Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/LnxIe-OmomdpcsTMbfKyiA7icRU.roa
File: LnxIe-OmomdpcsTMbfKyiA7icRU.roa (raw, json)
Hash identifier: 0S6Ll2D7ceHTirhfNIKSCoIXt4FmSWHOkvoDC9s+b1o=
Subject key identifier: 2E:7C:48:7B:E3:A6:A2:67:69:72:C4:CC:6D:F2:B2:88:0E:E2:71:15
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 01918A00A1C4586DC59BFA54C9DFD2A4F0FB
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/LnxIe-OmomdpcsTMbfKyiA7icRU.roa
Signing time: Sun 25 Aug 2024 14:46:22 +0000
ROA not before: Sun 25 Aug 2024 14:46:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25135
IP address blocks: 217.180.20.0/24 maxlen: 24
217.180.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Sep 2024 12:48:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8a:00:a1:c4:58:6d:c5:9b:fa:54:c9:df:d2:a4:f0:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Aug 25 14:46:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e7c487be3a6a2676972c4cc6df2b2880ee27115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:57:b5:e4:4f:97:54:52:3c:90:23:dd:97:be:
33:da:12:4e:ae:c2:40:7b:53:a7:ab:58:85:b6:ee:
fc:cc:7c:f4:9a:50:9c:69:30:88:32:6e:02:43:40:
b3:dd:69:a8:28:f0:8c:0b:5f:1d:32:3d:ef:05:1d:
40:ed:da:e6:ce:d9:2e:ba:5c:89:b8:51:ee:7c:cc:
42:15:60:4b:8c:f2:dd:ae:df:37:cb:d2:a2:ce:d6:
f0:3f:a1:12:ad:73:0f:c6:92:60:07:59:5d:77:61:
cb:b0:90:6f:65:73:f5:c6:91:35:e6:3f:ea:ae:bd:
c2:84:5c:fd:43:32:d2:ce:fb:69:b0:da:32:e2:cd:
40:60:df:01:3e:16:91:01:2a:9b:32:69:31:cc:64:
2b:3a:9b:5b:3b:ce:26:d9:35:c6:69:eb:a4:24:4d:
64:16:7f:3e:96:3d:24:1e:59:c9:fc:94:43:15:e3:
1e:73:2c:2a:1f:bf:7b:19:88:1e:51:8e:a9:70:a8:
b1:8a:eb:85:f9:97:78:00:95:5a:ad:5d:9b:a3:a7:
24:0a:67:fe:e5:d1:96:09:c1:4b:f6:9b:35:f9:35:
17:fa:52:12:a8:3f:fd:ef:2a:9c:54:5f:bf:c4:fc:
ad:8b:7d:8a:93:0a:ed:75:14:72:e0:10:64:1c:52:
06:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:7C:48:7B:E3:A6:A2:67:69:72:C4:CC:6D:F2:B2:88:0E:E2:71:15
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/LnxIe-OmomdpcsTMbfKyiA7icRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.180.20.0/24
217.180.45.0/24
Signature Algorithm: sha256WithRSAEncryption
23:94:4f:a2:16:07:cd:d6:f2:8c:b8:9a:9a:fa:64:f4:7b:62:
22:63:3b:07:9d:50:73:b4:c3:c3:60:40:fa:f4:dd:57:25:ea:
22:67:56:0e:db:ce:f1:a8:da:ab:34:bc:3f:55:6c:4f:78:11:
d1:14:20:a5:cf:91:ae:a7:04:a6:26:02:d6:4c:0c:fd:e8:cd:
8e:b2:23:93:d6:1a:bb:27:66:98:02:4d:2e:46:5d:d2:93:79:
cc:45:bf:57:71:6e:d6:ac:37:1b:b5:50:3d:8c:e1:0c:a3:f7:
8d:49:25:20:ad:70:28:77:4e:25:c3:e6:a2:f8:55:d1:67:52:
2d:d6:1c:27:9e:37:ed:2b:89:31:9c:ab:7d:b6:22:ae:d2:14:
73:e9:92:8f:8c:04:e8:73:28:7d:6d:98:b2:5d:4e:bc:39:9d:
7f:74:22:9b:1c:93:f2:01:e2:29:8a:15:d6:0c:74:2a:d7:c4:
9f:93:af:b6:b3:d8:69:78:83:2a:e2:e9:34:c6:3a:6b:dd:4c:
bd:28:cd:45:ed:81:88:f3:e6:7c:b5:65:20:dd:27:e5:fa:01:
8c:48:f8:68:a6:7f:47:35:7c:ab:fd:e1:87:89:99:6d:77:74:
a0:1f:02:2f:e9:1f:0b:05:7e:89:7e:7f:be:a4:94:6b:5a:5f:
2a:d2:7c:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 24 17:14:23 2024 by rpki-client on console-ams.rpki-client.org