Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/Nc2ipofECWEuVNIE7EHFlhxfhnU.roa
File: Nc2ipofECWEuVNIE7EHFlhxfhnU.roa (raw, json)
Hash identifier: r1xLKCeR1aj5cVA3dZdmahYHzwkf4nVmfMyKjhRrEb0=
Subject key identifier: 35:CD:A2:A6:87:C4:09:61:2E:54:D2:04:EC:41:C5:96:1C:5F:86:75
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 0190251D9674AD3C86D88B9C4E360B3E17DE
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/Nc2ipofECWEuVNIE7EHFlhxfhnU.roa
Signing time: Mon 17 Jun 2024 07:33:34 +0000
ROA not before: Mon 17 Jun 2024 07:33:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214934
IP address blocks: 217.180.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Sep 2024 14:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:25:1d:96:74:ad:3c:86:d8:8b:9c:4e:36:0b:3e:17:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Jun 17 07:33:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=35cda2a687c409612e54d204ec41c5961c5f8675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:2d:1f:77:2f:7f:21:48:53:78:97:90:01:fe:
6c:96:41:cc:38:f5:8b:ed:39:e5:a1:78:58:93:c9:
7f:d1:cf:90:3d:29:81:bb:40:88:de:91:00:74:08:
a4:53:b8:c8:ce:7c:fc:55:78:c5:0b:85:94:39:8c:
7f:48:a3:97:6d:14:ff:58:47:1c:03:ef:4c:1a:84:
8a:c2:9c:74:a7:5c:0c:ad:f2:e4:68:99:9b:5d:f1:
e6:99:0a:fd:20:53:62:95:6a:b8:a1:32:2b:0e:8e:
e5:c9:c3:92:08:c2:00:6b:11:c6:e4:44:8a:9a:61:
e4:e1:6e:77:e1:86:59:c6:e5:64:5e:a5:01:6d:ac:
0f:f9:72:a9:92:70:fc:f2:58:86:d1:ca:33:2d:8f:
0b:65:a4:f6:98:5a:c9:69:54:e4:1f:56:7b:2e:f8:
d9:af:7d:23:d6:c4:64:ee:62:0c:ec:5a:af:93:32:
a5:ad:43:7f:fb:68:a2:73:8a:b8:d9:1b:6e:fc:d0:
88:5b:2e:58:f8:5d:e7:45:85:a6:c0:80:29:24:2c:
b2:dd:d3:cc:c7:a6:4e:b8:dc:15:19:e7:17:4a:9a:
69:1d:da:b4:10:2d:d2:68:34:5c:aa:14:0e:e8:06:
2e:52:13:91:2e:7b:0f:81:5e:ec:07:38:52:8f:db:
7c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:CD:A2:A6:87:C4:09:61:2E:54:D2:04:EC:41:C5:96:1C:5F:86:75
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/Nc2ipofECWEuVNIE7EHFlhxfhnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.180.56.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:7e:ba:34:c8:7d:97:b1:7e:02:18:5a:31:f5:91:bc:7b:e7:
c5:59:21:97:6e:9a:da:09:bd:a7:11:91:17:8f:92:37:42:e0:
7b:ee:b7:a9:f7:ec:a0:ce:19:69:d6:5f:86:66:e7:c9:fd:ec:
1b:34:e2:a5:f2:01:54:3f:2f:a4:08:a5:bb:23:ea:3a:9b:5c:
34:7e:f1:ad:ff:50:d7:42:f2:19:6d:3b:94:11:07:74:bb:d6:
98:3d:3c:aa:f1:31:dd:ba:69:30:f9:56:2c:68:e5:55:f7:45:
f9:9d:69:44:c6:2a:fa:2b:44:2f:0f:9c:0a:3f:1c:91:ef:59:
44:00:cb:6e:03:c1:b7:56:71:93:61:15:b9:78:e5:6b:e5:f8:
c8:a8:6a:c7:bf:a7:60:98:8d:67:9b:5c:d7:3d:26:82:c5:a0:
c3:fd:22:e6:a6:10:d2:0b:fe:80:c9:34:f0:05:56:ca:d7:13:
a0:55:ef:53:de:72:3d:c2:1f:57:22:14:97:c9:34:aa:78:22:
6a:4c:7f:3b:92:fb:ec:c3:ca:cc:6a:e6:b9:2f:c6:9d:b4:f1:
d4:fd:c7:f9:cb:7e:2f:6a:56:b0:13:56:6e:1f:1c:46:1f:b1:
af:43:52:16:fb:76:a7:b5:ce:69:fb:2f:cd:aa:11:d9:0a:bc:
48:a2:32:bd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZAlHZZ0rTyG2IucTjYLPhfeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhNTgzNmRkZTliOWRhZWYzNWE4YTdmNzRkNjMyNmY2YjQy
ZGE3NGQwHhcNMjQwNjE3MDczMzM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNWNkYTJhNjg3YzQwOTYxMmU1NGQyMDRlYzQxYzU5NjFjNWY4Njc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3i0fdy9/IUhTeJeQAf5slkHMOPWL
7TnloXhYk8l/0c+QPSmBu0CI3pEAdAikU7jIznz8VXjFC4WUOYx/SKOXbRT/WEcc
A+9MGoSKwpx0p1wMrfLkaJmbXfHmmQr9IFNilWq4oTIrDo7lycOSCMIAaxHG5ESK
mmHk4W534YZZxuVkXqUBbawP+XKpknD88liG0cozLY8LZaT2mFrJaVTkH1Z7LvjZ
r30j1sRk7mIM7FqvkzKlrUN/+2iic4q42Rtu/NCIWy5Y+F3nRYWmwIApJCyy3dPM
x6ZOuNwVGecXSpppHdq0EC3SaDRcqhQO6AYuUhORLnsPgV7sBzhSj9t8uQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDXNoqaHxAlhLlTSBOxBxZYcX4Z1MB8GA1UdIwQY
MBaAFGpYNt3pudrvNain901jJva0LadNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWxnMjNlbTUydTgxcUtmM1RXTW05clF0cDAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi84MzgwMzItZGI5Ny00OTdmLThjOTUt
YzE5OTQyNzM3ZTZkLzEvTmMyaXBvZkVDV0V1Vk5JRTdFSEZsaHhmaG5VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi84MzgwMzItZGI5Ny00OTdmLThjOTUtYzE5OTQyNzM3ZTZk
LzEvYWxnMjNlbTUydTgxcUtmM1RXTW05clF0cDAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2bQ4MA0G
CSqGSIb3DQEBCwUAA4IBAQBPfro0yH2XsX4CGFox9ZG8e+fFWSGXbpraCb2nEZEX
j5I3QuB77rep9+ygzhlp1l+GZufJ/ewbNOKl8gFUPy+kCKW7I+o6m1w0fvGt/1DX
QvIZbTuUEQd0u9aYPTyq8THdumkw+VYsaOVV90X5nWlExir6K0QvD5wKPxyR71lE
AMtuA8G3VnGTYRW5eOVr5fjIqGrHv6dgmI1nm1zXPSaCxaDD/SLmphDSC/6AyTTw
BVbK1xOgVe9T3nI9wh9XIhSXyTSqeCJqTH87kvvsw8rMaua5L8adtPHU/cf5y34v
alawE1ZuHxxGH7GvQ1IW+3antc5p+y/NqhHZCrxIojK9
-----END CERTIFICATE-----
Generated at Fri Sep 6 17:07:50 2024 by rpki-client on console-fra.rpki-client.org