Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/YMuzxJUZ6biGqj1-50APzmYTbUU.roa
File: YMuzxJUZ6biGqj1-50APzmYTbUU.roa (raw, json)
Hash identifier: DULmmCyU54+0yTdiWXewrRDtAXlFtFrUupjKiROb5dc=
Subject key identifier: 60:CB:B3:C4:95:19:E9:B8:86:AA:3D:7E:E7:40:0F:CE:66:13:6D:45
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 01922EA677460363574C598F7953F8A9DB4D
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/YMuzxJUZ6biGqj1-50APzmYTbUU.roa
Signing time: Thu 26 Sep 2024 14:05:14 +0000
ROA not before: Thu 26 Sep 2024 14:05:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31404
IP address blocks: 217.181.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Nov 2024 17:03:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:2e:a6:77:46:03:63:57:4c:59:8f:79:53:f8:a9:db:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Sep 26 14:05:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60cbb3c49519e9b886aa3d7ee7400fce66136d45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:58:dd:ff:3e:1a:2b:f8:e8:1b:f5:b4:7c:82:
68:1a:55:cd:b9:65:0e:68:85:37:04:43:41:4d:42:
6d:5c:f3:5e:a2:03:97:7a:77:1a:34:67:c8:77:85:
fb:cf:88:55:2d:6b:4e:61:8f:c3:06:bd:75:1f:af:
27:bf:54:f3:d9:b8:2a:f9:55:cf:c7:bc:a7:c5:2f:
46:f2:b3:2d:e1:50:b0:6e:7b:98:c3:88:97:5e:81:
96:74:2d:26:61:e8:3d:50:87:ea:ae:bf:f1:4a:d9:
57:36:e4:81:91:df:2f:45:6c:9d:9e:56:22:70:e7:
40:10:83:73:3a:07:98:b0:2c:5a:37:b8:d8:ef:a4:
3d:c3:ef:e7:83:16:49:00:98:f3:2c:f8:ab:fe:0f:
8d:ad:6c:73:c4:1e:a6:a6:34:ad:02:7d:0f:4f:c6:
87:15:45:46:6c:49:cc:1d:20:4f:6d:74:73:8a:53:
0f:28:3d:b7:78:56:83:94:79:95:9a:3b:c5:55:95:
84:88:f4:61:1a:ab:1d:44:86:45:ed:29:bb:9c:2d:
ea:5b:70:c7:ad:8c:ae:f9:53:74:86:8a:4a:66:c7:
2d:17:31:a0:36:92:7a:e4:d1:37:a5:12:fa:25:e8:
65:25:cb:be:78:1f:e8:67:f6:65:a1:a2:c2:7a:51:
ae:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:CB:B3:C4:95:19:E9:B8:86:AA:3D:7E:E7:40:0F:CE:66:13:6D:45
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/YMuzxJUZ6biGqj1-50APzmYTbUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.181.96.0/24
Signature Algorithm: sha256WithRSAEncryption
47:dd:d5:7d:9b:4d:81:16:1b:a5:6a:d0:e6:52:14:40:3e:d4:
f8:2c:84:fc:c8:45:c1:27:26:5e:a7:b0:3c:f1:ea:d6:8c:a8:
4c:bf:07:dd:85:72:0f:c0:b6:5f:69:c5:80:42:7f:3f:94:63:
f2:86:52:82:83:4d:34:5e:21:01:81:08:56:36:d8:ea:b8:38:
20:58:e1:2c:2d:c3:e1:48:b2:e4:d2:6d:48:98:20:fb:9e:6a:
39:b2:9a:b8:92:d9:72:e9:73:8c:16:5f:61:7e:b5:20:c6:ed:
6c:b3:ab:bd:17:ec:de:3d:78:3f:56:2e:4a:90:41:ed:1f:cd:
5d:5f:f9:c4:16:18:cc:f1:c2:a6:3f:70:5c:a0:e8:42:8c:25:
f9:ac:1e:3b:19:e0:39:73:f4:51:1a:14:da:9e:52:7f:45:93:
42:90:67:6e:15:9b:c9:6b:9f:d3:b3:b3:a7:71:9e:36:4f:36:
0a:9c:20:aa:d2:16:b9:0d:57:29:28:28:6f:ee:d3:95:65:9a:
e6:fb:c9:69:1c:16:b3:2e:92:b5:98:eb:a4:c5:b6:8f:ca:46:
67:f0:ff:03:e3:82:72:f5:f3:79:2e:fd:ac:3f:42:12:4a:5f:
0b:ea:ee:9d:48:63:47:9d:98:ac:7e:f0:e7:f8:1a:8f:2d:ad:
b3:fe:6e:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 12 19:39:14 2024 by rpki-client on console-fra.rpki-client.org