Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/dGCo6utqyKJfcpOyaX7p20-n3nA.roa
File: dGCo6utqyKJfcpOyaX7p20-n3nA.roa (raw, json)
Hash identifier: GzdYz4pfk+TG+w56OFkB1ENUtHa2LrYavA6rfbyz3Nw=
Subject key identifier: 74:60:A8:EA:EB:6A:C8:A2:5F:72:93:B2:69:7E:E9:DB:4F:A7:DE:70
Certificate issuer: /CN=464952bc165441ec6e2e2010c933dc830f361731
Certificate serial: 018AE00330209CCBE31B92B9463B072560AC
Authority key identifier: 46:49:52:BC:16:54:41:EC:6E:2E:20:10:C9:33:DC:83:0F:36:17:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RklSvBZUQexuLiAQyTPcgw82FzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/dGCo6utqyKJfcpOyaX7p20-n3nA.roa
Signing time: Fri 29 Sep 2023 08:16:59 +0000
ROA not before: Fri 29 Sep 2023 08:16:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47414
IP address blocks: 217.19.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e0:03:30:20:9c:cb:e3:1b:92:b9:46:3b:07:25:60:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=464952bc165441ec6e2e2010c933dc830f361731
Validity
Not Before: Sep 29 08:16:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7460a8eaeb6ac8a25f7293b2697ee9db4fa7de70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:72:79:e8:e7:0e:85:2d:10:5d:d0:08:bf:15:
1e:50:f6:d5:40:22:f2:b5:0e:19:c3:96:b4:88:cb:
1f:c6:80:44:31:d1:96:58:3b:f5:22:9a:60:19:d7:
4a:af:78:3d:04:56:61:a2:01:69:9d:db:fb:08:f4:
0a:6d:b9:0c:bb:b2:ca:b9:ec:3f:c0:70:57:28:7a:
56:0b:ad:45:4b:18:0b:20:e1:46:bb:75:24:fa:91:
98:5b:07:f5:a2:d2:45:a8:ff:0a:fe:c9:3f:1e:5c:
00:1b:db:d4:86:ff:ac:52:c0:ba:3b:2d:9b:ad:0c:
a9:17:a8:df:bb:07:93:c9:b8:0e:f1:8c:dc:35:74:
99:27:d6:dc:e4:a1:d7:2a:59:1b:72:8d:1a:7f:e8:
ff:cd:33:7c:3d:20:60:d7:f6:1b:00:d0:fd:e5:23:
d4:c4:e7:5d:cf:cb:3d:2b:8b:c3:80:da:6b:80:fa:
6f:ae:3b:92:e6:c4:6c:fd:00:75:48:9f:1e:88:75:
e2:63:ff:bf:fc:e2:54:cd:f0:23:5f:41:cb:9b:7f:
2d:48:00:50:0e:e4:0f:88:b6:fe:48:a9:07:47:1c:
ef:8e:3f:fd:16:2c:28:67:03:d4:e0:06:e5:57:c8:
11:0e:1f:2f:5c:7c:a0:be:aa:17:3a:a4:89:e8:07:
31:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:60:A8:EA:EB:6A:C8:A2:5F:72:93:B2:69:7E:E9:DB:4F:A7:DE:70
X509v3 Authority Key Identifier:
keyid:46:49:52:BC:16:54:41:EC:6E:2E:20:10:C9:33:DC:83:0F:36:17:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RklSvBZUQexuLiAQyTPcgw82FzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/dGCo6utqyKJfcpOyaX7p20-n3nA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/RklSvBZUQexuLiAQyTPcgw82FzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.19.6.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:d0:36:5e:d0:65:66:fd:df:00:8b:06:2e:47:e4:af:19:8f:
45:a5:52:e0:29:46:9b:48:fd:36:10:b2:e4:57:a4:44:6f:03:
b2:1d:d5:10:90:c4:b3:36:1d:7e:57:09:10:b9:cb:c9:d1:b7:
a9:c0:8e:66:f9:da:8b:44:95:c1:a2:94:00:4b:a8:16:d0:1d:
0a:06:e5:82:34:11:3a:2a:3f:4d:f2:dc:1d:cb:28:c7:a8:bf:
09:0c:cb:18:03:2b:8a:d0:de:25:bf:fe:fa:15:d1:eb:8a:02:
e3:fb:da:c2:46:c9:7a:53:c0:51:8b:92:94:9b:c2:06:6b:34:
59:ec:d4:c8:12:65:a1:f7:ca:dd:4e:e0:a2:17:43:1f:16:c0:
6f:2d:67:1c:c9:60:52:3c:d7:4f:c7:be:63:38:8f:97:06:0b:
fd:ed:d0:71:c7:dd:f6:63:4d:fe:ab:1d:07:d5:d2:94:4d:bf:
6b:07:4d:e8:69:69:02:74:6b:bc:90:c6:23:e7:5c:02:99:15:
6f:14:e0:f0:e2:45:92:fe:77:a9:54:35:03:8b:26:56:04:fa:
ae:d7:ad:6d:f4:3d:05:59:d0:2d:3c:7f:bd:f4:0a:b3:c0:a4:
53:2f:74:07:61:08:fd:54:db:ae:25:28:62:29:df:ca:1f:bb:
a6:5a:f1:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:38 2024 by rpki-client on console-fra.rpki-client.org