Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5af4ce-0eee-4182-9094-9f52c730acdf/1/6nByUv5OBFck4reKV6X_ak2LLJ4.roa
File: 6nByUv5OBFck4reKV6X_ak2LLJ4.roa (raw, json)
Hash identifier: eas84YKu1DI9YtB4qOKxYcv79TfMlZHtjmx0zpv3KLg=
Subject key identifier: EA:70:72:52:FE:4E:04:57:24:E2:B7:8A:57:A5:FF:6A:4D:8B:2C:9E
Certificate issuer: /CN=e939540fd16b633501fbf7441a746fc56f9f59bf
Certificate serial: 0191DFAF75E88850CE00FF6CCAC061814C1D
Authority key identifier: E9:39:54:0F:D1:6B:63:35:01:FB:F7:44:1A:74:6F:C5:6F:9F:59:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6TlUD9FrYzUB-_dEGnRvxW-fWb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5af4ce-0eee-4182-9094-9f52c730acdf/1/6nByUv5OBFck4reKV6X_ak2LLJ4.roa
Signing time: Wed 11 Sep 2024 06:05:03 +0000
ROA not before: Wed 11 Sep 2024 06:05:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34918
IP address blocks: 176.120.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Sep 2024 06:19:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:df:af:75:e8:88:50:ce:00:ff:6c:ca:c0:61:81:4c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e939540fd16b633501fbf7441a746fc56f9f59bf
Validity
Not Before: Sep 11 06:05:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea707252fe4e045724e2b78a57a5ff6a4d8b2c9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:46:2f:9e:1c:86:33:ab:ce:e1:9e:04:41:f9:
3e:c8:32:71:85:cf:61:4b:fa:28:86:9b:1d:7e:df:
45:4b:3e:f0:8c:db:52:92:06:8e:e7:4a:33:6a:22:
96:1d:73:63:2f:3f:96:3f:4e:67:df:55:5b:c2:2d:
42:d1:53:20:ab:3a:1d:b5:85:74:13:a8:65:d0:96:
6f:0d:e5:1b:1c:08:7b:e0:4c:41:f4:f2:9c:f9:34:
a0:47:2b:82:2c:f2:ad:01:f9:39:52:bd:e4:02:fb:
19:5f:c1:94:e4:3e:3d:e8:82:df:db:9c:cd:43:a2:
c2:e3:7e:ca:59:59:60:d9:60:c2:82:19:e3:42:5b:
d9:08:62:11:a7:25:33:55:10:38:db:c2:51:0d:e5:
54:6f:34:39:19:94:54:21:a4:79:91:c8:f2:ba:e0:
cb:65:96:55:b4:a3:ff:2a:30:0f:92:19:94:49:a8:
9a:8c:8b:1b:8f:ca:63:1f:cd:63:e0:13:ad:3f:56:
da:78:28:49:92:50:e8:bb:3b:a6:a9:9b:bc:a2:e1:
05:f5:8c:30:e6:90:14:9a:24:a6:60:59:eb:3c:e1:
4f:9d:cf:34:a3:e2:ea:be:5b:aa:41:79:ed:bd:e7:
8c:4a:4c:30:5f:d8:84:97:18:9a:af:1c:d6:81:43:
bd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:70:72:52:FE:4E:04:57:24:E2:B7:8A:57:A5:FF:6A:4D:8B:2C:9E
X509v3 Authority Key Identifier:
keyid:E9:39:54:0F:D1:6B:63:35:01:FB:F7:44:1A:74:6F:C5:6F:9F:59:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6TlUD9FrYzUB-_dEGnRvxW-fWb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5af4ce-0eee-4182-9094-9f52c730acdf/1/6nByUv5OBFck4reKV6X_ak2LLJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5af4ce-0eee-4182-9094-9f52c730acdf/1/6TlUD9FrYzUB-_dEGnRvxW-fWb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.120.17.0/24
Signature Algorithm: sha256WithRSAEncryption
01:72:06:29:42:f0:cc:2a:43:c3:62:95:f8:3f:59:e6:21:e9:
3e:ac:a0:08:92:8b:5d:40:0c:79:bb:52:26:19:ad:fb:fe:7e:
2c:f3:c7:8b:d3:92:dc:b3:b2:0b:02:a4:d6:c0:5b:78:08:93:
14:60:7f:b2:a9:f4:e7:3c:58:24:d5:51:6c:f8:ee:2a:7f:ac:
17:db:9a:81:78:23:9e:04:c0:cf:d4:97:0d:f2:fe:45:5b:5c:
e1:17:f7:ed:67:ad:ae:e1:7f:dd:5e:23:7d:d3:48:6a:e9:62:
92:f7:be:d9:7a:9e:c9:db:08:ab:9b:05:b1:5c:df:1b:be:53:
99:4e:49:43:7c:26:07:e3:1d:e6:40:65:be:dc:f2:86:2f:2b:
4c:96:16:0f:4e:b4:f5:33:58:e5:a8:8a:57:3f:47:d3:a3:a1:
46:77:c3:1f:c7:81:17:37:29:ff:1a:f9:09:d3:b1:08:30:e8:
2c:19:f1:ff:2e:c0:fe:f5:6c:64:85:da:81:4a:f2:36:12:55:
58:d3:c2:00:17:3c:ea:26:5f:ba:f2:dc:e1:dc:76:82:36:1a:
b2:93:17:00:38:9f:00:c6:28:13:72:b3:c0:90:27:0a:f8:a9:
7e:75:f7:61:4d:1c:e3:df:26:d7:19:b3:0f:05:5a:b8:10:78:
bc:fa:44:2d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZHfr3XoiFDOAP9sysBhgUwdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5Mzk1NDBmZDE2YjYzMzUwMWZiZjc0NDFhNzQ2ZmM1NmY5
ZjU5YmYwHhcNMjQwOTExMDYwNTAzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYTcwNzI1MmZlNGUwNDU3MjRlMmI3OGE1N2E1ZmY2YTRkOGIyYzllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0YvnhyGM6vO4Z4EQfk+yDJxhc9h
S/oohpsdft9FSz7wjNtSkgaO50ozaiKWHXNjLz+WP05n31Vbwi1C0VMgqzodtYV0
E6hl0JZvDeUbHAh74ExB9PKc+TSgRyuCLPKtAfk5Ur3kAvsZX8GU5D496ILf25zN
Q6LC437KWVlg2WDCghnjQlvZCGIRpyUzVRA428JRDeVUbzQ5GZRUIaR5kcjyuuDL
ZZZVtKP/KjAPkhmUSaiajIsbj8pjH81j4BOtP1baeChJklDouzumqZu8ouEF9Yww
5pAUmiSmYFnrPOFPnc80o+LqvluqQXntveeMSkwwX9iElxiarxzWgUO9cQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOpwclL+TgRXJOK3ilel/2pNiyyeMB8GA1UdIwQY
MBaAFOk5VA/Ra2M1Afv3RBp0b8Vvn1m/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNlRsVUQ5RnJZelVCLV9kRUduUnZ4Vy1mV2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni81YWY0Y2UtMGVlZS00MTgyLTkwOTQt
OWY1MmM3MzBhY2RmLzEvNm5CeVV2NU9CRmNrNHJlS1Y2WF9hazJMTEo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni81YWY0Y2UtMGVlZS00MTgyLTkwOTQtOWY1MmM3MzBhY2Rm
LzEvNlRsVUQ5RnJZelVCLV9kRUduUnZ4Vy1mV2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHgRMA0G
CSqGSIb3DQEBCwUAA4IBAQABcgYpQvDMKkPDYpX4P1nmIek+rKAIkotdQAx5u1Im
Ga37/n4s88eL05Lcs7ILAqTWwFt4CJMUYH+yqfTnPFgk1VFs+O4qf6wX25qBeCOe
BMDP1JcN8v5FW1zhF/ftZ62u4X/dXiN900hq6WKS977Zep7J2wirmwWxXN8bvlOZ
TklDfCYH4x3mQGW+3PKGLytMlhYPTrT1M1jlqIpXP0fTo6FGd8Mfx4EXNyn/GvkJ
07EIMOgsGfH/LsD+9WxkhdqBSvI2ElVY08IAFzzqJl+68tzh3HaCNhqykxcAOJ8A
xigTcrPAkCcK+Kl+dfdhTRzj3ybXGbMPBVq4EHi8+kQt
-----END CERTIFICATE-----
Generated at Thu Sep 12 09:32:12 2024 by rpki-client on console-ams.rpki-client.org