Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/v69Q4aP0c4GsO4QMOTMgfm1PvEU.roa
File: v69Q4aP0c4GsO4QMOTMgfm1PvEU.roa (raw, json)
Hash identifier: WkL0kBXAnEUwIgcmhdBi+O1eKOLHVOLUiTFUBToIfZU=
Subject key identifier: BF:AF:50:E1:A3:F4:73:81:AC:3B:84:0C:39:33:20:7E:6D:4F:BC:45
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 019395D2A40D38A7A6CAAD6751D9A3D01472
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/v69Q4aP0c4GsO4QMOTMgfm1PvEU.roa
Signing time: Thu 05 Dec 2024 07:57:09 +0000
ROA not before: Thu 05 Dec 2024 07:57:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 62.171.228.0/24 maxlen: 24
62.171.229.0/24 maxlen: 24
62.171.231.0/24 maxlen: 24
62.171.248.0/24 maxlen: 24
62.171.251.0/24 maxlen: 24
217.177.32.0/24 maxlen: 24
217.177.35.0/24 maxlen: 24
217.180.12.0/24 maxlen: 24
217.180.13.0/24 maxlen: 24
217.180.14.0/24 maxlen: 24
217.180.16.0/24 maxlen: 24
217.180.17.0/24 maxlen: 24
217.180.18.0/24 maxlen: 24
217.180.19.0/24 maxlen: 24
217.180.20.0/24 maxlen: 24
217.180.38.0/24 maxlen: 24
217.180.45.0/24 maxlen: 24
217.180.58.0/24 maxlen: 24
217.180.59.0/24 maxlen: 24
217.180.61.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:47:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:95:d2:a4:0d:38:a7:a6:ca:ad:67:51:d9:a3:d0:14:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Dec 5 07:57:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bfaf50e1a3f47381ac3b840c3933207e6d4fbc45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1a:ba:d4:27:e4:30:4a:bd:69:11:74:27:10:
36:87:2e:04:5e:1c:2f:ba:1e:a7:fa:b9:e1:9c:6f:
df:5f:8d:cc:a1:5a:8f:ea:09:59:55:6d:ba:51:e4:
7e:16:4f:a7:4d:34:e5:d8:0b:78:b7:7c:5b:23:a6:
db:4a:87:4f:8c:5a:d9:ff:be:97:be:f1:6f:2f:37:
da:7a:e4:54:b7:45:cc:cd:cc:b2:0a:a8:24:cc:26:
b5:68:0c:b2:b5:f8:cb:2d:26:7b:4d:1a:d6:ed:3b:
f5:05:9a:5b:51:01:4a:66:8c:8c:99:28:a8:0a:f6:
be:af:da:ed:b8:ce:43:77:33:6f:57:6c:75:11:03:
a1:5c:23:f7:65:50:5f:ef:b5:4c:f1:45:9c:ff:16:
47:fc:07:95:9b:3b:78:0c:d6:a9:bc:ee:5b:e3:4b:
c5:37:10:a1:cd:26:be:bc:b5:4a:c3:a7:b0:97:5d:
e8:a0:af:b8:a8:c0:2b:c2:4f:87:fe:4a:4f:f2:e4:
6e:f7:23:a1:83:64:48:1a:c0:8f:c8:f5:7b:48:87:
27:c1:93:37:5a:bf:47:f7:18:e2:4e:6c:d5:27:2a:
df:e5:a0:63:8c:11:78:a6:ee:f1:bd:0a:0e:5d:75:
c8:42:ce:bd:12:fc:2b:59:75:e9:a0:98:bd:75:91:
42:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AF:50:E1:A3:F4:73:81:AC:3B:84:0C:39:33:20:7E:6D:4F:BC:45
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/v69Q4aP0c4GsO4QMOTMgfm1PvEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.171.228.0/23
62.171.231.0/24
62.171.248.0/24
62.171.251.0/24
217.177.32.0/24
217.177.35.0/24
217.180.12.0-217.180.14.255
217.180.16.0-217.180.20.255
217.180.38.0/24
217.180.45.0/24
217.180.58.0/23
217.180.61.0/24
Signature Algorithm: sha256WithRSAEncryption
45:1a:88:82:26:82:f9:29:f8:7d:e7:2f:03:b2:6c:04:5c:2d:
e7:e5:31:7d:b3:b7:f0:28:9c:7d:3d:3e:6a:40:9f:85:03:a7:
df:64:15:ae:3e:04:8b:99:f7:22:84:b0:4b:16:65:1b:ee:44:
58:02:23:1f:d2:b1:f8:e1:4e:5b:7b:9e:82:6f:8f:b9:32:87:
ff:83:48:1a:67:84:6e:0b:d9:69:d1:f6:1c:42:22:18:59:b5:
3b:d7:32:a8:6b:0f:0b:4b:8d:69:f2:da:95:a4:6f:1b:16:e8:
1a:cb:3d:41:e4:95:77:b0:c5:df:44:be:0c:43:c3:44:d9:4e:
9b:84:2e:95:bb:8b:89:69:5a:ef:24:65:54:cc:e5:90:b1:d6:
55:1e:2f:a8:f0:ed:b5:e4:3f:aa:bf:cf:72:76:a8:a5:28:26:
76:08:92:13:dd:e7:e2:bb:be:dc:83:9a:9b:45:bb:a1:9c:e2:
4e:62:53:5f:80:9b:38:7f:c2:11:c2:5e:fe:19:36:b7:32:aa:
49:2a:a7:ae:2e:3a:75:6d:90:9d:22:4f:c5:29:9d:f3:0b:bf:
9a:ee:50:68:cd:0f:69:92:41:07:f2:52:f2:f9:56:77:a2:b9:
fd:86:8a:54:0b:30:e9:a7:07:0b:ee:a1:fa:1e:a6:ed:c4:da:
7a:43:68:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 00:20:15 2025 by rpki-client