Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/a9psAsWm-v8xrOl8F2Midce0WtE.roa
File: a9psAsWm-v8xrOl8F2Midce0WtE.roa (raw, json)
Hash identifier: Uy5JNPgAn2dz+M+ReMcNlnZHbsrwK0Z1h9ppyX+grAc=
Subject key identifier: 6B:DA:6C:02:C5:A6:FA:FF:31:AC:E9:7C:17:63:22:75:C7:B4:5A:D1
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 01924739949B4DA1FC0A56212020EE3E69E2
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/a9psAsWm-v8xrOl8F2Midce0WtE.roa
Signing time: Tue 01 Oct 2024 08:36:48 +0000
ROA not before: Tue 01 Oct 2024 08:36:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 217.177.8.0/22 maxlen: 24
217.180.22.0/23 maxlen: 24
217.180.40.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Nov 2024 14:53:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:47:39:94:9b:4d:a1:fc:0a:56:21:20:20:ee:3e:69:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Oct 1 08:36:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6bda6c02c5a6faff31ace97c17632275c7b45ad1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f1:a4:05:ef:7e:75:74:6c:99:db:3f:5a:95:
17:c6:10:c6:12:65:1a:97:7e:05:83:10:ec:57:8e:
86:cf:1d:90:8c:25:d9:f9:17:cd:a9:ba:0a:d3:62:
81:e5:a6:f9:7c:7f:15:83:e4:d1:c8:f6:1d:7a:c2:
bf:69:23:dc:d5:ea:3e:a9:0c:31:45:1c:4c:81:12:
5b:82:23:ce:2b:e8:fb:b0:77:29:62:cb:2a:84:f3:
85:09:33:28:35:6a:51:b7:6f:11:a4:4c:7f:9f:4a:
00:70:03:bd:0f:a4:c7:13:19:18:40:06:93:45:bd:
28:b6:8b:94:e8:f7:d3:ef:c3:70:e3:04:d4:73:a8:
52:4a:83:6d:f4:d9:e3:e4:84:1c:fa:71:59:7f:9a:
0a:5f:10:f8:8a:f3:38:90:8d:b0:f0:79:b4:c1:00:
2b:93:1c:b3:5d:25:be:75:78:72:e2:62:01:4a:05:
fc:54:cd:c8:03:bb:9d:91:58:cb:73:55:c6:ea:cd:
95:50:55:5d:c4:5b:0d:08:9b:3a:ca:35:e9:46:f7:
ea:57:30:01:0c:ee:29:5a:93:16:13:6c:71:31:0f:
fe:f9:12:54:68:66:ef:6e:b9:8f:b0:74:a5:f7:23:
4d:58:94:5a:27:68:4f:69:f1:cc:95:b7:3b:08:00:
ff:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:DA:6C:02:C5:A6:FA:FF:31:AC:E9:7C:17:63:22:75:C7:B4:5A:D1
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/a9psAsWm-v8xrOl8F2Midce0WtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.177.8.0/22
217.180.22.0/23
217.180.40.0/22
Signature Algorithm: sha256WithRSAEncryption
48:95:1a:e7:f2:60:06:f3:25:44:5d:10:3b:46:b2:ba:81:93:
8d:a7:c2:bb:0c:f7:e5:6c:12:12:5d:83:42:81:bf:65:16:0e:
7d:ec:70:b8:e9:5d:4a:1c:7b:7e:ed:11:c7:9b:69:66:7c:21:
6d:c9:12:b8:95:3d:34:69:d6:6f:79:40:fd:6a:ee:da:2f:b6:
9e:e0:38:1f:a4:12:7a:e3:08:82:c8:72:88:14:84:67:8a:aa:
e2:f3:63:2f:3f:de:eb:ef:a8:eb:85:a0:60:3a:2c:9a:67:46:
42:ea:e7:97:2a:80:ac:78:13:08:4a:91:29:c0:30:4f:f8:17:
46:c4:52:da:c8:0f:5a:82:fc:e0:95:1e:75:08:6c:79:d4:27:
ce:35:4c:ba:6d:8f:58:53:41:37:3c:54:c9:2e:62:78:95:d8:
19:d1:d8:58:79:f7:72:33:03:18:36:df:53:6b:cc:6d:e0:bf:
1f:76:a7:20:7b:f2:e4:8e:b6:99:26:2f:52:36:a9:0d:25:2c:
8b:f1:7e:92:c1:b0:1a:d4:ed:6f:d2:fa:14:f5:97:af:7b:3d:
ca:e7:ab:cf:53:f3:8f:71:79:c7:ea:38:9d:95:46:e1:ba:db:
32:cf:2c:ae:bb:0d:f0:b4:bd:b6:27:12:b1:bf:9f:0f:ac:bb:
09:84:55:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 19:59:38 2024 by rpki-client on console-fra.rpki-client.org