Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/qG19l5iUuLSLiRm1J3jYR13WFJc.roa
File: qG19l5iUuLSLiRm1J3jYR13WFJc.roa (raw, json)
Hash identifier: 9qoezOafcDqAikOjIQ/FoyA5DHcRAPFX6fGmV5ELsp0=
Subject key identifier: A8:6D:7D:97:98:94:B8:B4:8B:89:19:B5:27:78:D8:47:5D:D6:14:97
Certificate issuer: /CN=172289cbb8179fdf38e9f532c9cd7291b4f5c42d
Certificate serial: 01906D2D39A1D08DEA31664F6EB0224DCC79
Authority key identifier: 17:22:89:CB:B8:17:9F:DF:38:E9:F5:32:C9:CD:72:91:B4:F5:C4:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyKJy7gXn9846fUyyc1ykbT1xC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/qG19l5iUuLSLiRm1J3jYR13WFJc.roa
Signing time: Mon 01 Jul 2024 07:23:18 +0000
ROA not before: Mon 01 Jul 2024 07:23:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31346
IP address blocks: 217.145.180.0/24 maxlen: 24
217.145.181.0/24 maxlen: 24
217.145.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jul 2024 14:12:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6d:2d:39:a1:d0:8d:ea:31:66:4f:6e:b0:22:4d:cc:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172289cbb8179fdf38e9f532c9cd7291b4f5c42d
Validity
Not Before: Jul 1 07:23:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a86d7d979894b8b48b8919b52778d8475dd61497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ce:ab:96:a5:ab:fa:25:78:b3:ab:f3:f9:58:
37:67:33:d7:59:19:4f:04:c4:cd:32:9a:ab:7c:a1:
5b:1f:17:12:d5:f9:62:84:df:8e:09:55:ca:7f:d5:
de:70:7a:d7:28:62:53:a5:fd:9b:d7:fc:4e:11:bd:
82:fe:82:10:3f:f2:53:70:b5:0e:85:49:37:68:c2:
da:71:39:f7:c5:91:08:82:95:b6:8e:80:46:93:53:
88:a8:08:ca:8f:fb:9e:b4:45:13:7d:a5:18:a1:73:
1e:ac:9d:99:7b:a4:56:83:77:55:59:7d:c5:cd:cb:
53:ca:c0:c3:03:51:ec:c4:89:9e:e1:3b:92:73:0c:
b0:c0:84:b3:88:5b:e8:9d:4e:98:23:a7:ca:eb:22:
6d:69:12:59:b8:66:fa:cf:93:3d:a1:c0:4c:39:c4:
9a:ff:40:59:9f:dc:dc:ec:ea:28:98:63:b0:5c:9d:
c6:2b:bb:87:65:d3:90:fd:17:73:45:2c:da:ed:85:
33:0e:99:ae:87:00:5e:3b:78:ff:58:fa:7b:3c:2d:
3a:06:8d:74:b1:be:c6:9f:41:4f:6a:2a:0f:de:f6:
db:dd:b4:25:52:b6:5c:be:4e:5e:e0:1e:8b:d8:f6:
a5:5c:ba:46:d2:a6:f2:92:6b:11:96:ed:c6:70:5a:
6f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:6D:7D:97:98:94:B8:B4:8B:89:19:B5:27:78:D8:47:5D:D6:14:97
X509v3 Authority Key Identifier:
keyid:17:22:89:CB:B8:17:9F:DF:38:E9:F5:32:C9:CD:72:91:B4:F5:C4:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyKJy7gXn9846fUyyc1ykbT1xC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/qG19l5iUuLSLiRm1J3jYR13WFJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.145.180.0-217.145.182.255
Signature Algorithm: sha256WithRSAEncryption
4c:7d:b3:35:c9:a4:08:8f:da:87:79:8f:38:a8:51:7b:e5:60:
36:86:69:c1:92:1a:09:9f:5f:3b:2a:d6:cd:69:df:b5:b6:cb:
f5:be:5d:fc:dd:98:aa:d1:b9:ee:14:8f:1d:d8:d1:36:5e:9e:
8f:7a:47:15:4a:0a:c7:63:cd:a2:3c:7a:61:37:1c:02:aa:ca:
3d:9f:33:c9:3d:ca:ab:ac:94:79:2c:f2:04:c3:c4:1b:a6:56:
ad:71:55:3e:54:d9:e1:ff:d9:cc:b1:85:77:9a:97:ce:1f:52:
73:e7:3f:aa:5b:ec:9f:96:a7:93:ed:88:bd:e4:92:66:7f:47:
4f:64:43:3b:e5:5b:20:60:d0:7b:05:a9:38:82:ab:dc:61:08:
3c:74:a9:0e:7f:d2:86:30:92:ee:4b:0d:df:05:a8:ca:62:58:
4f:ea:95:bc:7a:cc:2e:08:6f:a4:f3:c5:9e:94:90:78:d1:9b:
fb:96:be:d3:43:f5:7e:64:cd:e5:b9:e7:80:96:ad:d1:40:b6:
6d:44:c4:b5:71:c5:e9:ec:78:ed:f6:b5:f6:32:4a:88:59:48:
c3:1a:67:49:bc:ba:9e:26:f8:28:cf:44:68:ba:95:ab:66:45:
dc:2d:40:bd:90:93:62:a8:4c:57:4d:30:d2:af:d0:be:bb:e4:
d6:89:33:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:37 2025 by rpki-client