Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/bad1c1-365d-41de-ad7c-ce8fc93adb21/1/aSTxkM128HVZUJ42gSC2cJnaSiA.roa
File: aSTxkM128HVZUJ42gSC2cJnaSiA.roa (raw, json)
Hash identifier: 0QEAN41NMjc3jrZ0ealuA6ZqU/B5U6BcAfDAMIQCmac=
Subject key identifier: 69:24:F1:90:CD:76:F0:75:59:50:9E:36:81:20:B6:70:99:DA:4A:20
Certificate issuer: /CN=474a88bc6e9e10bbaf150f019bbf8a615a2b03c2
Certificate serial: 01856E0B0084C0D4A067376925D71540C7B0
Authority key identifier: 47:4A:88:BC:6E:9E:10:BB:AF:15:0F:01:9B:BF:8A:61:5A:2B:03:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R0qIvG6eELuvFQ8Bm7-KYVorA8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/bad1c1-365d-41de-ad7c-ce8fc93adb21/1/aSTxkM128HVZUJ42gSC2cJnaSiA.roa
Signing time: Sun 01 Jan 2023 15:54:52 +0000
ROA not before: Sun 01 Jan 2023 15:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44305
IP address blocks: 217.61.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0b:00:84:c0:d4:a0:67:37:69:25:d7:15:40:c7:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=474a88bc6e9e10bbaf150f019bbf8a615a2b03c2
Validity
Not Before: Jan 1 15:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6924f190cd76f07559509e368120b67099da4a20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:90:92:6a:37:55:00:64:4f:f3:37:c9:c1:ba:
23:1c:75:2b:bd:ce:fa:ce:2a:ca:84:51:d2:b4:37:
cd:a5:49:35:a4:42:ef:78:c4:fe:2a:ed:6c:a1:cc:
30:a3:78:54:a3:a7:83:02:f8:d1:5f:e7:11:5b:07:
ee:d0:41:7f:7a:70:93:30:8f:c9:d8:a5:fc:ee:9b:
66:02:87:77:8b:96:42:4d:05:fc:93:33:e1:7e:12:
29:1e:27:9d:32:64:c5:8a:2f:6d:41:37:82:a4:fc:
8e:51:af:f0:7f:b9:30:62:df:a6:ba:d8:dc:d5:9c:
3b:f8:de:99:7a:fa:37:03:eb:a4:9a:f0:2d:af:d8:
d6:61:ff:8e:d7:b1:4e:4e:bb:d5:66:fd:88:b7:f1:
5a:88:99:4d:eb:5c:1f:81:d2:27:cb:1e:b8:bd:ef:
ea:01:4c:2c:79:6c:cc:2f:ea:66:17:eb:eb:37:7c:
85:87:44:72:ed:77:d8:cb:95:ae:df:a5:7d:d0:83:
50:e2:c5:a0:c5:4d:2d:e5:6a:aa:63:5c:8c:94:21:
c9:38:b7:18:02:b6:92:e4:3b:9a:9c:40:70:a6:1f:
6c:6f:33:81:ce:b7:a3:9e:56:4e:9a:56:2f:e4:8d:
08:ea:50:f3:3f:d3:a2:8c:6d:43:00:c6:7e:5a:43:
93:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:24:F1:90:CD:76:F0:75:59:50:9E:36:81:20:B6:70:99:DA:4A:20
X509v3 Authority Key Identifier:
keyid:47:4A:88:BC:6E:9E:10:BB:AF:15:0F:01:9B:BF:8A:61:5A:2B:03:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R0qIvG6eELuvFQ8Bm7-KYVorA8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bad1c1-365d-41de-ad7c-ce8fc93adb21/1/aSTxkM128HVZUJ42gSC2cJnaSiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bad1c1-365d-41de-ad7c-ce8fc93adb21/1/R0qIvG6eELuvFQ8Bm7-KYVorA8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.61.186.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:1f:d0:5c:13:ce:6e:b6:ba:26:a0:cb:93:01:5d:df:27:ad:
5b:d9:61:ba:66:34:62:67:81:14:db:59:45:e7:80:a6:6f:08:
41:6a:f3:a1:20:ed:63:bc:ca:39:65:50:06:27:3a:b6:b5:0a:
03:81:2a:0a:42:ac:a7:f2:8c:53:2e:f7:57:04:ed:6e:e5:64:
40:df:8a:d6:8b:5f:1a:3c:b1:7c:51:0e:4b:aa:67:c5:7e:31:
f8:9f:1c:ef:8c:76:cf:1e:a6:6e:3d:ce:8c:da:7a:0d:38:fb:
e5:6b:a4:90:a5:89:f3:3a:a5:9e:76:91:b5:d9:68:aa:a0:09:
e1:d9:91:3e:c0:31:c7:ec:97:f0:92:b8:a1:cc:06:9c:e9:d0:
62:c8:d3:be:30:73:a6:35:f4:80:3b:68:d9:71:dc:8a:ae:ca:
bf:d0:61:87:e1:09:14:42:39:b7:cc:6a:64:6f:db:d7:6e:04:
e8:7f:c5:bb:6c:22:1a:3b:e6:85:49:50:1f:9e:e4:f8:08:44:
b6:d9:37:0b:da:8f:47:15:6d:ee:ad:26:9f:39:af:13:e8:28:
2c:86:05:10:62:cd:70:e6:54:c3:66:ef:69:5a:c4:31:a8:d6:
b1:62:6f:e4:6d:51:0c:63:27:49:dc:65:5c:2a:e4:c3:2c:65:
5d:22:4e:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:21 2024 by rpki-client on console-fra.rpki-client.org