Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/kkVCkBzX2PUZnonCGJjsqOF0JjE.roa
File: kkVCkBzX2PUZnonCGJjsqOF0JjE.roa (raw, json)
Hash identifier: BK7NsAyx95ZJsX6JRYnpkSIyl0gDbAu5pOozAb6irNM=
Subject key identifier: 92:45:42:90:1C:D7:D8:F5:19:9E:89:C2:18:98:EC:A8:E1:74:26:31
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 01931FF6882023A16DB877EDFD63F0F9CB10
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/kkVCkBzX2PUZnonCGJjsqOF0JjE.roa
Signing time: Tue 12 Nov 2024 10:41:10 +0000
ROA not before: Tue 12 Nov 2024 10:41:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 62.171.228.0/24 maxlen: 24
62.171.229.0/24 maxlen: 24
62.171.230.0/24 maxlen: 24
62.171.231.0/24 maxlen: 24
62.171.248.0/24 maxlen: 24
62.171.251.0/24 maxlen: 24
217.177.32.0/24 maxlen: 24
217.177.35.0/24 maxlen: 24
217.177.75.0/24 maxlen: 24
217.180.12.0/24 maxlen: 24
217.180.13.0/24 maxlen: 24
217.180.14.0/24 maxlen: 24
217.180.16.0/24 maxlen: 24
217.180.17.0/24 maxlen: 24
217.180.18.0/24 maxlen: 24
217.180.19.0/24 maxlen: 24
217.180.20.0/24 maxlen: 24
217.180.38.0/24 maxlen: 24
217.180.45.0/24 maxlen: 24
217.180.58.0/24 maxlen: 24
217.180.59.0/24 maxlen: 24
217.180.61.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 08:26:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:1f:f6:88:20:23:a1:6d:b8:77:ed:fd:63:f0:f9:cb:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Nov 12 10:41:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=924542901cd7d8f5199e89c21898eca8e1742631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:f7:ed:4b:e9:41:47:eb:3a:60:a4:4c:d3:d3:
88:3c:40:cc:59:60:9c:ec:51:3b:d4:4f:5b:fb:04:
0f:9a:bf:04:7f:f2:e8:8b:f1:1e:a7:02:a9:99:55:
79:76:5b:99:b3:f6:e4:11:e6:f2:ab:f7:95:bf:52:
cd:ef:ee:6e:c9:25:1e:40:79:13:d2:8e:1a:0c:80:
88:4d:c7:48:b8:95:d4:8a:c3:dc:2d:9e:e1:36:91:
50:93:a2:28:6c:a9:eb:2e:44:6c:b0:1a:46:4b:70:
bf:87:ed:b5:08:4b:51:61:48:22:70:6c:6f:47:d4:
d5:ae:4f:b6:ad:4d:cc:8f:e6:70:ac:4a:9c:94:02:
a7:e7:4e:06:ce:80:5c:5c:1b:23:f2:3a:ae:3c:35:
e5:e6:7a:14:83:1f:f0:f5:e5:0f:fa:5d:cd:5b:5a:
66:a8:f8:4e:36:ae:79:05:0b:c2:c7:c2:06:7b:eb:
e8:4d:aa:80:d9:f7:9a:8e:06:99:b2:65:2c:86:41:
7b:5f:fd:44:c4:cf:ee:d3:da:52:a2:4e:e9:64:16:
f4:6a:0d:38:de:c3:f0:d1:77:cb:20:65:fd:0f:70:
f7:3e:67:19:1a:4d:a8:53:74:ff:4c:40:d9:ad:ca:
5c:88:12:53:b0:62:3d:c2:c1:ef:85:88:17:50:74:
9e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:45:42:90:1C:D7:D8:F5:19:9E:89:C2:18:98:EC:A8:E1:74:26:31
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/kkVCkBzX2PUZnonCGJjsqOF0JjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.171.228.0/22
62.171.248.0/24
62.171.251.0/24
217.177.32.0/24
217.177.35.0/24
217.177.75.0/24
217.180.12.0-217.180.14.255
217.180.16.0-217.180.20.255
217.180.38.0/24
217.180.45.0/24
217.180.58.0/23
217.180.61.0/24
Signature Algorithm: sha256WithRSAEncryption
57:7f:c8:cf:85:d1:9a:56:fd:9d:90:6d:d7:14:da:91:5e:23:
8a:39:d4:58:12:84:7c:b3:f4:e2:6b:a4:35:f1:16:b6:b2:7c:
71:d6:b8:62:e9:57:26:d1:d6:46:42:1c:23:70:c1:98:18:55:
bb:5b:0e:5d:72:03:95:c3:b8:89:1f:66:df:01:f1:f8:2a:8f:
6b:9f:c9:84:bc:da:92:0f:b1:c8:44:bf:ce:3d:72:0b:b3:58:
98:e0:8d:bc:ca:49:1b:5b:3d:9f:37:6f:65:36:bf:01:c6:7e:
81:e2:5d:0f:98:94:cc:01:f8:dc:38:0e:1e:59:14:de:c2:f6:
1c:98:26:1a:29:0d:72:80:75:31:08:7e:61:9c:64:70:6d:fa:
7c:c6:27:27:d9:e6:55:47:e2:25:10:4c:56:85:c4:d1:bb:70:
04:e1:2f:4d:6f:f8:b4:f9:0c:2a:da:5e:09:5e:95:aa:91:be:
75:2b:f4:d3:f0:78:ac:7f:dc:e5:d2:65:9b:9b:e1:9f:5d:61:
af:52:67:77:4f:e1:e8:b9:94:0a:8d:74:29:35:63:ea:ae:39:
65:1f:d4:3e:ff:91:32:2e:85:88:21:2f:5a:d1:cd:bb:0e:05:
c3:fd:49:c3:27:c1:94:00:af:87:70:ec:f8:40:25:a8:73:b2:
5f:3a:fb:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 10:30:27 2024 by rpki-client on console-ams.rpki-client.org