Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/RmfNTbAAJr_y4oiSl-Tapjf-B5Y.roa
File: RmfNTbAAJr_y4oiSl-Tapjf-B5Y.roa (raw, json)
Hash identifier: DubgHh3LSfaabC8r0qgfZH9APs/Io37Awz+qwMhAYl0=
Subject key identifier: 46:67:CD:4D:B0:00:26:BF:F2:E2:88:92:97:E4:DA:A6:37:FE:07:96
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 01857015450B178061585A9431B60640B6B6
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/RmfNTbAAJr_y4oiSl-Tapjf-B5Y.roa
Signing time: Mon 02 Jan 2023 01:25:20 +0000
ROA not before: Mon 02 Jan 2023 01:25:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59831
IP address blocks: 217.78.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:45:0b:17:80:61:58:5a:94:31:b6:06:40:b6:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jan 2 01:25:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4667cd4db00026bff2e2889297e4daa637fe0796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:dd:f2:92:e9:2a:6f:7a:34:c2:a2:1a:0f:01:
49:d1:62:e1:0c:9a:36:2e:fc:48:67:6f:86:80:ef:
02:72:4a:41:63:21:05:93:ac:24:ca:64:d2:7f:7f:
d4:cf:7e:cb:b3:21:41:15:93:e9:c2:3a:b2:59:4b:
0e:6a:51:5f:76:95:21:c4:e3:da:4b:ca:da:0b:7c:
9b:b6:e2:e1:a3:81:6d:4d:42:f5:d1:73:6c:1c:be:
a1:5b:1b:37:ef:0a:cf:8f:13:18:1a:10:fa:54:3f:
54:8d:58:0d:e0:72:b8:73:c9:6a:a1:26:b9:b5:7b:
af:f8:80:c1:5d:c6:e1:80:bd:56:b9:0d:fb:ec:94:
01:d8:b1:39:2c:d2:61:f0:ab:89:f6:a2:15:18:18:
cf:2f:ec:e9:9f:f2:af:2e:40:48:7a:69:27:04:9a:
78:51:c6:9d:85:93:82:5c:05:0e:aa:89:af:e4:55:
0f:c7:9d:b4:e5:da:e8:37:c5:58:9f:86:4f:bf:12:
40:95:c4:a0:8e:4b:04:63:7f:55:59:6b:b7:90:17:
f0:0b:56:6b:01:78:fe:2e:a8:98:06:24:aa:6d:32:
97:88:d6:9e:9b:20:cc:6c:bc:06:c3:dc:90:2a:23:
1e:73:06:ff:ad:a3:a1:97:7c:91:d2:13:22:5d:aa:
65:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:67:CD:4D:B0:00:26:BF:F2:E2:88:92:97:E4:DA:A6:37:FE:07:96
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/RmfNTbAAJr_y4oiSl-Tapjf-B5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.78.235.0/24
Signature Algorithm: sha256WithRSAEncryption
50:58:b1:36:17:06:38:39:f0:52:11:ee:a0:ca:4c:d9:e0:73:
83:63:96:af:8d:37:f1:d5:c3:38:43:85:05:17:78:ed:68:31:
3c:89:22:2e:7f:95:fb:29:89:1d:dc:e5:0d:e1:fe:bc:2d:99:
af:b7:10:cd:e2:67:96:e3:eb:64:dc:be:a4:34:9b:db:69:39:
21:8a:9e:68:79:e9:2d:41:cd:60:6b:f5:4d:b9:63:a7:f5:00:
ff:1c:41:0e:2e:83:c0:93:7b:9f:f4:7f:16:f6:85:32:28:57:
63:b6:7c:f0:09:55:90:08:38:99:f9:77:92:7c:01:de:01:78:
34:ec:90:ca:e1:e3:17:43:80:f1:c2:22:48:77:21:d4:3b:35:
d1:7b:5b:42:90:01:b8:99:c4:c3:a1:83:63:06:b5:cd:bf:f3:
cf:ca:3e:30:c5:09:58:64:0f:17:70:6f:db:d3:a8:dc:43:a4:
34:4e:af:a0:ab:c1:4f:9d:88:b2:ec:8a:46:64:ba:da:e2:28:
7a:f2:9f:63:a3:0b:eb:d4:68:e4:88:06:e0:e2:9c:bf:23:46:
64:45:32:1b:f8:b9:1f:4c:36:3e:2d:d2:ed:4a:90:19:d5:44:
51:72:32:39:6c:83:a3:e4:0b:d2:cb:f8:f6:f4:84:bc:2a:79:
d0:85:f6:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:51 2024 by rpki-client on console-fra.rpki-client.org