Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ctyeGbTq2XNr3YWze38L6vFZYTI.roa
File: ctyeGbTq2XNr3YWze38L6vFZYTI.roa (raw, json)
Hash identifier: aLTzNqDOVDuup/lrtlyQx8uJlgTetsA0uoHii+/WA40=
Subject key identifier: 72:DC:9E:19:B4:EA:D9:73:6B:DD:85:B3:7B:7F:0B:EA:F1:59:61:32
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 0190DC3993F34AD985D1CAB697614ADF9537
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ctyeGbTq2XNr3YWze38L6vFZYTI.roa
Signing time: Mon 22 Jul 2024 20:54:39 +0000
ROA not before: Mon 22 Jul 2024 20:54:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214529
IP address blocks: 84.247.29.0/24 maxlen: 24
84.247.55.0/24 maxlen: 24
84.247.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jul 2024 20:21:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:dc:39:93:f3:4a:d9:85:d1:ca:b6:97:61:4a:df:95:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jul 22 20:54:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72dc9e19b4ead9736bdd85b37b7f0beaf1596132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ee:87:a4:9e:dd:6e:56:84:a6:a9:6c:26:32:
1f:a9:93:ab:85:b9:f2:04:34:79:5c:08:57:3f:1c:
ad:62:74:a1:31:b1:c8:af:13:12:f5:aa:57:3f:79:
3b:c9:2c:c9:2a:b8:6c:c1:c7:b7:ee:00:bf:76:fb:
e8:96:5b:46:6b:05:62:20:b9:04:d7:91:aa:f7:ce:
f2:75:e6:9c:2b:e4:90:86:da:e3:6a:60:90:21:44:
44:1c:88:60:73:ad:4e:d0:81:f4:5a:5d:9b:2c:e1:
ff:3f:ab:f7:b7:00:38:5d:d3:9f:92:fd:e4:97:51:
e0:22:cd:ef:3e:51:14:37:8a:b6:07:00:dc:3b:f1:
0e:1e:f6:67:77:99:0a:4b:ae:fa:b0:08:5f:4b:54:
17:44:f4:35:1e:89:88:ff:4b:e8:80:92:3e:52:ef:
0c:29:e1:bd:47:82:f2:67:ae:ca:4b:c7:d9:cf:92:
42:21:1d:32:7c:6b:65:3d:68:20:d2:11:db:c1:4d:
aa:70:96:db:33:fe:64:01:05:7a:9d:b5:37:ef:02:
83:ab:7e:18:b4:4f:40:25:cf:ca:c5:40:bd:77:f6:
fd:a9:0c:70:a3:54:ba:5c:db:60:0a:83:61:15:d8:
51:6b:c0:f4:d8:19:34:75:6a:89:35:73:6b:65:7b:
c7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:DC:9E:19:B4:EA:D9:73:6B:DD:85:B3:7B:7F:0B:EA:F1:59:61:32
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ctyeGbTq2XNr3YWze38L6vFZYTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.247.29.0/24
84.247.55.0-84.247.56.255
Signature Algorithm: sha256WithRSAEncryption
95:0c:ed:48:00:4c:dd:07:46:a8:5d:45:7a:94:d1:4c:10:ea:
9a:12:d8:94:b9:b5:2b:fe:e5:09:dd:4a:3f:19:69:ff:ca:1b:
3a:44:9f:c0:01:f4:eb:89:b2:b0:ab:c6:ed:6e:17:16:c5:7b:
81:60:e0:fb:49:fb:4a:e8:af:34:d7:76:0c:7a:77:f8:c0:15:
3a:db:a4:d1:d4:77:47:6b:e5:3e:8d:19:fb:eb:1c:81:47:a7:
dd:b2:df:97:11:4d:a9:d0:b0:ac:31:76:ca:97:21:71:9b:0f:
b0:1e:29:35:a8:2c:9a:2a:88:f8:2f:f3:7e:32:5b:2e:90:8f:
f6:c8:45:7d:52:52:1f:fd:6f:ba:01:a7:80:f9:ad:d1:8f:4c:
a7:50:4b:e4:ff:d7:fe:ea:ab:f4:ea:46:4b:d8:40:be:e1:1e:
f0:9b:7e:c3:07:b0:0f:83:06:30:67:1b:36:f5:54:63:12:33:
f9:aa:1c:d8:20:d9:16:70:98:9f:e3:c6:cb:91:3e:2f:79:8c:
75:dd:84:95:74:f7:51:64:58:1a:7d:ae:73:37:98:8c:2d:ab:
4d:f2:ca:4a:a5:ff:ee:86:4e:3b:c7:9f:0d:64:e2:81:4c:e6:
62:a2:69:14:2b:d0:79:af:53:c4:0e:d9:9b:1c:e9:1f:c7:fc:
ab:c2:c6:74
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 24 00:27:29 2024 by rpki-client on console-fra.rpki-client.org