Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/c6nh5FJB34XBawsw_rtQSX__UDk.roa
File: c6nh5FJB34XBawsw_rtQSX__UDk.roa (raw, json)
Hash identifier: KaBCkhKnzbpEKpfrneZT1hDvD8BWY1FOZqJqC/QlVV0=
Subject key identifier: 73:A9:E1:E4:52:41:DF:85:C1:6B:0B:30:FE:BB:50:49:7F:FF:50:39
Certificate issuer: /CN=597a01de87e011803f890ae17749020f995f140c
Certificate serial: 0189063C39AEF3A97A77A15232401687AF77
Authority key identifier: 59:7A:01:DE:87:E0:11:80:3F:89:0A:E1:77:49:02:0F:99:5F:14:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXoB3ofgEYA_iQrhd0kCD5lfFAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/c6nh5FJB34XBawsw_rtQSX__UDk.roa
Signing time: Thu 29 Jun 2023 08:19:17 +0000
ROA not before: Thu 29 Jun 2023 08:19:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6878
IP address blocks: 164.30.0.0/17 maxlen: 24
2a07:b980:4000::/39 maxlen: 44
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:06:3c:39:ae:f3:a9:7a:77:a1:52:32:40:16:87:af:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=597a01de87e011803f890ae17749020f995f140c
Validity
Not Before: Jun 29 08:19:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=73a9e1e45241df85c16b0b30febb50497fff5039
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:dd:63:c5:d4:6f:fa:13:84:02:84:a8:de:19:
64:59:03:54:32:1f:27:55:a8:2d:15:f9:7d:bd:8a:
8d:99:fa:bb:a3:d3:03:d4:d8:1c:cb:7a:8d:72:7e:
bf:09:31:80:13:a4:80:6c:1d:a4:ce:ab:cc:ea:72:
e1:02:a7:83:74:fc:f2:94:f7:18:ba:3e:86:d6:b2:
56:50:48:ba:b6:8c:e7:34:a8:3d:1b:f7:66:35:85:
a6:5a:81:6f:aa:ae:d2:85:81:0d:24:e5:0e:8a:99:
5e:53:eb:f5:33:23:03:f3:6f:df:ad:c1:4b:62:3f:
70:f9:4f:0a:70:91:86:c8:03:3e:70:91:f3:54:16:
7b:0f:e5:79:58:43:88:cd:bd:a7:db:da:38:7d:ce:
a2:5b:bc:4f:72:13:96:97:dd:15:fc:23:f5:cc:2d:
92:40:6f:ac:e2:53:b3:5c:72:cf:7e:ef:40:89:4d:
42:9c:44:66:4f:5d:86:ff:6c:a7:2a:04:9c:73:84:
57:97:48:8d:79:20:6a:43:87:c1:82:28:75:35:a6:
f9:d4:41:ec:57:50:a3:d5:65:b1:2d:a3:98:99:90:
30:e1:1d:3c:c0:47:99:90:6a:86:72:e1:e8:2f:47:
aa:5d:2b:7a:08:5e:2b:a4:7f:ab:46:f7:06:1f:ac:
c9:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:A9:E1:E4:52:41:DF:85:C1:6B:0B:30:FE:BB:50:49:7F:FF:50:39
X509v3 Authority Key Identifier:
keyid:59:7A:01:DE:87:E0:11:80:3F:89:0A:E1:77:49:02:0F:99:5F:14:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXoB3ofgEYA_iQrhd0kCD5lfFAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/c6nh5FJB34XBawsw_rtQSX__UDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/WXoB3ofgEYA_iQrhd0kCD5lfFAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.30.0.0/17
IPv6:
2a07:b980:4000::/39
Signature Algorithm: sha256WithRSAEncryption
a0:68:94:2f:e0:24:84:ae:0e:45:5d:53:e4:c6:19:84:a9:ab:
2e:b6:d9:35:d6:ad:c2:9f:77:93:e2:cb:81:17:c5:2e:04:85:
b0:2f:57:a1:e8:8e:95:b9:c0:62:7b:85:af:0b:8a:1f:a3:ce:
d1:e0:f5:7f:a9:c2:92:76:55:c3:f1:94:97:cd:68:25:4b:bb:
c6:3c:07:e8:51:7e:d2:9e:1c:bd:a3:50:1e:58:7f:0e:ce:09:
a3:7e:13:ef:d9:68:26:77:e3:d0:53:c3:78:77:8a:27:35:f1:
d0:86:fd:a6:86:d6:aa:a1:a0:3b:18:a1:24:51:65:3a:7a:3c:
58:8d:e4:bd:77:fa:77:f8:99:20:9b:83:93:9e:1d:ad:52:ad:
8c:4a:10:60:08:a4:d1:08:4a:ff:c5:7f:8e:37:ec:16:f9:c2:
6e:aa:f1:8f:34:2a:a2:d9:0a:cc:39:17:17:4b:e1:9d:64:b7:
bf:e5:48:2e:99:e7:ce:59:86:6e:4f:25:04:30:ab:94:8e:6e:
0c:48:bc:7e:14:f2:72:5e:3d:00:e4:d8:9b:7a:fa:98:4e:af:
f4:3c:17:a1:7e:81:da:f4:0a:0b:70:c8:63:1c:9d:fd:5c:70:
85:a2:4e:6a:68:8f:21:92:7f:1b:74:ed:d2:cc:fb:3d:46:d5:
92:47:c4:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:15 2024 by rpki-client on console-fra.rpki-client.org