Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/nh4faL2yhQMf_pyBR_N0_YAcJ_c.roa
File: nh4faL2yhQMf_pyBR_N0_YAcJ_c.roa (raw, json)
Hash identifier: Bl4zpPatHJTlduU1D1N9qy/J9VmQQF/wND8t+LeKS4s=
Subject key identifier: 9E:1E:1F:68:BD:B2:85:03:1F:FE:9C:81:47:F3:74:FD:80:1C:27:F7
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 0192241A303BBDAB40B50EC199CD33DFCDF5
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/nh4faL2yhQMf_pyBR_N0_YAcJ_c.roa
Signing time: Tue 24 Sep 2024 12:55:48 +0000
ROA not before: Tue 24 Sep 2024 12:55:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25135
IP address blocks: 217.177.34.0/24 maxlen: 24
217.177.72.0/24 maxlen: 24
217.180.21.0/24 maxlen: 24
217.180.44.0/24 maxlen: 24
217.180.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Oct 2024 19:59:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:24:1a:30:3b:bd:ab:40:b5:0e:c1:99:cd:33:df:cd:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Sep 24 12:55:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9e1e1f68bdb285031ffe9c8147f374fd801c27f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:bf:38:15:87:92:89:8b:84:6c:45:4d:1b:7b:
82:05:71:5f:32:ba:78:c1:73:e2:1d:48:85:6e:56:
0f:eb:c2:85:b8:3d:70:11:1c:3c:11:5b:a4:64:82:
09:3b:df:fa:97:68:5e:a2:14:0a:14:ad:98:a0:4b:
7f:36:ed:a0:28:52:27:8c:09:10:33:ba:fe:4b:5d:
e3:80:b1:60:be:6f:1c:04:51:8f:91:48:3a:d3:6b:
3f:c1:b3:b5:96:da:81:ea:fc:25:37:a7:11:02:9b:
51:58:ae:cb:64:7d:62:e3:16:52:f2:9f:f6:63:51:
7d:ae:57:91:b9:48:1d:b7:a4:b8:0b:02:95:56:d9:
56:93:61:fb:b9:c0:d0:e6:09:49:82:93:8b:fd:be:
0a:e2:84:cf:69:b4:d5:df:6a:35:10:21:3d:89:82:
71:1a:d3:c1:e3:40:08:51:1c:f5:62:81:08:67:c6:
2b:9c:93:9e:24:88:88:e8:98:12:c7:28:b0:9d:64:
a2:e8:80:2a:0e:ec:2c:4c:16:92:1c:c6:ad:89:ea:
ee:78:0b:88:8c:ca:e5:c2:d7:41:72:72:04:90:2d:
2d:f2:c1:5b:5e:4c:b7:8f:58:21:c8:97:7d:f0:ad:
5e:3d:0f:62:f6:2c:3b:f9:a7:32:ce:99:a0:e6:6c:
02:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:1E:1F:68:BD:B2:85:03:1F:FE:9C:81:47:F3:74:FD:80:1C:27:F7
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/nh4faL2yhQMf_pyBR_N0_YAcJ_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.177.34.0/24
217.177.72.0/24
217.180.21.0/24
217.180.44.0/24
217.180.47.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:3b:e5:1f:8a:0f:e1:a8:7c:6c:a4:9a:b4:8f:65:c8:d5:d7:
0e:24:a0:f9:24:18:1c:d2:af:ab:96:1a:f7:de:25:fc:3f:f0:
34:f7:15:02:d1:12:19:9f:ab:5c:7c:8f:cc:f9:e9:ac:77:9b:
05:dc:dc:ca:03:bf:72:ed:43:7d:d4:23:72:87:a4:78:cc:2a:
b9:66:35:ad:dc:0b:4a:93:78:d7:04:56:6f:8b:e3:fe:79:56:
b9:d4:68:e2:3e:79:8e:b7:de:66:70:df:ab:ee:4d:82:c9:8b:
34:c4:c4:1f:3b:c8:d2:68:7d:5c:2b:71:9a:fa:51:dd:d3:2d:
b2:a6:6b:c9:7d:db:a4:be:cf:a8:2b:45:01:c2:57:e0:42:05:
79:25:65:d0:51:89:5c:49:b6:ce:61:97:2c:8b:ce:1b:ac:a9:
05:84:c7:27:6f:82:11:ef:0f:cb:76:63:fa:7d:b5:01:c0:05:
95:cc:48:3c:b8:05:8e:29:2f:28:9f:90:57:52:2d:fd:76:0c:
52:0d:70:28:9f:4a:40:31:09:f5:bb:22:61:34:07:61:58:f6:
df:43:6d:df:67:e0:97:7c:19:9d:8e:fb:cf:7b:42:16:2f:b0:
50:f5:3d:63:98:7d:96:d1:3d:20:14:4c:68:1a:fd:14:e7:76:
52:f9:31:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 6 23:09:18 2024 by rpki-client on console-ams.rpki-client.org