Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/6rPOelEga0hsAWnRnJ-xObxVy5Y.roa
File: 6rPOelEga0hsAWnRnJ-xObxVy5Y.roa (raw, json)
Hash identifier: 3LY9kUEMsJ4sM3MS8qvpbdGfVb/Ex3yn1/25xeKUKBY=
Subject key identifier: EA:B3:CE:7A:51:20:6B:48:6C:01:69:D1:9C:9F:B1:39:BC:55:CB:96
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 01947FA4AF533AF2DFDF9A3B0045DED25E95
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/6rPOelEga0hsAWnRnJ-xObxVy5Y.roa
Signing time: Sun 19 Jan 2025 17:38:06 +0000
ROA not before: Sun 19 Jan 2025 17:38:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 217.181.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Jan 2025 10:17:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:7f:a4:af:53:3a:f2:df:df:9a:3b:00:45:de:d2:5e:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Jan 19 17:38:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=eab3ce7a51206b486c0169d19c9fb139bc55cb96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3a:79:48:e6:9e:45:e3:80:ea:f3:f2:5d:66:
a9:d7:b2:26:7e:3a:03:32:45:fe:84:bf:ba:f6:be:
de:64:10:73:75:8c:10:a2:1f:07:38:55:96:89:d4:
c6:68:10:2a:2e:1d:af:64:78:81:ca:8b:6e:50:b9:
eb:25:bd:44:c3:f8:64:76:bb:f5:0e:58:ae:11:4e:
25:d6:4e:e3:7b:8a:ca:a5:ca:ea:9b:10:c2:e2:65:
07:53:8c:a9:2a:c4:24:dd:5b:6d:b9:5f:b9:8b:75:
cb:c1:ae:a3:46:9c:fa:e6:98:06:60:39:a6:8d:c7:
f0:61:10:3c:34:03:da:ab:37:8a:24:3d:d9:4f:09:
da:81:51:92:c4:8e:ae:f5:7f:fc:22:02:1d:7e:8e:
b5:98:d4:29:d2:bc:7d:53:3d:d8:db:94:e7:1f:cd:
4c:e6:f1:f2:96:18:25:f0:b9:60:93:2d:70:73:c9:
e6:ae:e1:26:b1:6a:44:ce:44:91:96:17:73:81:ae:
36:4e:8c:3a:27:e0:bc:a3:ca:c9:11:1d:7a:c5:1e:
cd:63:11:5e:0e:8d:cf:92:fd:58:64:8e:ae:14:ee:
95:cf:35:be:6a:eb:04:e1:69:f5:e2:5d:a4:b5:dc:
4a:d3:e2:01:e2:d4:b9:4c:14:a3:fa:83:c0:2c:b5:
e9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:B3:CE:7A:51:20:6B:48:6C:01:69:D1:9C:9F:B1:39:BC:55:CB:96
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/6rPOelEga0hsAWnRnJ-xObxVy5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.181.64.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:64:6e:7b:ee:4f:32:2f:15:85:ee:aa:41:bb:e1:6b:53:e8:
39:37:58:fb:05:47:f5:86:67:09:12:2c:2c:e5:f6:97:4f:a5:
f1:98:05:f9:23:d1:03:3d:ab:a8:42:4c:64:02:53:50:53:3c:
08:05:f0:52:e8:31:f5:31:60:b4:48:94:11:63:af:c4:7f:0f:
5f:75:e8:15:22:92:f4:65:c7:f2:0d:1a:00:4f:ab:f8:30:b8:
cd:34:cd:d9:ad:af:fa:eb:79:e9:b5:d8:e5:43:8b:0c:cf:2b:
73:07:7a:85:6d:ee:e9:55:23:23:f5:b9:ae:ed:41:c2:fc:fe:
98:c9:9c:e3:76:98:7d:83:5a:b7:17:e1:18:f6:44:5d:1e:39:
80:a7:d6:ad:e0:57:83:68:d9:8e:21:32:9c:5d:ad:05:25:12:
76:97:f0:d4:74:9f:8e:bf:b3:5c:1a:97:e6:da:62:db:8a:5b:
ae:00:ce:8a:49:4c:97:68:5f:c4:5d:da:e6:58:35:53:d8:6c:
f2:7a:af:84:37:bd:17:ed:52:ba:4e:13:cf:67:fc:8a:1d:ea:
c9:6a:b3:ef:13:8c:7a:da:dd:43:c7:02:4c:50:ad:24:84:e8:
05:f5:7f:36:fc:cc:99:74:34:16:32:ce:fb:39:e6:80:cf:84:
69:2f:b3:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:06:40 2025 by rpki-client