Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/IqEigi1n7Ne2yS9wPM5zcKrZSpM.roa
File: IqEigi1n7Ne2yS9wPM5zcKrZSpM.roa (raw, json)
Hash identifier: fZjfyVjgcO4Ewm65YSqgp8z3ZrUFd7C7VMPqDvOqOgM=
Subject key identifier: 22:A1:22:82:2D:67:EC:D7:B6:C9:2F:70:3C:CE:73:70:AA:D9:4A:93
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 01929081B319B1B5C7B393BD3177356A2B14
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/IqEigi1n7Ne2yS9wPM5zcKrZSpM.roa
Signing time: Tue 15 Oct 2024 14:07:51 +0000
ROA not before: Tue 15 Oct 2024 14:07:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 62.171.228.0/24 maxlen: 24
62.171.229.0/24 maxlen: 24
62.171.230.0/24 maxlen: 24
62.171.231.0/24 maxlen: 24
62.171.248.0/24 maxlen: 24
62.171.249.0/24 maxlen: 24
62.171.250.0/24 maxlen: 24
62.171.251.0/24 maxlen: 24
217.177.32.0/24 maxlen: 24
217.177.35.0/24 maxlen: 24
217.177.75.0/24 maxlen: 24
217.180.12.0/24 maxlen: 24
217.180.13.0/24 maxlen: 24
217.180.14.0/24 maxlen: 24
217.180.16.0/24 maxlen: 24
217.180.17.0/24 maxlen: 24
217.180.18.0/24 maxlen: 24
217.180.19.0/24 maxlen: 24
217.180.20.0/24 maxlen: 24
217.180.38.0/24 maxlen: 24
217.180.45.0/24 maxlen: 24
217.180.58.0/24 maxlen: 24
217.180.59.0/24 maxlen: 24
217.180.61.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Nov 2024 10:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:90:81:b3:19:b1:b5:c7:b3:93:bd:31:77:35:6a:2b:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Oct 15 14:07:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22a122822d67ecd7b6c92f703cce7370aad94a93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3b:b9:f0:05:fc:93:71:d3:8f:70:84:7a:a4:
08:15:62:e9:b0:d5:95:4c:a2:24:a4:77:27:9d:ce:
3d:e7:8b:87:aa:e1:8e:19:33:ca:36:f0:2e:f3:2d:
ae:c0:8c:86:55:e0:5d:d0:6e:89:8a:fa:a5:4a:12:
38:ae:63:11:b4:d5:a9:cb:d5:3f:a6:c6:11:ec:0d:
7e:84:c0:e8:50:b2:72:08:0b:46:96:25:8f:21:df:
05:b8:c9:2e:27:c5:2e:8e:b4:e9:0e:0c:fa:85:6c:
32:b3:05:65:b2:b3:09:18:a0:9e:2f:70:e5:5f:d8:
01:e4:72:b3:87:17:75:a0:5a:d6:f6:a4:6d:7b:d5:
a9:43:b7:8e:ee:cb:3d:dd:e1:b4:e6:c2:4a:8b:91:
fc:da:ee:ef:ec:3e:ef:c0:4f:31:15:44:16:23:2d:
b6:de:45:ad:e7:a7:34:7d:5c:a0:03:77:25:48:ef:
8f:7d:03:da:cb:75:72:7b:01:34:f4:33:cc:03:85:
d7:b9:bc:7f:0b:d5:c3:06:b6:fa:e4:dc:64:d2:1a:
9d:0c:38:9a:f2:d4:8d:88:aa:2e:f0:21:d6:09:ba:
51:fb:02:6b:36:6d:b7:40:2b:09:47:fe:2d:9c:79:
38:7a:41:15:a4:56:4c:3a:2c:10:9f:0a:db:cf:1a:
3e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:A1:22:82:2D:67:EC:D7:B6:C9:2F:70:3C:CE:73:70:AA:D9:4A:93
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/IqEigi1n7Ne2yS9wPM5zcKrZSpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.171.228.0/22
62.171.248.0/22
217.177.32.0/24
217.177.35.0/24
217.177.75.0/24
217.180.12.0-217.180.14.255
217.180.16.0-217.180.20.255
217.180.38.0/24
217.180.45.0/24
217.180.58.0/23
217.180.61.0/24
Signature Algorithm: sha256WithRSAEncryption
75:c2:c5:cd:dc:24:ac:fb:bc:77:8b:2c:e4:bc:d5:be:6f:7e:
81:38:6c:1c:df:d6:f1:09:ed:92:8f:3e:f3:b9:85:49:b2:e1:
60:a3:6d:98:1f:a9:64:a7:ec:4b:11:c1:06:c7:e8:59:f4:d9:
a7:44:21:8c:87:2b:f5:29:2e:ae:c1:c8:09:e7:63:54:5e:0d:
89:02:85:7a:c2:65:62:00:99:cc:e1:c3:74:0c:43:e2:b9:b4:
da:b0:64:c5:6d:84:95:c9:55:c2:32:a1:03:aa:28:58:93:66:
02:2d:31:f0:be:95:a9:78:a7:1a:f9:ba:b0:26:ac:61:2c:ef:
9e:46:66:af:38:e7:b7:43:fe:f3:de:b8:8f:09:53:ec:b9:71:
20:d0:12:5d:69:23:69:b9:af:05:38:6f:a0:fa:a9:45:f0:d9:
ab:d1:ae:98:70:1f:96:6f:58:d5:2d:55:5f:1b:ef:f2:dc:35:
71:d0:03:97:ad:ba:30:8a:f4:ca:77:03:18:a0:67:ec:c0:ec:
ca:9e:ed:03:c7:43:fe:1d:aa:a8:34:bb:4e:66:47:06:1b:d8:
8c:60:41:00:82:5b:60:d7:de:a6:92:8d:fb:d6:94:db:5f:8f:
47:3d:0a:b0:f4:69:ba:22:17:d9:53:b2:05:e1:4c:1d:10:8e:
2c:75:a3:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 12 16:12:37 2024 by rpki-client on console-fra.rpki-client.org