Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/5xnZdqK_Mh_EJe9wqhY-dpdFHZU.roa
File: 5xnZdqK_Mh_EJe9wqhY-dpdFHZU.roa (raw, json)
Hash identifier: L+Nrkt7e2X7OmmI7iiwmNZbBqrvcs1Iu+UqiqNQrsBI=
Subject key identifier: E7:19:D9:76:A2:BF:32:1F:C4:25:EF:70:AA:16:3E:76:97:45:1D:95
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 0192241A30892E62C16AD5619D201725EA5A
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/5xnZdqK_Mh_EJe9wqhY-dpdFHZU.roa
Signing time: Tue 24 Sep 2024 12:55:49 +0000
ROA not before: Tue 24 Sep 2024 12:55:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 134176
IP address blocks: 217.177.34.0/24 maxlen: 24
217.177.72.0/24 maxlen: 24
217.180.21.0/24 maxlen: 24
217.180.44.0/24 maxlen: 24
217.180.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Oct 2024 19:59:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:24:1a:30:89:2e:62:c1:6a:d5:61:9d:20:17:25:ea:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Sep 24 12:55:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e719d976a2bf321fc425ef70aa163e7697451d95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:19:5a:58:c4:2f:1f:3e:f9:74:dd:25:a9:d3:
b2:52:5b:8f:e0:70:6b:5b:d4:de:e6:10:c2:2c:87:
1d:7e:8b:32:36:82:a1:ee:d1:31:b1:70:04:68:f9:
67:f6:b5:f3:f3:33:df:70:7e:91:68:b4:3c:b7:57:
14:de:d2:94:ba:ce:6a:0a:7a:96:f2:01:e4:8f:fd:
72:4e:80:59:e8:e3:79:11:ee:ec:36:2f:04:7a:9c:
75:55:f0:b8:28:8f:d2:67:6a:5f:dc:18:77:5f:bd:
81:14:3a:72:1c:d5:79:69:98:69:82:cb:bf:99:40:
04:90:b0:0e:29:11:44:a1:51:cb:87:a1:a2:b2:76:
f4:94:4c:56:1c:0f:d1:09:16:72:25:f3:a5:d9:fd:
8a:2b:28:2b:db:13:b5:97:73:27:38:ae:b6:cb:9e:
7e:94:25:0c:db:39:03:c5:bf:c1:fb:6f:25:44:99:
81:61:d3:53:cc:ae:23:a8:cf:2b:c6:af:f5:c4:ea:
dd:87:2e:e8:ac:9a:d9:41:61:d9:b6:12:37:ae:68:
d5:b6:2d:d7:78:1d:24:61:3f:c0:06:45:db:bd:4c:
76:66:0d:3d:57:db:47:21:77:dc:87:b5:e8:ec:63:
98:68:03:23:04:6f:cf:d5:b1:ee:a6:6d:97:cd:75:
a8:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:19:D9:76:A2:BF:32:1F:C4:25:EF:70:AA:16:3E:76:97:45:1D:95
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/5xnZdqK_Mh_EJe9wqhY-dpdFHZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.177.34.0/24
217.177.72.0/24
217.180.21.0/24
217.180.44.0/24
217.180.47.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:f2:04:10:82:98:f8:4a:55:c8:09:97:ff:bf:c3:94:29:78:
04:05:e5:49:b5:68:83:65:4b:fe:30:ed:ee:2f:96:4c:8d:65:
ed:fb:e8:d9:95:9a:90:d0:36:0c:a6:71:be:9f:5d:dc:10:d5:
a5:1d:c5:55:85:bf:a8:b9:af:8e:16:7d:29:b3:b4:1c:6e:6f:
d5:d4:cf:85:f1:7b:38:76:09:e6:60:7b:a4:c3:9f:7e:c1:95:
0f:fb:9c:55:fa:ad:a0:09:a2:fa:69:67:6d:d2:29:90:56:5b:
cb:ac:33:d8:20:36:1b:cf:95:18:0d:6b:bc:cb:b4:71:ba:39:
51:41:d3:cf:6e:71:bd:a1:18:9e:fd:16:d9:35:5c:7f:14:3c:
a4:3c:f5:b0:12:e1:a7:58:bc:3f:16:d5:42:fa:ff:99:c7:bf:
73:36:f0:9b:7a:e0:e4:0e:b5:68:61:25:df:44:fa:ef:d0:16:
fd:15:8a:64:35:0c:e7:3d:35:57:7b:ba:68:b3:33:12:41:b8:
6e:6b:2d:8c:3a:86:fb:34:c9:80:e5:dd:31:34:63:52:32:a0:
9f:ed:58:3c:98:92:b1:6e:e9:6e:2b:79:a1:c7:2a:3d:1e:ac:
f5:0c:e4:5e:2a:6a:79:09:41:f1:8a:32:75:b5:0d:90:04:7c:
1f:90:69:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 6 21:54:17 2024 by rpki-client on console-fra.rpki-client.org