Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/dgpPNkF11SdXs3ZzUEQ7eU4aIts.roa
File: dgpPNkF11SdXs3ZzUEQ7eU4aIts.roa (raw, json)
Hash identifier: M+874CjsmUDXFQbPLRYQuMdjQccPw2g23ovKoJPaAjs=
Subject key identifier: 76:0A:4F:36:41:75:D5:27:57:B3:76:73:50:44:3B:79:4E:1A:22:DB
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 0191947CF52E7805378D0979294694BE7B80
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/dgpPNkF11SdXs3ZzUEQ7eU4aIts.roa
Signing time: Tue 27 Aug 2024 15:38:22 +0000
ROA not before: Tue 27 Aug 2024 15:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20860
IP address blocks: 217.180.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 07:48:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:94:7c:f5:2e:78:05:37:8d:09:79:29:46:94:be:7b:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Aug 27 15:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=760a4f364175d52757b3767350443b794e1a22db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:af:66:ad:16:02:75:3d:97:19:dd:0a:ae:dc:
b1:d1:29:49:cc:a0:08:df:81:77:66:f4:ee:09:c1:
61:3b:66:87:ed:5d:80:fe:30:4e:9a:35:28:16:67:
31:c4:cf:c3:68:56:35:21:bb:3d:36:2c:ab:5a:77:
6c:96:08:32:df:8d:6d:9e:06:9f:69:88:b7:7d:4b:
86:f3:8f:9e:70:17:cd:9f:79:3f:9d:a4:7a:b7:c5:
df:85:31:70:ce:4b:5a:b8:1d:fd:aa:a3:a2:01:ce:
da:1f:8e:cb:a3:a6:7c:a4:43:8f:52:2a:ff:9e:b8:
e6:f0:55:1f:8b:b3:da:c5:86:00:8a:aa:53:23:58:
1d:b6:2e:05:6f:8a:5f:2e:5a:c4:ff:24:66:9d:33:
9b:ef:86:e7:a0:ce:0f:ab:f9:01:10:f0:69:4f:11:
37:e5:d4:07:bb:6c:a3:aa:b8:88:3a:ad:7d:e0:84:
6f:af:f1:f1:17:88:da:02:39:e4:75:1b:95:1d:8d:
7c:f2:a2:7c:b1:90:2a:33:86:47:08:3d:8a:50:9a:
b2:5f:53:cf:6d:dc:1d:99:31:5e:f7:af:c4:1f:3a:
e5:5d:e7:8c:34:f6:36:7c:60:c9:8c:2b:e6:75:35:
ac:17:28:a1:4b:37:8a:cc:ed:94:16:d6:61:af:e1:
5e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:0A:4F:36:41:75:D5:27:57:B3:76:73:50:44:3B:79:4E:1A:22:DB
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/dgpPNkF11SdXs3ZzUEQ7eU4aIts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.180.17.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:0b:f8:ea:7c:a5:00:90:7c:9b:e8:38:27:47:40:ea:59:18:
6a:21:10:f5:8c:79:2c:05:c4:96:7e:ca:d4:73:77:10:9b:e3:
aa:6e:a7:89:71:29:2e:a4:3f:1e:93:33:6f:7c:f1:4f:ae:66:
6f:26:e8:86:36:c4:b0:79:8b:7f:5c:95:60:21:eb:af:bd:73:
4f:c6:79:3f:53:64:b4:c7:47:1d:1a:92:26:86:99:89:e7:46:
c4:4b:4a:a6:5f:c0:34:7a:8a:88:09:1a:e9:a7:7a:fe:f0:f7:
8f:9f:84:c1:07:28:0a:9e:c2:2c:fc:a7:d7:35:22:43:31:d6:
56:e2:c1:48:d8:d3:8a:d8:bc:e5:01:27:6c:72:3d:18:d0:d2:
e1:63:4f:da:6b:43:14:29:64:d2:12:76:b9:99:50:68:01:79:
d8:f7:8e:af:3f:6b:d4:11:8d:31:e7:20:21:98:e5:2a:20:5f:
b6:48:fa:3f:d9:4b:2f:e4:d1:a5:eb:5b:3b:79:69:3e:c8:62:
4c:08:f7:c0:c9:f0:ca:bd:56:74:36:0a:9f:d8:e9:9a:15:83:
5e:26:4e:12:8d:bc:10:a2:f6:7c:13:24:04:c3:07:5f:ac:61:
2d:b0:e9:b7:77:b6:76:1c:cf:a9:e2:f7:70:85:ac:41:ce:0f:
e2:89:e1:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 30 11:06:50 2024 by rpki-client on console-ams.rpki-client.org