Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/r6PwG8U1-Qv9Jehk5EdNolSknCQ.roa
File: r6PwG8U1-Qv9Jehk5EdNolSknCQ.roa (raw, json)
Hash identifier: EG7hH3Gh2vZ8XY0mf9ye1uOd37AhuGRDixfPtxS65eU=
Subject key identifier: AF:A3:F0:1B:C5:35:F9:0B:FD:25:E8:64:E4:47:4D:A2:54:A4:9C:24
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 0191B20737A6D615A8D7537F581A25803DC6
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/r6PwG8U1-Qv9Jehk5EdNolSknCQ.roa
Signing time: Mon 02 Sep 2024 09:18:22 +0000
ROA not before: Mon 02 Sep 2024 09:18:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47585
IP address blocks: 217.180.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 09:25:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b2:07:37:a6:d6:15:a8:d7:53:7f:58:1a:25:80:3d:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Sep 2 09:18:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=afa3f01bc535f90bfd25e864e4474da254a49c24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:57:8c:41:42:2e:17:80:50:82:73:b6:2b:56:
31:7f:50:a7:f2:85:3a:cd:1e:1b:27:08:ca:ea:d1:
48:50:e8:d9:1b:ce:be:e3:51:97:cc:58:f9:9a:6d:
e5:ca:43:4f:61:b0:76:dc:5b:aa:79:8d:73:7c:d3:
02:0a:0e:c4:6a:2d:e4:99:81:92:b7:59:a0:bc:d1:
16:10:d6:cd:04:8c:7a:e5:d2:48:db:bf:15:ff:e2:
62:e0:f0:4a:14:5a:df:d0:8e:62:cd:c5:06:fe:34:
28:1d:f8:3c:22:48:0a:89:c9:cf:d9:e8:f1:5a:e9:
60:c6:8b:1d:06:59:d6:3f:6b:8f:03:0e:f5:a3:d6:
f6:4e:bf:fc:67:53:73:ca:a6:ba:92:d5:0f:21:e2:
3a:e4:48:58:c6:b8:55:d2:08:98:a0:52:d9:8f:3a:
6a:52:dc:c2:8b:a2:e6:ea:6c:43:ef:00:d7:fd:49:
a0:0b:ab:e5:ee:2f:f3:d2:5c:83:25:97:c7:7d:44:
93:87:7b:07:9c:c8:92:c0:97:2f:54:f7:fa:2d:60:
bc:2a:15:c3:d6:e8:29:80:b8:1a:29:5c:57:e7:87:
d4:77:b9:7d:7a:cc:c0:b8:df:9d:7d:12:d1:3e:bb:
60:ad:12:c1:74:49:de:45:8c:7a:81:25:2f:a1:03:
39:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:A3:F0:1B:C5:35:F9:0B:FD:25:E8:64:E4:47:4D:A2:54:A4:9C:24
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/r6PwG8U1-Qv9Jehk5EdNolSknCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.180.16.0/24
Signature Algorithm: sha256WithRSAEncryption
71:f6:f7:11:11:13:54:2a:e6:34:31:d0:4c:7d:7f:9e:a8:81:
7d:ff:c8:f0:37:a5:41:e3:ac:07:07:a8:23:09:6a:65:4d:e3:
8f:76:54:c9:34:62:66:96:c6:e4:f3:b7:a9:b4:3f:dc:6f:a6:
a9:d2:14:08:6c:f7:1e:76:4c:0d:97:5f:4d:94:38:e7:29:eb:
c3:a1:dc:d3:21:78:29:2f:f1:7a:d5:1b:ce:c2:ea:61:b9:29:
39:91:9e:f8:29:c6:e0:05:80:44:17:a6:65:1e:82:09:21:f0:
3b:51:a6:39:6f:15:97:3b:58:fc:db:22:bc:b6:d8:c3:90:d8:
87:75:38:3c:c6:3d:0e:8b:8c:08:f3:ba:fb:ec:1a:dc:d0:bd:
a9:9d:7a:1a:ac:de:f0:73:c6:53:7f:89:49:45:50:66:64:df:
67:25:1d:5a:01:53:d3:be:63:55:00:09:9a:1e:94:b6:4e:8b:
df:83:71:b0:e8:3b:ba:e9:2b:0c:28:c7:98:74:db:d4:f0:1c:
f8:15:82:64:b8:00:90:98:a2:ad:88:c3:f9:1f:3b:cd:c8:38:
30:e6:0e:2f:bf:9e:14:9a:1a:76:c2:85:ea:32:c0:f0:b8:92:
c1:fe:65:ae:a6:41:9d:36:3a:be:5e:66:34:60:aa:09:af:48:
dd:68:9b:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 12:20:05 2024 by rpki-client on console-ams.rpki-client.org