Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/6QqGL9HU0FKO6cU4Rs6TdBKzi40.roa
File: 6QqGL9HU0FKO6cU4Rs6TdBKzi40.roa (raw, json)
Hash identifier: 2lGY8mxrIEwIj2AOmrlc3rJERHV0tw7N5IKLNXpd7WY=
Subject key identifier: E9:0A:86:2F:D1:D4:D0:52:8E:E9:C5:38:46:CE:93:74:12:B3:8B:8D
Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Certificate serial: 01921F7EFBF2C168A9B6CEDD4100D8610325
Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/6QqGL9HU0FKO6cU4Rs6TdBKzi40.roa
Signing time: Mon 23 Sep 2024 15:27:48 +0000
ROA not before: Mon 23 Sep 2024 15:27:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 37.143.4.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Oct 2024 08:59:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:1f:7e:fb:f2:c1:68:a9:b6:ce:dd:41:00:d8:61:03:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Validity
Not Before: Sep 23 15:27:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e90a862fd1d4d0528ee9c53846ce937412b38b8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d2:a2:f3:f0:85:02:be:21:e8:a0:ab:7b:6a:
79:2f:22:84:a7:21:9a:15:71:a2:d1:50:8f:9c:31:
1b:da:ae:35:ae:2f:99:cb:a3:c4:0f:51:85:39:f3:
e6:cb:30:93:45:39:c2:a0:e1:6d:da:0d:1b:5b:45:
bc:a2:6a:25:61:7c:d5:f1:16:8b:5c:65:65:95:68:
b9:2e:bb:82:4b:52:65:bd:8d:92:64:ef:3b:d8:ec:
b1:0f:f4:8e:ca:37:07:77:b0:33:47:9e:85:95:d0:
6f:99:1f:26:72:a6:c1:23:c8:77:d5:f0:2b:28:13:
34:bd:ae:b4:bd:d7:51:57:46:9c:8b:ed:1f:13:5b:
01:d0:e0:7d:9b:78:20:f1:0c:be:42:d6:38:10:2d:
2b:05:16:9e:38:a0:d9:98:d6:32:ed:b9:64:54:7e:
dc:a5:97:cb:2f:8a:48:2c:7a:09:cc:93:87:8b:3a:
3b:f7:b3:e7:4b:5e:d0:3e:76:85:10:ef:a8:5e:a7:
22:85:fa:97:c4:2d:f7:37:3d:e1:b0:15:b5:3b:35:
ce:11:5b:57:31:9c:31:05:2f:bf:06:a6:1a:a4:e0:
5b:33:ed:a3:8f:4b:21:27:54:9a:45:bc:bf:f9:35:
22:ee:f7:28:3a:2d:cf:f1:43:c8:1e:d2:d5:7d:47:
e2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:0A:86:2F:D1:D4:D0:52:8E:E9:C5:38:46:CE:93:74:12:B3:8B:8D
X509v3 Authority Key Identifier:
keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/6QqGL9HU0FKO6cU4Rs6TdBKzi40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.4.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:88:8f:78:5d:f0:84:92:eb:4d:b1:34:1c:ad:05:6b:4a:85:
79:83:66:94:62:51:2f:78:27:e9:e2:c4:d1:95:18:dd:0c:87:
0a:6d:6e:b5:51:56:03:c1:dd:d3:c9:16:01:89:0e:57:4d:c1:
27:1e:6a:66:86:6c:79:37:0a:10:fc:73:0a:b9:0d:ee:42:f0:
af:40:2f:2c:55:bf:00:e7:90:a9:eb:b7:9f:78:7f:79:df:7f:
53:c2:15:13:dc:4b:7e:9f:5c:b9:de:58:32:50:ba:50:a6:40:
cf:10:b4:db:fe:60:f1:df:3c:5f:c8:3e:ee:b1:be:15:f7:45:
a5:fe:4a:60:d8:fb:c6:65:e0:76:49:82:35:e6:b5:64:28:92:
80:2b:ba:a8:16:cb:4e:d8:40:36:e1:14:9a:3d:b7:2b:bd:e9:
6c:3f:f4:39:c5:37:63:f9:fe:b5:92:c6:9f:fc:ae:35:a9:32:
ee:7a:e7:df:0f:42:9e:18:7e:d3:ff:ea:ec:07:5c:dd:9c:4b:
69:85:08:84:19:40:fb:0c:7a:89:24:b2:fe:f9:f3:a1:d1:8c:
41:df:ea:32:b8:61:70:b4:f4:db:ff:4b:d5:b2:9d:e9:12:ee:
8f:e7:b8:70:9e:3c:99:28:2c:bc:db:84:67:45:c3:68:62:ec:
a6:cf:59:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:01 2025 by rpki-client