Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/_XEyhkDbMZjLiMU-lYk6gwXhS1A.roa
File: _XEyhkDbMZjLiMU-lYk6gwXhS1A.roa (raw, json)
Hash identifier: PhGg+uHtfF9jvlyuulkYayICKMvewOlFIsBHoL6uM+E=
Subject key identifier: FD:71:32:86:40:DB:31:98:CB:88:C5:3E:95:89:3A:83:05:E1:4B:50
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 01909BE049AF6472773A38611905BD1AD1C8
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/_XEyhkDbMZjLiMU-lYk6gwXhS1A.roa
Signing time: Wed 10 Jul 2024 09:01:25 +0000
ROA not before: Wed 10 Jul 2024 09:01:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 18779
IP address blocks: 217.180.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Jul 2024 07:32:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9b:e0:49:af:64:72:77:3a:38:61:19:05:bd:1a:d1:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Jul 10 09:01:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd71328640db3198cb88c53e95893a8305e14b50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fe:7e:ee:4d:50:3b:48:62:64:5b:69:de:9b:
91:61:cc:d8:43:63:76:42:10:71:0a:f4:c5:9c:8f:
c4:1e:a7:4b:93:08:cb:e0:9a:07:0f:0c:06:44:e2:
c2:74:3a:76:0b:0c:10:63:f5:7d:22:dc:71:26:2d:
e7:a8:9d:93:b6:78:e9:8f:27:26:9b:7e:f2:c1:2b:
4e:8e:82:b0:b3:a4:d5:fd:89:7b:a5:e6:1f:83:91:
13:83:1f:3a:13:34:65:2e:a9:35:8f:f7:f2:22:0d:
d7:cf:e3:eb:dd:4a:e3:68:cc:0f:21:57:12:61:bd:
57:c7:89:41:fa:2c:40:f3:97:fd:1b:7b:cf:f7:cc:
0e:88:e3:d0:ee:0a:64:0f:e1:ba:dc:5c:27:4f:6e:
71:33:d0:98:eb:60:e9:9a:fb:26:a2:87:8e:9d:ca:
e7:f2:ee:21:e3:15:6c:e2:36:6f:57:1b:82:c5:9e:
f6:2a:f9:22:cf:55:cc:1d:3e:45:33:83:50:83:f1:
35:fd:be:31:3c:6f:89:52:74:5b:ed:98:55:c1:62:
df:cb:76:ba:e7:d4:df:f9:2d:6e:38:5c:6e:55:ac:
97:da:18:cb:a6:07:20:32:b0:c0:49:48:3c:43:e5:
66:b4:d2:d9:bc:58:a1:aa:f5:f9:99:95:30:14:c1:
07:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:71:32:86:40:DB:31:98:CB:88:C5:3E:95:89:3A:83:05:E1:4B:50
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/_XEyhkDbMZjLiMU-lYk6gwXhS1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.180.15.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:77:fd:6e:00:5f:c8:54:81:95:e1:19:7e:4a:36:6c:fd:ed:
80:32:89:8e:36:58:13:87:68:33:4e:e0:24:2d:4e:23:3f:b8:
b8:1b:d2:ca:cc:70:11:30:43:2d:59:61:49:0c:28:66:7a:b0:
0f:eb:f8:02:ec:64:a2:2d:40:4e:e8:2e:84:bc:a9:45:3f:24:
8e:d0:21:30:00:86:2b:c1:a6:d2:97:63:c9:8e:16:d2:e0:bb:
f0:cb:f8:de:e3:e3:75:7f:37:19:3a:23:46:4e:c2:46:d0:a9:
0d:fc:52:26:cc:b4:28:cf:29:0a:0f:77:74:4c:60:5d:3b:8a:
c8:05:02:69:84:b5:45:50:d7:ca:99:1d:56:9b:a6:10:4e:38:
bc:12:9a:e2:ee:db:28:b6:b1:79:1f:29:22:5d:f2:7a:08:a2:
9a:c7:80:29:d3:2d:fb:a5:67:e2:d4:48:c3:f2:09:2b:28:5f:
b5:da:9f:75:ba:fe:cf:b9:ce:a2:9a:55:7e:3f:2f:b8:77:a2:
3f:75:98:ef:6f:25:f9:dd:4f:ec:a1:a5:84:d6:03:2f:d8:11:
d5:47:b8:9b:47:14:c0:1e:f8:5a:3f:71:dc:7f:d0:96:a1:11:
a9:04:50:ac:55:6f:96:73:7c:4a:9a:5b:6f:e6:2c:9f:95:22:
5f:0f:33:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 24 09:38:43 2024 by rpki-client on console-fra.rpki-client.org