Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/KLPtzBTaw5H2DFJGQUVBOX9yG4c.roa
File: KLPtzBTaw5H2DFJGQUVBOX9yG4c.roa (raw, json)
Hash identifier: qC7faXOVhXZsmJAK+M1SB6pKcWgVlqgBOGzwC92vCLA=
Subject key identifier: 28:B3:ED:CC:14:DA:C3:91:F6:0C:52:46:41:45:41:39:7F:72:1B:87
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 0190F9F1FFA51C32F32E350A349067ADAD12
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/KLPtzBTaw5H2DFJGQUVBOX9yG4c.roa
Signing time: Sun 28 Jul 2024 15:25:04 +0000
ROA not before: Sun 28 Jul 2024 15:25:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 18779
IP address blocks: 217.180.12.0/24 maxlen: 24
217.180.13.0/24 maxlen: 24
217.180.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Aug 2024 07:08:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f9:f1:ff:a5:1c:32:f3:2e:35:0a:34:90:67:ad:ad:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Jul 28 15:25:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=28b3edcc14dac391f60c5246414541397f721b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7c:03:81:d5:d4:02:d1:3d:7a:d1:5d:2b:17:
1e:6c:ac:a1:d4:3c:54:af:7f:1d:bc:ee:28:e7:31:
fc:b5:6f:04:b7:2d:58:29:b0:ae:e7:e3:ca:b0:ed:
a9:7a:f9:66:bc:c4:d3:be:bc:af:c2:95:e4:db:91:
f2:2b:d9:97:b8:a8:96:b3:7c:7f:8c:2c:fe:59:cc:
1d:71:0e:b2:0b:98:cb:ce:36:e8:00:2c:a4:93:ab:
6b:ea:a8:ea:7f:5b:d2:70:15:4a:bb:4d:4a:ba:e4:
ea:7c:d2:0e:18:d1:d6:42:17:34:05:19:b1:c5:a6:
43:3b:99:24:10:84:9d:3d:51:c7:a1:cb:fc:cf:c6:
3f:b0:63:41:63:64:64:06:ea:58:c4:56:1a:57:0a:
c8:18:78:6e:ce:0d:b5:e4:af:ec:e0:36:b1:3e:79:
9b:90:81:6d:55:99:e1:57:3c:22:72:9c:e3:ba:61:
9d:c6:8a:7b:98:c4:06:cf:b5:c3:f7:2f:2f:6f:46:
3f:f1:35:77:14:34:7e:72:a1:69:8b:f9:05:ae:7e:
b2:1d:7c:e5:7b:ac:b8:b8:9b:4b:9a:69:f1:b9:70:
4e:42:22:21:a3:af:76:ec:35:ff:a0:7e:a7:e5:26:
4f:3b:c1:0a:ad:6a:01:1b:b7:f1:6b:03:a6:35:a0:
15:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:B3:ED:CC:14:DA:C3:91:F6:0C:52:46:41:45:41:39:7F:72:1B:87
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/KLPtzBTaw5H2DFJGQUVBOX9yG4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.180.12.0/23
217.180.15.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:50:16:44:9a:bd:50:d4:9e:fa:13:76:29:bc:a4:4c:78:da:
f3:7d:fb:1c:4f:7a:c0:4e:89:ad:4b:d1:f5:fb:37:fe:0d:5b:
43:47:a4:13:ef:f2:a9:e0:dc:ac:a3:fd:29:9d:64:bb:fb:00:
d4:85:89:9f:ba:12:d8:df:b5:31:10:9a:41:3a:c0:d7:6b:e9:
92:05:bb:93:cc:1b:9c:63:ba:20:d5:c1:c7:86:9b:cd:bc:3b:
0f:58:06:f1:27:36:68:ed:ee:56:23:ec:ff:de:a0:de:35:e8:
e2:73:66:b6:31:ad:75:52:5f:8f:1b:e3:64:55:c3:9e:ec:53:
42:85:9f:9d:3b:5a:9a:a2:8b:80:5e:f5:29:b9:2e:01:3d:00:
57:aa:94:33:5f:a7:ed:17:c3:0d:fd:ab:12:d5:44:04:35:e0:
06:31:8d:7a:b7:82:08:b2:71:81:93:c5:28:3c:7b:e6:47:41:
b8:cb:c3:8f:8b:4f:ca:86:48:bf:e2:26:73:c6:82:75:ce:f6:
ee:c2:98:bc:e1:ab:82:6b:47:bc:a9:b0:29:7d:e6:38:e5:c1:
d2:3a:3e:56:0d:1b:d9:84:b5:d0:8a:90:21:40:3b:6e:5c:ea:
63:ab:fe:4b:90:7b:81:43:f9:e4:50:7d:16:77:fa:fa:22:65:
c3:b5:f8:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 6 09:30:04 2024 by rpki-client on console-ams.rpki-client.org