Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/5fbd09-0a61-421c-9c36-05b3b9709f09/1/DJEgGrGyi2Bw7vYywqA2js4jMIM.roa
File: DJEgGrGyi2Bw7vYywqA2js4jMIM.roa (raw, json)
Hash identifier: 7Xiv1PLeOZwomDiG0GwCkmCy1r8DXRGXSD7ZjoZzFWU=
Subject key identifier: 0C:91:20:1A:B1:B2:8B:60:70:EE:F6:32:C2:A0:36:8E:CE:23:30:83
Certificate issuer: /CN=ed6518c426cfc4082fb92ec740d7c3c78825563b
Certificate serial: 01856FE714576A0019CA7B5B8C54E342C2C0
Authority key identifier: ED:65:18:C4:26:CF:C4:08:2F:B9:2E:C7:40:D7:C3:C7:88:25:56:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7WUYxCbPxAgvuS7HQNfDx4glVjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/5fbd09-0a61-421c-9c36-05b3b9709f09/1/DJEgGrGyi2Bw7vYywqA2js4jMIM.roa
Signing time: Mon 02 Jan 2023 00:34:53 +0000
ROA not before: Mon 02 Jan 2023 00:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50090
IP address blocks: 217.74.24.0/24 maxlen: 24
217.74.27.0/24 maxlen: 24
217.74.28.0/24 maxlen: 24
217.74.25.0/24 maxlen: 24
217.74.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:14:57:6a:00:19:ca:7b:5b:8c:54:e3:42:c2:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed6518c426cfc4082fb92ec740d7c3c78825563b
Validity
Not Before: Jan 2 00:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c91201ab1b28b6070eef632c2a0368ece233083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:26:21:c1:d5:90:1d:1e:28:27:03:b3:64:0b:
74:6c:5b:cb:a7:99:24:2c:09:fb:97:15:0b:76:bc:
1a:f3:5f:98:03:bf:6f:58:c4:8f:47:e1:df:ee:67:
67:97:bd:aa:44:01:09:43:46:b3:8f:a3:01:91:79:
cc:af:22:8e:95:e0:e8:ba:e3:f1:88:a5:f0:88:11:
79:15:fe:34:9d:23:c0:f0:51:6c:37:12:dd:ab:64:
1b:40:81:bc:30:1b:63:fb:7e:14:d7:2f:ef:9c:1e:
1a:de:aa:64:54:30:ff:7a:29:e6:17:69:82:f0:19:
2a:c9:f6:b7:64:5b:14:05:16:07:0f:3c:02:9f:27:
5e:3d:85:f7:bd:a3:63:68:64:2f:a5:a2:58:37:eb:
6c:7e:80:e9:40:a1:b3:fe:14:62:89:67:4f:c7:46:
b3:87:d3:28:c6:78:82:b9:e5:e3:fb:62:e1:7b:08:
43:d5:83:95:ac:d2:aa:78:59:1e:9c:a3:53:d6:9f:
d9:3b:5f:f8:ef:e6:74:39:8c:dd:c1:de:a4:54:2b:
37:2d:7e:b4:48:84:14:b6:62:cd:ee:81:79:50:81:
bd:3b:da:69:0a:ec:8f:be:90:6c:0c:69:9c:57:a7:
a7:d1:ce:e1:0b:56:db:21:ec:38:19:d9:bc:f8:08:
83:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:91:20:1A:B1:B2:8B:60:70:EE:F6:32:C2:A0:36:8E:CE:23:30:83
X509v3 Authority Key Identifier:
keyid:ED:65:18:C4:26:CF:C4:08:2F:B9:2E:C7:40:D7:C3:C7:88:25:56:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7WUYxCbPxAgvuS7HQNfDx4glVjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/5fbd09-0a61-421c-9c36-05b3b9709f09/1/DJEgGrGyi2Bw7vYywqA2js4jMIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/5fbd09-0a61-421c-9c36-05b3b9709f09/1/7WUYxCbPxAgvuS7HQNfDx4glVjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.74.24.0-217.74.28.255
Signature Algorithm: sha256WithRSAEncryption
02:4b:16:78:46:09:b1:93:83:66:22:dc:f0:3b:b7:7a:1c:96:
ef:63:4d:46:a8:fa:fe:3e:f1:09:0f:9f:a5:93:1e:56:b2:32:
48:44:61:46:70:29:d5:0d:88:cf:e4:94:e2:43:39:72:a0:11:
f5:e6:68:c9:a0:01:b0:28:3c:43:92:19:42:f4:d9:53:2a:02:
7f:46:f1:c4:3b:fd:53:5a:cf:ea:8a:7a:86:05:9b:94:d3:a3:
c0:39:d9:91:ef:da:45:58:ea:ae:8d:04:1b:e6:35:3a:fa:b5:
ae:ad:65:4c:1d:ff:cd:73:45:ab:c0:3b:5b:c6:1f:74:97:c0:
3c:09:e0:7d:7f:95:9b:5a:b9:17:de:bc:88:f5:ed:02:ce:50:
57:d1:7e:36:39:17:a7:4e:75:ff:9a:fb:d2:c4:28:e3:93:68:
e0:db:05:9e:33:d7:1f:5e:01:0c:e1:7a:fd:30:90:f5:8f:84:
2b:a4:c0:e0:05:bc:38:14:c8:76:8b:3c:25:f3:0d:72:d2:d9:
c7:ea:c3:38:09:90:60:17:f5:da:98:eb:c1:48:50:c9:29:fc:
9e:d0:6b:ee:e5:f3:3d:3c:10:43:e7:38:cf:3a:7b:b0:10:93:
f5:5e:c8:e2:20:d5:2f:e1:8f:9f:df:d7:b4:5c:62:20:f7:d9:
ab:97:15:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:16 2024 by rpki-client on console-fra.rpki-client.org