Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/U-4jIsclXnKRukRXOF1T2h_IZPg.roa
File: U-4jIsclXnKRukRXOF1T2h_IZPg.roa (raw, json)
Hash identifier: Au6Dm27QL8/rQZ1Ma3FLWUpWE7KU+HByO7+PAZUS9gU=
Subject key identifier: 53:EE:23:22:C7:25:5E:72:91:BA:44:57:38:5D:53:DA:1F:C8:64:F8
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 0191B20736B23A830760B6238E22E8726057
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/U-4jIsclXnKRukRXOF1T2h_IZPg.roa
Signing time: Mon 02 Sep 2024 09:18:22 +0000
ROA not before: Mon 02 Sep 2024 09:18:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3320
IP address blocks: 217.180.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Sep 2024 12:48:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b2:07:36:b2:3a:83:07:60:b6:23:8e:22:e8:72:60:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Sep 2 09:18:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53ee2322c7255e7291ba4457385d53da1fc864f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c8:f1:e1:e9:31:d1:a1:c9:f8:76:f6:f7:fe:
ef:67:71:1a:af:d9:98:24:ae:83:3d:8b:d6:ad:c7:
fe:6a:54:e2:2b:48:b2:85:12:9e:3b:01:02:99:ae:
19:6c:19:4d:93:65:03:c9:a5:d1:79:ba:58:ef:4a:
e8:72:d2:1d:53:ac:f0:a0:19:1f:ef:fe:cf:2a:52:
7b:45:b6:56:57:ec:12:af:cf:4f:f2:06:f0:cf:e9:
c4:c6:76:0a:38:6f:1b:b8:1e:e4:53:bb:01:81:35:
89:19:e1:54:ea:d4:c2:43:5c:0c:9c:8b:2a:0e:e2:
b4:eb:50:1e:a4:44:87:c9:aa:70:12:44:68:02:b2:
54:88:9d:75:a2:9d:a4:0b:0d:df:72:fc:13:b2:ae:
2c:64:4a:96:b7:64:7c:a2:d9:16:e3:41:e5:aa:c0:
99:54:ba:cc:af:73:15:05:93:5f:59:56:97:24:41:
7e:09:c5:5f:ef:8b:6e:5b:f6:c1:6b:d7:df:7b:1c:
29:00:32:9f:fa:34:e5:37:61:5a:cf:94:7a:83:9d:
b0:96:87:4b:3a:83:4c:92:41:ec:98:94:a5:e6:21:
78:72:fb:23:02:7e:bd:a0:68:5e:64:ac:34:e1:0d:
6b:90:8c:01:3d:b4:96:46:4f:2d:88:0b:70:7c:f5:
df:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:EE:23:22:C7:25:5E:72:91:BA:44:57:38:5D:53:DA:1F:C8:64:F8
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/U-4jIsclXnKRukRXOF1T2h_IZPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.180.57.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:18:16:40:25:eb:d9:f6:e9:3d:9e:31:3a:12:60:2e:c9:7d:
24:00:4e:bc:ed:a1:20:bb:25:af:c5:3f:d3:f5:37:c6:c0:dc:
58:f8:06:56:13:50:f3:5f:01:ef:83:59:21:51:c9:bf:f5:d4:
9d:5d:82:6f:26:45:ff:ae:0d:58:a0:37:38:a9:7f:f9:12:e5:
d2:82:94:2b:c9:f7:ec:82:1d:ee:3b:af:46:a2:fe:42:31:f1:
02:2f:ab:94:0b:e0:10:dc:89:4c:35:57:1d:43:cb:53:5a:86:
34:51:28:bf:49:d7:35:05:69:00:3d:4a:34:5d:b5:4f:98:9d:
ef:a8:5d:f6:5b:dc:a7:9f:29:3f:e3:4c:05:a7:ce:4e:9e:fe:
b1:e1:92:d4:d8:97:82:92:7a:27:1f:b9:ea:d3:29:0b:e6:f7:
02:ff:65:99:75:27:1a:c8:3d:81:1e:8a:1e:41:bd:97:08:67:
b2:3f:b1:89:98:06:57:76:57:6c:6e:76:b9:fd:8d:cd:84:b8:
aa:3c:b0:81:3e:72:1e:e8:ff:67:34:26:9d:96:b1:0e:23:b5:
a9:17:43:11:3c:cd:ba:32:96:0d:54:b8:a7:dd:99:ea:e9:3f:
da:54:89:df:0d:95:ba:1a:88:f2:8b:cc:21:5b:69:df:fc:27:
fe:40:f8:51
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZGyBzayOoMHYLYjjiLocmBXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhNTgzNmRkZTliOWRhZWYzNWE4YTdmNzRkNjMyNmY2YjQy
ZGE3NGQwHhcNMjQwOTAyMDkxODIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1M2VlMjMyMmM3MjU1ZTcyOTFiYTQ0NTczODVkNTNkYTFmYzg2NGY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzcjx4ekx0aHJ+Hb29/7vZ3Ear9mY
JK6DPYvWrcf+alTiK0iyhRKeOwECma4ZbBlNk2UDyaXRebpY70roctIdU6zwoBkf
7/7PKlJ7RbZWV+wSr89P8gbwz+nExnYKOG8buB7kU7sBgTWJGeFU6tTCQ1wMnIsq
DuK061AepESHyapwEkRoArJUiJ11op2kCw3fcvwTsq4sZEqWt2R8otkW40HlqsCZ
VLrMr3MVBZNfWVaXJEF+CcVf74tuW/bBa9ffexwpADKf+jTlN2Faz5R6g52wlodL
OoNMkkHsmJSl5iF4cvsjAn69oGheZKw04Q1rkIwBPbSWRk8tiAtwfPXfIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFPuIyLHJV5ykbpEVzhdU9ofyGT4MB8GA1UdIwQY
MBaAFGpYNt3pudrvNain901jJva0LadNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWxnMjNlbTUydTgxcUtmM1RXTW05clF0cDAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi84MzgwMzItZGI5Ny00OTdmLThjOTUt
YzE5OTQyNzM3ZTZkLzEvVS00aklzY2xYbktSdWtSWE9GMVQyaF9JWlBnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi84MzgwMzItZGI5Ny00OTdmLThjOTUtYzE5OTQyNzM3ZTZk
LzEvYWxnMjNlbTUydTgxcUtmM1RXTW05clF0cDAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2bQ5MA0G
CSqGSIb3DQEBCwUAA4IBAQCOGBZAJevZ9uk9njE6EmAuyX0kAE687aEguyWvxT/T
9TfGwNxY+AZWE1DzXwHvg1khUcm/9dSdXYJvJkX/rg1YoDc4qX/5EuXSgpQryffs
gh3uO69Gov5CMfECL6uUC+AQ3IlMNVcdQ8tTWoY0USi/Sdc1BWkAPUo0XbVPmJ3v
qF32W9ynnyk/40wFp85Onv6x4ZLU2JeCknonH7nq0ykL5vcC/2WZdScayD2BHooe
Qb2XCGeyP7GJmAZXdldsbna5/Y3NhLiqPLCBPnIe6P9nNCadlrEOI7WpF0MRPM26
MpYNVLin3Znq6T/aVInfDZW6Gojyi8whW2nf/Cf+QPhR
-----END CERTIFICATE-----
Generated at Tue Sep 24 14:45:34 2024 by rpki-client on console-fra.rpki-client.org