Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/Pp-eW5uUwGozhTRL2CGLHJSGE9Y.roa
File: Pp-eW5uUwGozhTRL2CGLHJSGE9Y.roa (raw, json)
Hash identifier: wmrA87THyNzsH8bp5vHo51byfXP8EMrULE8E1xKuuAg=
Subject key identifier: 3E:9F:9E:5B:9B:94:C0:6A:33:85:34:4B:D8:21:8B:1C:94:86:13:D6
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 0191458AB8B9C83B0AF51E58DCCE94DCD7E9
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/Pp-eW5uUwGozhTRL2CGLHJSGE9Y.roa
Signing time: Mon 12 Aug 2024 07:43:24 +0000
ROA not before: Mon 12 Aug 2024 07:43:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 217.180.14.0/24 maxlen: 24
217.180.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Aug 2024 14:36:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:45:8a:b8:b9:c8:3b:0a:f5:1e:58:dc:ce:94:dc:d7:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Aug 12 07:43:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e9f9e5b9b94c06a3385344bd8218b1c948613d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1a:c7:13:d0:45:80:f9:27:57:88:17:7f:1a:
d2:d7:a9:85:f7:c6:c4:a4:ab:9f:27:08:6e:b7:14:
4d:1d:d6:ef:69:ef:44:f3:06:f3:ee:5c:4e:81:03:
88:fd:86:78:a2:de:e9:44:07:4c:f5:7f:20:f6:5c:
00:6c:ab:82:d5:c6:53:2d:eb:ad:20:6c:41:a8:50:
c0:c9:10:f3:b5:bd:17:d3:ef:69:0b:81:98:e4:6b:
09:e1:26:59:b7:2a:24:b3:7c:25:0d:0f:f0:64:0c:
e8:eb:7b:9b:95:a3:f0:21:18:cc:d1:87:55:28:73:
b6:c5:8a:bc:f9:ed:dd:8f:94:31:d3:84:c6:e9:1e:
7b:fd:87:8d:b0:26:a2:2d:39:58:27:31:64:29:a7:
98:ec:47:83:9f:d7:00:8a:77:cb:b3:ae:9c:5e:9e:
ad:8a:7e:84:ee:4b:37:3b:83:5f:bc:36:93:83:93:
93:9b:16:5c:1c:dd:94:f3:d7:b8:ed:77:68:26:7c:
25:e9:ba:02:31:f1:c9:55:80:cc:01:b0:d7:33:71:
27:c8:5c:bf:27:ff:72:98:a8:39:74:26:33:32:f4:
84:51:a6:28:bb:0f:d4:3d:c4:d2:b3:fb:bd:88:01:
a6:14:29:d6:f3:28:fd:ee:58:fb:8c:27:13:c6:ea:
00:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:9F:9E:5B:9B:94:C0:6A:33:85:34:4B:D8:21:8B:1C:94:86:13:D6
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/Pp-eW5uUwGozhTRL2CGLHJSGE9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.180.14.0/24
217.180.57.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:6f:a7:59:db:55:07:84:5d:ae:93:13:f6:46:3a:cd:5c:f4:
04:d4:55:ae:85:b3:68:7e:b5:fd:35:19:3d:8d:f4:f6:d3:68:
63:e3:21:0e:a5:25:fa:dc:bd:78:78:52:1c:5e:47:80:e7:95:
ea:cd:69:05:55:6c:d8:ab:14:7d:24:ec:1f:fd:c8:96:5c:7b:
c3:b3:22:18:b0:b5:1e:03:32:05:cc:f3:ec:b1:ec:f3:93:fa:
51:94:06:90:01:35:91:c6:38:fe:89:b1:49:25:16:2d:f7:b0:
4e:9f:34:83:6a:ee:b5:06:53:8f:9d:a2:5f:e5:6b:a0:c6:b9:
79:4f:91:b3:4c:e0:74:f5:64:bc:de:88:2d:9f:73:f7:8d:db:
17:db:c8:6a:69:1f:20:8c:69:d1:e5:d8:8a:64:9a:42:aa:74:
81:56:1a:e1:7e:83:57:c9:42:c7:76:c6:70:5f:06:01:d5:d3:
b7:25:cb:2e:04:ae:9b:30:cd:8d:6b:bd:9f:c6:7c:20:da:4b:
6c:27:14:da:d7:06:ae:cf:05:0d:0d:ee:35:0a:e6:0c:cd:ec:
71:b8:12:7f:6d:ac:90:ea:7b:6a:24:42:bf:6a:40:e5:0a:41:
d4:a8:36:bc:a8:31:4b:8e:a9:fe:f4:3d:3c:b4:94:e6:41:7e:
2b:8d:0d:d5
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZFFiri5yDsK9R5Y3M6U3NfpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhNTgzNmRkZTliOWRhZWYzNWE4YTdmNzRkNjMyNmY2YjQy
ZGE3NGQwHhcNMjQwODEyMDc0MzI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZTlmOWU1YjliOTRjMDZhMzM4NTM0NGJkODIxOGIxYzk0ODYxM2Q2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxrHE9BFgPknV4gXfxrS16mF98bE
pKufJwhutxRNHdbvae9E8wbz7lxOgQOI/YZ4ot7pRAdM9X8g9lwAbKuC1cZTLeut
IGxBqFDAyRDztb0X0+9pC4GY5GsJ4SZZtyoks3wlDQ/wZAzo63ublaPwIRjM0YdV
KHO2xYq8+e3dj5Qx04TG6R57/YeNsCaiLTlYJzFkKaeY7EeDn9cAinfLs66cXp6t
in6E7ks3O4NfvDaTg5OTmxZcHN2U89e47XdoJnwl6boCMfHJVYDMAbDXM3EnyFy/
J/9ymKg5dCYzMvSEUaYouw/UPcTSs/u9iAGmFCnW8yj97lj7jCcTxuoAXwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFD6fnlublMBqM4U0S9ghixyUhhPWMB8GA1UdIwQY
MBaAFGpYNt3pudrvNain901jJva0LadNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWxnMjNlbTUydTgxcUtmM1RXTW05clF0cDAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi84MzgwMzItZGI5Ny00OTdmLThjOTUt
YzE5OTQyNzM3ZTZkLzEvUHAtZVc1dVV3R296aFRSTDJDR0xISlNHRTlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi84MzgwMzItZGI5Ny00OTdmLThjOTUtYzE5OTQyNzM3ZTZk
LzEvYWxnMjNlbTUydTgxcUtmM1RXTW05clF0cDAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQA2bQOAwQA
2bQ5MA0GCSqGSIb3DQEBCwUAA4IBAQBLb6dZ21UHhF2ukxP2RjrNXPQE1FWuhbNo
frX9NRk9jfT202hj4yEOpSX63L14eFIcXkeA55XqzWkFVWzYqxR9JOwf/ciWXHvD
syIYsLUeAzIFzPPssezzk/pRlAaQATWRxjj+ibFJJRYt97BOnzSDau61BlOPnaJf
5Wugxrl5T5GzTOB09WS83ogtn3P3jdsX28hqaR8gjGnR5diKZJpCqnSBVhrhfoNX
yULHdsZwXwYB1dO3JcsuBK6bMM2Na72fxnwg2ktsJxTa1wauzwUNDe41CuYMzexx
uBJ/bayQ6ntqJEK/akDlCkHUqDa8qDFLjqn+9D08tJTmQX4rjQ3V
-----END CERTIFICATE-----
Generated at Tue Aug 13 17:33:07 2024 by rpki-client on console-ams.rpki-client.org