Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/e8ujDxpD6WAuyt-YJLps6_ocFV4.roa
File: e8ujDxpD6WAuyt-YJLps6_ocFV4.roa (raw, json)
Hash identifier: PL0GUaa2D34QUDEhiqkxIT/I44zOzEP3NMcsDHysTvo=
Subject key identifier: 7B:CB:A3:0F:1A:43:E9:60:2E:CA:DF:98:24:BA:6C:EB:FA:1C:15:5E
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 018570707BD1B989D731952100F0E51A1A66
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/e8ujDxpD6WAuyt-YJLps6_ocFV4.roa
Signing time: Mon 02 Jan 2023 03:04:57 +0000
ROA not before: Mon 02 Jan 2023 03:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 217.25.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Feb 2023 18:16:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:7b:d1:b9:89:d7:31:95:21:00:f0:e5:1a:1a:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: Jan 2 03:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7bcba30f1a43e9602ecadf9824ba6cebfa1c155e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:12:3b:76:07:84:4f:f0:4a:78:66:b1:f5:50:
57:77:be:4b:ae:41:6c:74:d3:d2:af:2e:d9:dc:9f:
e1:0f:10:4b:62:52:38:9e:28:4a:e3:95:33:27:f5:
05:94:a8:2f:0c:38:59:98:f3:52:28:68:14:20:9e:
00:89:6b:73:b4:ff:55:5b:46:10:90:6b:b7:9e:3e:
ff:00:f5:1f:3b:91:79:b7:a2:44:81:d1:ba:f7:09:
f8:93:5d:a2:8a:06:ef:9e:68:38:dc:8f:4d:21:bf:
d0:be:f4:52:20:d9:c6:af:2c:f5:69:40:ce:b7:34:
3b:00:06:c2:ea:f9:f8:a9:17:e2:ce:f5:d8:cf:2e:
03:6d:14:b7:69:97:52:c8:27:16:96:6d:b5:b0:85:
0f:7c:2f:03:3e:c2:54:89:65:f9:74:83:a8:a4:5a:
63:97:3c:0b:09:b9:25:19:7f:73:c5:71:ac:ce:f8:
09:39:1c:d6:2f:ca:86:4c:4b:6b:67:f4:a6:12:88:
55:db:60:3c:2a:15:4d:35:12:b1:de:c9:c6:23:1e:
d8:86:fa:f7:d8:1f:05:82:78:98:67:0d:81:89:34:
53:e7:85:d7:06:4e:fb:b9:9f:f4:e8:8f:59:5f:52:
f5:38:83:6b:37:22:dd:28:d1:70:6b:3a:7e:8e:c0:
89:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:CB:A3:0F:1A:43:E9:60:2E:CA:DF:98:24:BA:6C:EB:FA:1C:15:5E
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/e8ujDxpD6WAuyt-YJLps6_ocFV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.25.12.0/24
Signature Algorithm: sha256WithRSAEncryption
54:a8:f4:d2:c7:44:37:3f:12:75:bf:f5:f5:c4:7f:ff:11:bb:
54:27:23:e4:8a:e9:dc:07:fb:2e:42:8b:4e:c8:ae:31:0b:f0:
61:1a:2e:59:37:62:14:fe:65:a6:33:eb:8b:3e:1f:95:61:ad:
7e:1f:fd:72:fc:85:2e:2c:50:f7:a4:8f:39:0c:13:9c:f3:0d:
b7:6d:90:ee:41:54:70:49:bc:a3:56:1b:95:4a:67:eb:ed:8e:
1c:92:47:33:76:7f:8c:5a:e1:7f:02:8c:70:9d:bc:28:f5:f2:
6b:fc:a5:fb:15:0f:86:d9:77:27:05:43:7f:8a:fd:57:60:3b:
23:84:97:ec:76:53:00:0d:94:fc:11:98:6f:4e:f9:c6:07:43:
33:e2:22:8f:41:2f:68:36:18:9a:cc:ed:83:6c:37:80:2f:8a:
1a:ed:10:7c:8f:db:2e:c5:2b:54:9b:86:32:1e:b1:50:9a:d6:
84:5a:05:13:44:ff:2a:32:40:ca:27:92:46:c5:84:f5:8f:c4:
5e:91:b6:05:e0:0d:90:a2:00:c7:2b:a3:f5:36:c7:46:e0:50:
ef:5f:f9:29:1b:8a:5f:2e:63:5d:79:21:a0:10:5d:9d:bf:a5:
6d:72:85:94:90:45:90:98:ff:1c:93:d4:ae:1b:b6:c1:9b:eb:
34:71:3e:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:04 2024 by rpki-client on console-fra.rpki-client.org