Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/7rFnWu4qU5OufTMTGJ6UA5q1vVc.roa
File: 7rFnWu4qU5OufTMTGJ6UA5q1vVc.roa (raw, json)
Hash identifier: +0bzPD/jY5/D0ZTWP0nIRDAyGnCKud5s++ud2Q30UVU=
Subject key identifier: EE:B1:67:5A:EE:2A:53:93:AE:7D:33:13:18:9E:94:03:9A:B5:BD:57
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 01928F5651A85E02BDF1C0AF536398BB40E2
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/7rFnWu4qU5OufTMTGJ6UA5q1vVc.roa
Signing time: Tue 15 Oct 2024 08:40:51 +0000
ROA not before: Tue 15 Oct 2024 08:40:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214934
IP address blocks: 217.177.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Oct 2024 13:04:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8f:56:51:a8:5e:02:bd:f1:c0:af:53:63:98:bb:40:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Oct 15 08:40:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eeb1675aee2a5393ae7d3313189e94039ab5bd57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9f:28:85:cd:c0:e0:b2:5b:4b:0b:68:fc:37:
1f:73:c7:a1:9a:4d:e2:37:fe:61:63:24:41:ff:fc:
89:07:20:72:30:c9:e4:da:c2:cb:9a:19:73:e7:16:
b9:78:df:94:47:ed:db:f6:66:f5:5b:02:f1:e0:0d:
3c:b6:02:cb:6c:28:9b:ed:e7:27:0f:b9:eb:2a:8a:
f9:70:f9:10:50:9f:ae:2a:aa:3f:10:66:fa:96:73:
6f:86:92:7b:44:3c:d5:01:76:66:48:29:fe:8b:e4:
81:bb:4b:5e:fb:d2:f3:33:ff:0c:45:b5:70:e3:8b:
6c:eb:39:08:19:88:30:0f:da:ee:7b:6a:21:63:73:
1e:d3:61:7a:ac:fa:23:ab:44:12:56:5f:41:8c:07:
46:02:69:d1:7c:74:7a:f5:99:44:c6:a2:26:a2:04:
e4:3a:e6:63:1b:aa:5c:48:9b:1d:8f:3f:bd:f3:4b:
dd:f6:88:da:79:3d:d2:a9:a8:2a:33:aa:9c:f1:d6:
99:d1:f7:54:97:e0:2d:05:00:40:c1:4f:3b:c7:c6:
09:5c:6c:3f:74:53:a4:5f:77:10:18:2a:c9:92:9d:
b9:d4:81:14:db:03:c0:99:be:03:65:db:a9:a5:50:
55:cc:51:26:06:e6:e1:9e:b5:9b:fd:a1:b5:f4:f4:
14:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:B1:67:5A:EE:2A:53:93:AE:7D:33:13:18:9E:94:03:9A:B5:BD:57
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/7rFnWu4qU5OufTMTGJ6UA5q1vVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.177.74.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:75:79:a1:d1:09:67:04:f3:24:b8:1b:8e:8a:03:7d:b5:b0:
7b:9c:9c:bd:03:54:6d:d7:9f:4d:dc:ba:8c:4c:a9:01:2a:d0:
4e:fe:fb:59:fd:3d:3a:68:9a:60:5a:a9:28:02:e1:41:84:70:
71:1e:cf:0a:42:d2:b3:2c:28:8e:20:46:3f:38:60:32:02:40:
91:13:b0:0f:25:bb:71:f3:a6:da:9c:dc:92:d5:03:ed:5e:15:
77:1c:0b:0f:e4:c6:8e:ec:f4:8e:f0:f2:69:08:03:65:3f:32:
a3:de:b3:01:de:7d:9f:06:e3:5c:43:e7:ed:7b:f9:85:55:2a:
c3:df:92:cf:ed:2e:6b:a8:db:f4:ad:54:02:1a:f0:be:17:02:
b6:e6:09:db:c3:bf:4d:70:88:95:a6:f4:87:8f:2d:49:71:e8:
af:09:83:86:64:de:bc:01:ff:42:fb:54:9e:50:d8:9a:b2:b2:
3c:56:59:2b:59:1a:a1:71:e2:ab:dc:f2:e7:73:d7:75:98:20:
7a:af:8b:7b:c1:a1:4e:7e:85:1a:02:a5:38:60:f4:7a:3f:6e:
77:7c:a9:fe:eb:f4:eb:2c:4c:28:2c:9d:05:4c:67:0b:d0:63:
34:f1:dc:a5:e3:45:e2:9c:bf:11:0c:dd:5d:2d:66:0b:3b:7d:
70:dc:30:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 15:40:34 2024 by rpki-client on console-fra.rpki-client.org