Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/YTq9RiGBE72Gb4KsWs7wu-EFiPo.roa
File: YTq9RiGBE72Gb4KsWs7wu-EFiPo.roa (raw, json)
Hash identifier: qfJ0olEOxzFfLDh7IZsuckVPjnfXlipHdUbnUScID5w=
Subject key identifier: 61:3A:BD:46:21:81:13:BD:86:6F:82:AC:5A:CE:F0:BB:E1:05:88:FA
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 018FF2B7DFCB387E768158AB81EAE3703F94
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/YTq9RiGBE72Gb4KsWs7wu-EFiPo.roa
Signing time: Fri 07 Jun 2024 12:41:27 +0000
ROA not before: Fri 07 Jun 2024 12:41:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197737
IP address blocks: 217.180.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jul 2024 21:52:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f2:b7:df:cb:38:7e:76:81:58:ab:81:ea:e3:70:3f:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Jun 7 12:41:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=613abd46218113bd866f82ac5acef0bbe10588fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:10:84:a9:a3:c3:b5:09:65:6d:6b:03:e6:22:
ba:fa:09:06:a4:c7:cd:f0:ac:b0:4a:94:e7:ba:a9:
69:ce:86:2b:2c:7d:0e:cf:83:8d:98:a3:41:f9:31:
3e:a8:f3:5e:24:f6:6f:4c:ce:a2:6d:04:07:4b:ce:
02:4a:f2:9c:76:e5:b9:ad:59:b9:ba:03:41:3f:56:
43:4f:29:5f:4e:47:c5:58:73:ab:a6:10:92:e6:ba:
ff:c7:66:0b:b2:60:dc:80:eb:ab:9a:62:46:8f:bf:
b3:ae:ec:64:3a:f2:d9:cb:1d:46:93:80:95:38:f4:
66:19:33:96:a7:b1:21:02:7d:2b:b5:df:41:b5:e6:
7a:54:51:fa:f8:fe:7f:3d:b5:0c:e2:15:0f:32:a5:
1d:3c:c7:80:10:d4:46:2e:80:08:13:1e:82:e8:00:
f7:26:44:89:8e:3c:2a:83:db:05:cd:9d:61:c8:4f:
4f:ef:91:df:3b:49:c6:8f:48:ed:48:66:8a:a2:0c:
66:57:45:97:3b:5a:72:e5:42:0d:d5:e6:4a:90:0d:
ef:ee:86:e4:cd:22:c6:37:c2:7b:88:2f:ec:65:78:
78:08:0c:af:19:1f:41:7a:70:4e:31:9b:74:be:74:
2a:bd:f1:25:28:7d:d0:3f:08:1f:4d:e3:a3:57:29:
5d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:3A:BD:46:21:81:13:BD:86:6F:82:AC:5A:CE:F0:BB:E1:05:88:FA
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/YTq9RiGBE72Gb4KsWs7wu-EFiPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.180.58.0/24
Signature Algorithm: sha256WithRSAEncryption
36:e8:16:93:0c:42:d1:73:ad:7a:76:e5:43:0d:e7:98:14:de:
3d:2f:f8:0d:a6:bc:c7:1b:34:ea:0b:b2:cd:b4:df:c3:71:55:
66:e4:4c:68:62:1d:5e:68:55:58:8d:31:43:e2:ff:c5:75:58:
51:99:9c:63:7d:9e:c6:92:1e:20:f9:b2:6f:10:6f:5d:3e:69:
c6:a4:01:7d:f6:41:3b:0c:52:df:62:34:27:07:28:c5:d1:ae:
35:89:fc:0c:01:e9:a5:c4:3d:a2:c1:5d:e4:35:d7:c1:04:16:
13:13:73:ee:fb:19:d6:4d:87:b9:4f:c2:a4:93:88:c1:82:16:
99:a4:00:3c:bd:3b:ca:75:d7:96:fc:47:00:ba:c7:4a:cf:5d:
b4:91:a5:d6:e5:6b:23:c8:5a:3a:b6:a5:e8:50:6f:d0:b3:46:
88:bb:6b:73:52:67:ce:eb:57:22:7b:46:e0:32:87:76:84:2f:
97:38:74:a0:5c:a4:fe:68:14:fa:a4:8f:f0:8f:cb:fd:32:0d:
cc:f4:3d:fc:e4:e0:b4:3e:5b:e5:9f:84:4c:0a:d3:34:ca:b5:
7e:50:bc:59:83:79:e7:3e:d3:7a:27:47:10:c3:38:dd:ba:ec:
ee:93:46:67:38:6d:69:50:0f:de:2f:fe:be:62:20:73:de:a6:
26:b2:27:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 7 23:21:34 2024 by rpki-client on console-ams.rpki-client.org