Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/T9yyRPqVc2Of2NpDQjHlTFWcnO4.roa
File: T9yyRPqVc2Of2NpDQjHlTFWcnO4.roa (raw, json)
Hash identifier: vlAJbaCZ0paoPMS2vF3dO1yDXV0PhjMNi9EtuxIil/U=
Subject key identifier: 4F:DC:B2:44:FA:95:73:63:9F:D8:DA:43:42:31:E5:4C:55:9C:9C:EE
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0185701543C1D2A4B5D2B60BD4F725AE57C2
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/T9yyRPqVc2Of2NpDQjHlTFWcnO4.roa
Signing time: Mon 02 Jan 2023 01:25:19 +0000
ROA not before: Mon 02 Jan 2023 01:25:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24940
IP address blocks: 217.78.237.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:43:c1:d2:a4:b5:d2:b6:0b:d4:f7:25:ae:57:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jan 2 01:25:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4fdcb244fa9573639fd8da434231e54c559c9cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:a1:21:a5:d1:48:b3:71:74:c9:6d:c2:f9:a1:
79:a0:75:8b:4c:0a:73:08:d2:cd:b0:cc:92:76:a3:
6c:da:3a:37:5f:0f:b4:ba:67:66:e3:b6:ff:b9:8d:
8e:31:12:ae:f9:7e:11:b7:ff:f9:e4:4b:47:1c:30:
de:9c:ca:53:5d:0b:d0:c8:3f:5c:e9:e7:a2:5a:8e:
36:c2:5c:41:78:bd:6f:e4:9c:28:20:8b:45:2a:e1:
3d:51:15:c4:53:d5:cc:a7:9f:d7:be:73:de:7c:4d:
88:00:66:bc:03:a4:66:9f:bb:f6:74:83:80:26:81:
2f:4d:37:67:17:4c:3d:fd:63:77:9a:89:1c:cb:c3:
f4:ca:36:92:4e:7b:6b:88:c9:4e:bb:d4:91:65:13:
16:e9:77:e7:68:0b:d0:23:e2:ba:36:8f:d7:cc:d6:
89:e2:45:8f:e3:9d:58:98:32:3b:e2:ee:bf:b5:42:
47:f7:a0:1c:5d:76:76:ff:e7:32:ff:4d:8e:d8:5a:
82:fa:c2:56:55:0d:05:38:66:60:4b:86:0d:ed:56:
2e:04:a1:7e:67:9e:69:b2:e7:04:d6:82:2e:bd:4e:
7f:87:b9:97:0b:72:bb:2e:d5:d9:ad:3e:6b:35:eb:
bc:d5:25:0a:93:b7:7a:ce:32:1d:26:3c:e6:c1:7c:
df:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:DC:B2:44:FA:95:73:63:9F:D8:DA:43:42:31:E5:4C:55:9C:9C:EE
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/T9yyRPqVc2Of2NpDQjHlTFWcnO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.78.237.0/24
Signature Algorithm: sha256WithRSAEncryption
36:68:c3:0b:21:50:dc:27:93:e5:ae:85:05:18:e9:fe:a5:90:
51:ae:18:76:08:43:33:64:5a:a0:f5:8a:11:17:4c:b8:f8:60:
28:fa:38:0c:28:f4:e6:1b:d5:c6:cc:44:ad:06:0e:fb:cf:51:
18:09:a9:18:2f:21:f3:cb:d2:17:db:ff:b4:8f:bd:44:39:2c:
06:25:fe:48:62:dd:c8:62:49:dc:88:65:fe:55:08:36:ec:cd:
e7:96:de:15:0d:f3:94:31:5b:78:7e:99:61:78:54:f1:75:42:
44:0a:dc:62:e0:20:c3:3e:56:07:6e:72:5a:bd:f1:56:4f:eb:
6b:4b:5d:bc:75:c1:27:87:7d:8a:85:35:6a:d4:65:47:65:c4:
6d:ff:24:bb:20:93:e0:1d:e1:8d:d6:87:a6:e8:5e:0e:d2:07:
49:c5:8c:bd:eb:9c:62:9f:6e:2e:67:8c:28:9e:34:08:38:ec:
fe:f7:91:2f:3b:6d:98:a8:eb:a4:74:c5:77:23:28:82:a1:ee:
cf:cd:e7:9c:c1:7f:46:d7:67:eb:87:3c:ff:40:cb:a7:9e:4e:
cc:03:77:18:3d:70:d1:aa:e6:da:93:9b:de:13:c0:86:54:a8:
f6:ba:6f:c9:28:d0:f4:74:ed:ca:da:ce:e2:f1:cd:4b:b6:2f:
7a:3a:9f:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:38 2024 by rpki-client on console-fra.rpki-client.org