Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/b97693-1d02-40dc-9af7-a015168c3323/1/6qRr5YMvWZlseBwu7Ua0Rm60CqE.roa
File: 6qRr5YMvWZlseBwu7Ua0Rm60CqE.roa (raw, json)
Hash identifier: wNBnNkUXwW+x1BktaPUPt0rzSV0C8EvpHZT3+Txhb5k=
Subject key identifier: EA:A4:6B:E5:83:2F:59:99:6C:78:1C:2E:ED:46:B4:46:6E:B4:0A:A1
Certificate issuer: /CN=74eba0122f643adca0cbc6f6a4681b6d77e93620
Certificate serial: 018CB5E248E1E1966967F76CC8CB5B68B527
Authority key identifier: 74:EB:A0:12:2F:64:3A:DC:A0:CB:C6:F6:A4:68:1B:6D:77:E9:36:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOugEi9kOtygy8b2pGgbbXfpNiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/b97693-1d02-40dc-9af7-a015168c3323/1/6qRr5YMvWZlseBwu7Ua0Rm60CqE.roa
Signing time: Fri 29 Dec 2023 14:02:35 +0000
ROA not before: Fri 29 Dec 2023 14:02:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51011
IP address blocks: 178.217.24.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b5:e2:48:e1:e1:96:69:67:f7:6c:c8:cb:5b:68:b5:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74eba0122f643adca0cbc6f6a4681b6d77e93620
Validity
Not Before: Dec 29 14:02:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eaa46be5832f59996c781c2eed46b4466eb40aa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:68:a9:27:ac:8c:82:aa:9c:0a:af:e9:92:7d:
0c:64:26:ae:be:70:11:1a:e0:a7:7f:2e:ee:8b:d4:
23:ed:a8:ae:1c:34:55:14:3b:af:d2:61:e3:5a:e6:
fc:61:bf:50:6e:47:d6:8a:49:97:ce:5d:7f:4f:77:
e8:fe:9e:e0:13:4e:f7:b0:c9:05:bd:62:6a:bf:77:
08:02:e0:d9:f4:6c:05:8f:0f:e7:30:5f:bc:f5:fe:
10:3f:3c:a4:fa:ed:fe:3e:89:5f:04:cb:c7:a3:9c:
f6:d3:e3:b3:d4:e6:59:09:ea:6a:0e:b7:eb:7c:f9:
50:56:e5:e6:37:6c:a1:d5:fe:be:1e:02:be:36:7d:
e7:42:30:e7:8c:c8:4d:cb:73:7e:57:39:3c:da:c3:
43:75:64:c2:40:0c:d1:22:d0:ad:30:a7:ee:9d:b6:
41:ff:5b:07:d1:df:17:23:33:a9:33:d8:ec:4b:d2:
48:15:3d:b4:f4:10:8d:44:ba:a8:43:c7:cb:45:57:
88:fe:79:b0:44:0f:ab:2d:19:c4:11:b9:da:04:f3:
52:c5:80:8f:e7:6d:09:0c:81:28:31:30:96:ac:4b:
b1:24:c2:17:af:c0:e0:c2:87:7a:54:8c:77:7f:da:
35:1e:6d:b8:6a:f2:29:e9:8e:4d:27:ed:fd:4f:d0:
67:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:A4:6B:E5:83:2F:59:99:6C:78:1C:2E:ED:46:B4:46:6E:B4:0A:A1
X509v3 Authority Key Identifier:
keyid:74:EB:A0:12:2F:64:3A:DC:A0:CB:C6:F6:A4:68:1B:6D:77:E9:36:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOugEi9kOtygy8b2pGgbbXfpNiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b97693-1d02-40dc-9af7-a015168c3323/1/6qRr5YMvWZlseBwu7Ua0Rm60CqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b97693-1d02-40dc-9af7-a015168c3323/1/dOugEi9kOtygy8b2pGgbbXfpNiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.217.24.0/21
Signature Algorithm: sha256WithRSAEncryption
49:ca:52:22:20:13:d1:c4:b5:d0:83:9b:81:43:07:fd:fc:1f:
52:84:66:cf:d3:42:2f:f6:2d:a7:6a:bc:b2:bd:9e:25:de:dd:
35:12:ca:6d:3f:4b:08:59:f9:92:d6:73:0d:66:8c:9d:71:b0:
90:e7:cf:6e:ec:9e:a1:d1:97:45:1a:a5:30:34:ca:63:36:0a:
0a:4f:45:fc:66:ad:c8:2d:99:36:32:f5:ab:9e:da:05:d9:e0:
10:47:09:05:59:af:a9:e3:41:7c:e9:d1:7f:f9:48:29:53:ae:
fe:e7:ab:35:6b:f6:2d:97:81:39:8a:0c:f0:66:53:00:5e:1e:
dd:4a:22:b1:0e:f3:bd:aa:d7:3d:f2:a6:10:80:ef:80:39:c8:
a6:6e:e0:eb:76:27:5f:d1:55:26:c0:69:b4:ae:06:7d:e2:75:
54:75:b3:90:0e:82:47:c5:75:f3:4c:eb:4d:49:89:41:7f:f2:
be:8e:9a:6d:28:01:39:f1:21:f7:03:bd:c4:f2:56:ea:e5:37:
0e:3c:ab:a6:f0:30:d0:50:73:9d:62:ad:63:b6:cd:f3:09:0f:
85:ff:23:58:36:c8:4b:d1:ec:17:0c:1c:89:44:47:e7:0f:53:
82:25:d1:01:49:df:02:dc:78:5f:67:75:ad:bb:40:c9:3c:13:
f8:7c:e4:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:54 2024 by rpki-client on console-fra.rpki-client.org