Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5af4ce-0eee-4182-9094-9f52c730acdf/1/agxDYRBlyM7SuIzWq89gbXW63QI.roa
File: agxDYRBlyM7SuIzWq89gbXW63QI.roa (raw, json)
Hash identifier: /ge1bywjnY5Seio2Cc3zQ8UQikX1lpNgC3Xc4TD6UrM=
Subject key identifier: 6A:0C:43:61:10:65:C8:CE:D2:B8:8C:D6:AB:CF:60:6D:75:BA:DD:02
Certificate issuer: /CN=e939540fd16b633501fbf7441a746fc56f9f59bf
Certificate serial: 01916B719BA1943CAFA766CE6552656EC66B
Authority key identifier: E9:39:54:0F:D1:6B:63:35:01:FB:F7:44:1A:74:6F:C5:6F:9F:59:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6TlUD9FrYzUB-_dEGnRvxW-fWb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5af4ce-0eee-4182-9094-9f52c730acdf/1/agxDYRBlyM7SuIzWq89gbXW63QI.roa
Signing time: Mon 19 Aug 2024 16:21:33 +0000
ROA not before: Mon 19 Aug 2024 16:21:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198154
IP address blocks: 176.120.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 06:05:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6b:71:9b:a1:94:3c:af:a7:66:ce:65:52:65:6e:c6:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e939540fd16b633501fbf7441a746fc56f9f59bf
Validity
Not Before: Aug 19 16:21:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a0c43611065c8ced2b88cd6abcf606d75badd02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:bc:97:76:f1:0c:05:82:25:da:4e:b1:27:70:
ce:08:9c:01:53:92:76:bb:41:22:8a:3a:5a:51:8f:
8f:20:46:9b:c3:fb:87:41:05:3a:1c:f4:a1:28:9a:
0d:23:5c:19:e3:93:18:08:00:0b:06:e8:1a:a3:09:
e5:53:db:42:57:3d:93:d7:fa:ba:f9:d8:4d:0f:0b:
b5:86:27:7b:59:98:63:46:0c:07:92:46:29:89:98:
00:32:04:69:e6:e7:f7:c0:ed:ca:d5:d7:37:05:28:
37:40:f5:9f:1b:f2:87:05:2d:2d:b9:9a:5e:bb:a7:
13:49:8c:4b:8d:88:52:7b:75:2a:63:8d:5e:7e:7f:
25:4c:0f:bb:e6:66:a5:69:a8:ea:15:38:ec:25:b6:
79:1d:b5:09:d0:45:43:02:0e:c5:cb:d6:2d:b8:7d:
16:ec:f6:94:66:27:64:26:f7:08:ee:1d:a1:26:f1:
af:86:d9:04:31:a0:5c:fc:16:f2:be:45:59:c6:11:
22:8f:7b:7b:58:84:22:26:3a:50:18:ca:5b:71:ea:
9c:2b:22:30:fc:fe:11:9f:ee:76:41:3c:e7:95:78:
a2:1e:27:57:0e:af:00:13:20:55:52:3f:69:bf:21:
8b:0c:e6:d1:27:a7:a6:cd:20:8d:cf:1d:a1:6b:77:
3b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:0C:43:61:10:65:C8:CE:D2:B8:8C:D6:AB:CF:60:6D:75:BA:DD:02
X509v3 Authority Key Identifier:
keyid:E9:39:54:0F:D1:6B:63:35:01:FB:F7:44:1A:74:6F:C5:6F:9F:59:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6TlUD9FrYzUB-_dEGnRvxW-fWb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5af4ce-0eee-4182-9094-9f52c730acdf/1/agxDYRBlyM7SuIzWq89gbXW63QI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5af4ce-0eee-4182-9094-9f52c730acdf/1/6TlUD9FrYzUB-_dEGnRvxW-fWb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.120.17.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:d4:48:de:0d:4f:1f:1a:f7:07:3c:9e:f7:5f:02:d5:32:26:
bf:04:26:38:27:b0:19:23:ba:73:77:ed:f6:c8:9e:82:3d:95:
99:d2:00:34:47:38:15:39:46:de:78:ab:da:e8:b3:b3:d1:3b:
7a:5d:35:00:fd:e6:ce:51:d3:01:42:3e:cf:5f:40:5b:44:4a:
b0:4c:c1:0f:36:08:d1:d0:5f:35:fe:44:53:ff:f7:1f:a9:e5:
33:04:bd:2a:cf:9a:72:d7:de:0e:2d:86:e9:21:99:bf:ae:eb:
69:a4:24:22:a0:e3:00:de:0f:0a:90:cf:c0:54:7b:45:3d:bb:
54:f2:38:3b:4a:08:e7:7c:db:c8:92:d0:cb:3d:2b:1a:3b:ad:
1e:ec:d9:73:94:22:9f:62:a2:51:7e:42:8d:37:cb:da:0f:40:
9a:83:c6:96:26:ff:58:7c:09:92:7a:1e:1e:e6:53:91:5e:ba:
ca:13:74:50:61:72:af:8c:f2:ff:52:cf:80:29:2a:f0:78:61:
0b:b9:2a:05:08:57:a0:11:6a:ca:09:5c:79:1a:21:cb:40:6b:
a2:3f:86:33:ed:4b:5f:d8:da:6f:82:a8:03:bb:d2:db:4c:ab:
c8:ec:99:01:7b:ec:f6:c3:22:90:01:9b:f1:1e:4f:25:e9:41:
36:34:49:da
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFrcZuhlDyvp2bOZVJlbsZrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5Mzk1NDBmZDE2YjYzMzUwMWZiZjc0NDFhNzQ2ZmM1NmY5
ZjU5YmYwHhcNMjQwODE5MTYyMTMzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTBjNDM2MTEwNjVjOGNlZDJiODhjZDZhYmNmNjA2ZDc1YmFkZDAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi7yXdvEMBYIl2k6xJ3DOCJwBU5J2
u0EiijpaUY+PIEabw/uHQQU6HPShKJoNI1wZ45MYCAALBugaownlU9tCVz2T1/q6
+dhNDwu1hid7WZhjRgwHkkYpiZgAMgRp5uf3wO3K1dc3BSg3QPWfG/KHBS0tuZpe
u6cTSYxLjYhSe3UqY41efn8lTA+75malaajqFTjsJbZ5HbUJ0EVDAg7Fy9YtuH0W
7PaUZidkJvcI7h2hJvGvhtkEMaBc/BbyvkVZxhEij3t7WIQiJjpQGMpbceqcKyIw
/P4Rn+52QTznlXiiHidXDq8AEyBVUj9pvyGLDObRJ6emzSCNzx2ha3c7nwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGoMQ2EQZcjO0riM1qvPYG11ut0CMB8GA1UdIwQY
MBaAFOk5VA/Ra2M1Afv3RBp0b8Vvn1m/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNlRsVUQ5RnJZelVCLV9kRUduUnZ4Vy1mV2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni81YWY0Y2UtMGVlZS00MTgyLTkwOTQt
OWY1MmM3MzBhY2RmLzEvYWd4RFlSQmx5TTdTdUl6V3E4OWdiWFc2M1FJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni81YWY0Y2UtMGVlZS00MTgyLTkwOTQtOWY1MmM3MzBhY2Rm
LzEvNlRsVUQ5RnJZelVCLV9kRUduUnZ4Vy1mV2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHgRMA0G
CSqGSIb3DQEBCwUAA4IBAQAu1EjeDU8fGvcHPJ73XwLVMia/BCY4J7AZI7pzd+32
yJ6CPZWZ0gA0RzgVOUbeeKva6LOz0Tt6XTUA/ebOUdMBQj7PX0BbREqwTMEPNgjR
0F81/kRT//cfqeUzBL0qz5py194OLYbpIZm/rutppCQioOMA3g8KkM/AVHtFPbtU
8jg7SgjnfNvIktDLPSsaO60e7NlzlCKfYqJRfkKNN8vaD0Cag8aWJv9YfAmSeh4e
5lORXrrKE3RQYXKvjPL/Us+AKSrweGELuSoFCFegEWrKCVx5GiHLQGuiP4Yz7Utf
2NpvgqgDu9LbTKvI7JkBe+z2wyKQAZvxHk8l6UE2NEna
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:39:08 2025 by rpki-client