Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/1182cb-5f95-4cd4-b72f-46b46fc0e496/1/6yzTqwGgHvEpMO8mVdhshgIXK18.roa
File: 6yzTqwGgHvEpMO8mVdhshgIXK18.roa (raw, json)
Hash identifier: yilh4lsqV/Hcvr5V6OBonpj0g3CUi30LnHOAlZjZAVU=
Subject key identifier: EB:2C:D3:AB:01:A0:1E:F1:29:30:EF:26:55:D8:6C:86:02:17:2B:5F
Certificate issuer: /CN=b2ed1d6066f4e4654ef5f3cc70a5d905a9af8290
Certificate serial: 018E14960A0D984A53EA27B2922D2080984A
Authority key identifier: B2:ED:1D:60:66:F4:E4:65:4E:F5:F3:CC:70:A5:D9:05:A9:AF:82:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/su0dYGb05GVO9fPMcKXZBamvgpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/1182cb-5f95-4cd4-b72f-46b46fc0e496/1/6yzTqwGgHvEpMO8mVdhshgIXK18.roa
Signing time: Wed 06 Mar 2024 16:26:01 +0000
ROA not before: Wed 06 Mar 2024 16:26:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198949
IP address blocks: 217.145.160.0/20 maxlen: 24
217.145.162.0/24 maxlen: 24
217.145.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Mar 2024 08:32:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:14:96:0a:0d:98:4a:53:ea:27:b2:92:2d:20:80:98:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2ed1d6066f4e4654ef5f3cc70a5d905a9af8290
Validity
Not Before: Mar 6 16:26:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb2cd3ab01a01ef12930ef2655d86c8602172b5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:87:e1:24:86:fc:3f:a6:f8:71:09:0d:18:8e:
59:c1:b1:46:19:1e:5e:15:19:94:08:ea:51:a5:87:
53:14:f5:a2:62:56:f9:bd:fe:a8:f1:02:dd:49:ca:
44:94:d3:39:12:f0:9b:fc:1f:cb:23:9f:5b:96:d5:
5b:81:15:c8:3f:56:81:33:a9:5e:c2:5c:81:b1:1c:
6c:74:0b:1e:8f:65:15:9e:52:62:7b:41:42:e6:c0:
99:98:09:bb:4c:6a:f5:88:fc:8d:66:0e:b0:db:bb:
68:82:36:3e:db:ff:46:99:6a:97:50:21:4e:78:46:
39:e6:36:d8:40:db:60:93:40:7c:f8:08:7a:68:d1:
b6:e3:f8:15:75:c3:21:68:13:59:53:51:55:cc:58:
20:44:c5:7d:38:2f:45:cb:e3:46:67:64:9e:f1:f2:
50:80:1d:8d:d5:bd:48:a0:e0:9c:c4:3a:7f:b3:a9:
9d:0a:05:cf:2e:8a:0c:da:d6:b0:bb:8f:6e:88:8e:
8c:21:ff:cc:b5:a3:68:18:3c:55:e5:73:f9:94:95:
a2:36:38:3d:87:5c:37:21:6d:74:6e:a0:4d:66:71:
24:3f:27:be:a7:c7:79:58:4a:1b:d6:4a:92:35:97:
f6:a7:49:ff:25:6f:6f:3d:a1:82:36:d8:c4:7f:a3:
59:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:2C:D3:AB:01:A0:1E:F1:29:30:EF:26:55:D8:6C:86:02:17:2B:5F
X509v3 Authority Key Identifier:
keyid:B2:ED:1D:60:66:F4:E4:65:4E:F5:F3:CC:70:A5:D9:05:A9:AF:82:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/su0dYGb05GVO9fPMcKXZBamvgpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/1182cb-5f95-4cd4-b72f-46b46fc0e496/1/6yzTqwGgHvEpMO8mVdhshgIXK18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/1182cb-5f95-4cd4-b72f-46b46fc0e496/1/su0dYGb05GVO9fPMcKXZBamvgpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.145.160.0/20
Signature Algorithm: sha256WithRSAEncryption
da:6b:e5:47:ab:56:7d:17:93:51:65:44:b4:0c:8c:81:15:1a:
f3:18:70:ac:c5:45:54:dc:a1:8b:c2:47:53:96:56:21:61:59:
eb:1c:3d:fa:24:df:e1:05:68:f2:b7:8b:75:9a:99:6a:34:68:
8f:e2:20:3b:b1:16:91:50:88:47:d3:2b:96:31:36:a7:d3:8a:
dd:c9:86:4f:79:e8:c8:10:3a:ec:8d:05:89:78:ee:1d:4f:f5:
57:c9:8b:39:b8:2a:95:c3:2c:98:79:3f:5a:6a:91:8d:7f:07:
4d:50:33:82:a1:5c:40:1c:24:77:29:86:02:cd:37:57:c5:18:
8d:68:25:15:77:40:ba:69:d3:b4:71:c2:b1:ba:e0:e7:3a:a0:
08:e3:e4:76:ae:96:5d:77:fb:9b:7e:bb:e4:fb:74:b1:59:a6:
a5:2b:c5:a6:db:ec:87:22:c3:d0:d4:1b:43:85:27:3c:b3:56:
1a:67:1c:d6:95:19:9a:de:8f:c3:7a:fc:ee:5a:6c:c9:ac:a1:
1e:d9:63:69:6f:78:9c:0c:56:2b:cb:a1:7e:5b:9f:fc:b9:27:
e4:12:3a:5f:ca:3f:d5:df:c1:2e:71:01:7a:76:eb:1a:ba:c7:
db:96:1c:0e:15:74:b3:59:65:bb:4c:28:f4:46:51:81:3f:24:
02:6e:ac:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:29 2024 by rpki-client on console-ams.rpki-client.org