D4:10:7F:79:2E:EE:25:66:C6:2D:65:71:4E:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WY-kIBNE1BB_eS7uJWbGLWVxTi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/838ef1-7393-4fbd-b67b-664b8f03d180/1/7VyYV7dcBnN0Z64SKZ_Qap6jafY.roa
Signing time: Mon 02 Jan 2023 13:04:45 +0000
ROA not before: Mon 02 Jan 2023 13:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207174
IP address blocks: 217.61.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:9c:78:50:9e:6f:01:50:02:9e:81:2d:9a:f5:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=598fa4201344d4107f792eee2566c62d65714e2d
Validity
Not Before: Jan 2 13:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed5c9857b75c06737467ae12299fd06a9ea369f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ba:93:e8:48:da:fc:6e:97:27:d2:f0:bf:05:
91:52:16:ec:47:dc:b1:48:1a:d4:8d:1a:7b:2c:4d:
de:51:9b:89:5a:5c:3c:fe:ca:51:8b:12:27:6f:c3:
34:56:9f:47:29:82:7e:97:ac:b4:91:e3:bc:13:f8:
bb:e2:27:11:d8:be:e5:74:f0:c6:f6:2a:b6:e6:be:
46:2e:99:81:e2:ef:b5:14:02:d1:0a:ae:25:bf:f3:
07:05:31:ca:a0:39:48:3b:62:c6:85:b6:04:41:5f:
64:cb:8e:e5:e7:e4:58:4f:e9:95:78:39:e6:d8:a8:
29:18:ad:ec:be:f4:7f:86:59:37:80:4b:8d:25:e6:
b1:f9:d3:a3:04:4d:4a:e0:14:23:3c:3c:f1:b9:47:
fa:1c:57:18:ba:e5:ae:9f:da:64:76:26:c7:37:06:
d3:81:14:ae:e6:07:62:23:55:89:b6:4e:19:ed:0e:
fd:c0:16:ed:fd:6a:4f:28:d7:6b:52:da:d3:9c:0c:
c4:cc:d8:7e:dd:d6:d2:92:aa:dc:09:aa:ca:b7:2d:
bf:31:fe:17:3b:cc:2f:54:18:db:59:58:60:6a:8b:
1a:27:f9:9c:ee:65:bf:84:23:49:d5:ba:f6:68:48:
d1:4f:43:e7:85:6b:c1:74:0a:3b:18:3e:d7:63:ad:
2f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:5C:98:57:B7:5C:06:73:74:67:AE:12:29:9F:D0:6A:9E:A3:69:F6
X509v3 Authority Key Identifier:
keyid:59:8F:A4:20:13:44:D4:10:7F:79:2E:EE:25:66:C6:2D:65:71:4E:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WY-kIBNE1BB_eS7uJWbGLWVxTi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/838ef1-7393-4fbd-b67b-664b8f03d180/1/7VyYV7dcBnN0Z64SKZ_Qap6jafY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/838ef1-7393-4fbd-b67b-664b8f03d180/1/WY-kIBNE1BB_eS7uJWbGLWVxTi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.61.132.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:4a:de:c0:34:f8:f8:c8:1e:ba:64:e6:2e:db:29:a6:74:df:
b7:dc:3a:99:65:72:be:ca:1a:a2:5d:de:4f:c0:d5:7b:fd:8b:
14:51:63:56:af:87:fc:fa:a2:54:9b:69:57:39:7e:6c:03:ac:
f5:79:c5:99:67:b2:55:5f:97:53:70:46:d0:47:80:aa:0e:9f:
41:7b:20:bf:ec:5d:09:1e:7b:f6:ee:c0:d8:12:bd:51:02:77:
49:52:04:1a:83:36:79:a7:63:e2:5c:4b:fe:33:0e:89:00:82:
ec:8d:08:fe:d8:66:a3:f9:d1:2a:a3:fc:8b:a5:0c:4f:9d:f2:
69:d8:b0:bb:7f:d1:84:ed:c9:ea:8a:eb:be:1d:52:8d:ba:93:
10:5e:b0:22:01:08:9b:e1:23:07:52:4d:2e:d6:56:37:90:47:
aa:3e:5c:f6:ab:29:67:9e:94:62:2b:17:bb:58:ea:62:d1:69:
10:73:da:6a:9d:73:c4:92:f1:d3:4d:94:0b:27:cf:a3:7d:9c:
4b:07:a8:10:a3:fd:9a:64:67:ab:bb:28:c7:df:e2:fb:91:57:
7b:74:3e:7d:49:c8:a7:a1:72:1d:a3:70:3e:9c:a7:40:f6:de:
66:8e:d1:67:37:96:2c:66:41:24:94:f6:49:71:14:5d:56:33:
96:c4:b7:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:44 2024 by rpki-client on console-fra.rpki-client.org