Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/seZPzOKLy6iU0y5EG73HzQ-eSYg.roa
File: seZPzOKLy6iU0y5EG73HzQ-eSYg.roa (raw, json)
Hash identifier: 8kZLRr+ig3NIk4OYwcG7UnAvDTaHps1qTq42Mq7ZJLA=
Subject key identifier: B1:E6:4F:CC:E2:8B:CB:A8:94:D3:2E:44:1B:BD:C7:CD:0F:9E:49:88
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 01902A84088382C8F6807C989C3272F3B243
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/seZPzOKLy6iU0y5EG73HzQ-eSYg.roa
Signing time: Tue 18 Jun 2024 08:43:34 +0000
ROA not before: Tue 18 Jun 2024 08:43:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211192
IP address blocks: 217.180.62.0/24 maxlen: 24
217.180.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jul 2024 09:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2a:84:08:83:82:c8:f6:80:7c:98:9c:32:72:f3:b2:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Jun 18 08:43:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1e64fcce28bcba894d32e441bbdc7cd0f9e4988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:06:e5:e9:3a:28:af:ee:7b:11:15:08:d7:1f:
f7:f4:16:98:d8:f4:79:20:13:0f:4f:9f:d3:d1:7d:
53:80:3b:82:c6:ea:47:19:cb:da:d4:2c:18:81:ec:
38:b5:c4:79:ad:aa:4f:5a:fa:8f:b1:d6:2b:4f:24:
51:3f:5c:b1:63:dc:d1:c5:03:22:ef:be:ac:9c:0e:
fa:c9:88:0e:d8:f7:28:4f:15:e1:9a:d1:94:1b:48:
ef:2a:bb:fb:4c:9d:7e:92:9f:0e:5e:f3:b5:cc:c2:
74:b2:ea:37:ff:33:8e:51:06:68:5c:84:f6:2a:8e:
0e:42:dd:b7:aa:ed:59:f4:71:c1:43:14:6c:29:00:
8f:e5:a5:0d:e0:4b:88:51:ab:15:a0:78:0b:df:92:
72:ff:8c:94:05:0f:80:95:66:e9:c8:40:4a:17:d9:
84:26:ac:4b:0d:9c:dd:c9:39:3d:05:49:3d:f4:d1:
88:3b:a0:43:c5:b2:c1:a1:ad:af:70:9f:59:68:a1:
f9:78:6c:7d:b4:fc:07:c0:f4:dd:f2:05:b9:87:1a:
9f:69:5d:26:b5:6e:83:19:4a:02:10:36:96:ef:6c:
45:32:9e:d2:9a:ec:ed:f1:70:b7:78:c7:b6:19:bc:
e1:4c:3e:2d:d5:59:a2:2e:39:58:b2:70:cf:d9:50:
90:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E6:4F:CC:E2:8B:CB:A8:94:D3:2E:44:1B:BD:C7:CD:0F:9E:49:88
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/seZPzOKLy6iU0y5EG73HzQ-eSYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.180.62.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:2d:77:7d:e1:56:d2:ed:c6:30:01:b4:60:b9:0f:5a:12:1e:
30:08:a5:37:6f:ba:2c:be:9a:18:7e:6d:a0:f7:69:a5:d1:b0:
27:81:bf:95:5e:14:ea:e2:05:00:aa:3c:e9:eb:fd:28:fc:1e:
23:24:55:ab:b7:ea:fa:dc:46:d7:a7:96:36:96:d5:64:b6:07:
db:00:31:96:48:86:3f:dc:92:f4:64:12:2f:cd:ad:ec:56:3a:
2d:3a:26:05:1c:c3:65:c5:d6:c2:fb:07:57:e4:9d:5a:f4:eb:
2e:89:6d:e3:e1:34:e1:46:bd:d6:97:e6:da:66:29:74:77:8c:
00:8b:91:d1:48:c9:26:10:be:ef:cd:ce:82:28:a5:66:48:1c:
50:cb:5d:89:75:9d:cd:6a:a6:ff:c5:8a:70:0c:ab:ce:a2:11:
24:61:eb:81:65:23:4d:00:c7:86:1f:cb:a3:7f:07:4c:23:e7:
cb:e6:2a:02:2d:b8:21:ad:b7:74:88:50:ee:1a:21:63:20:51:
34:31:d1:7e:64:83:3f:b6:8c:16:2a:2a:40:79:90:17:18:c5:
8a:ed:ee:91:cc:91:8c:b7:63:0b:0a:16:15:c5:f8:60:3b:97:
04:50:bf:57:be:ee:40:38:95:b0:fc:34:ec:93:61:f0:d9:c7:
0c:99:04:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 10 10:34:12 2024 by rpki-client on console-ams.rpki-client.org