Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/aAVzAmRQDayze4pJWQGfEzUBRTQ.roa
File: aAVzAmRQDayze4pJWQGfEzUBRTQ.roa (raw, json)
Hash identifier: /jciUB7S/wZ7kgRJ5Wparfmp8SsfJY3lJBoZikwz8Xo=
Subject key identifier: 68:05:73:02:64:50:0D:AC:B3:7B:8A:49:59:01:9F:13:35:01:45:34
Certificate issuer: /CN=8ceb23e2c5d9f2c734488904505835ef2809fb3b
Certificate serial: 018CC94D604F7BB4F26FE56CEFCDCA0EFD83
Authority key identifier: 8C:EB:23:E2:C5:D9:F2:C7:34:48:89:04:50:58:35:EF:28:09:FB:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jOsj4sXZ8sc0SIkEUFg17ygJ-zs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/aAVzAmRQDayze4pJWQGfEzUBRTQ.roa
Signing time: Tue 02 Jan 2024 08:32:20 +0000
ROA not before: Tue 02 Jan 2024 08:32:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57231
IP address blocks: 109.105.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 06:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:60:4f:7b:b4:f2:6f:e5:6c:ef:cd:ca:0e:fd:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ceb23e2c5d9f2c734488904505835ef2809fb3b
Validity
Not Before: Jan 2 08:32:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6805730264500dacb37b8a4959019f1335014534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:58:89:c7:08:51:8b:28:6f:95:24:29:31:85:
9f:40:6f:07:3e:9b:22:cd:36:8d:5c:4f:b4:d9:de:
f0:b4:5e:4d:ce:0e:7c:0a:4f:65:8c:49:c9:24:c5:
af:b1:c6:51:b2:c2:28:48:12:c3:82:37:a5:2e:6b:
5a:62:d5:a6:54:7c:ff:b8:bb:52:d8:47:f2:b5:ca:
64:d0:d0:32:50:c9:c4:e1:d5:77:9e:a4:12:bc:f0:
3f:16:35:f0:36:aa:72:be:25:72:2a:67:e5:b5:16:
55:53:30:7a:a5:53:bb:d4:ff:7a:d5:95:3c:57:a9:
8f:48:ec:86:90:45:fe:3c:db:d0:57:2d:c4:31:9b:
07:a3:8d:36:c1:fd:33:60:8e:12:67:0d:28:e8:a6:
66:46:e0:af:00:ff:0f:4b:b2:70:20:4a:f2:bc:88:
17:78:fd:4f:77:e4:90:e5:4d:ed:71:f4:59:a7:ea:
90:c8:77:25:19:aa:4d:2e:25:c4:a0:87:6e:38:9d:
10:ef:9b:d5:e5:2b:98:42:d8:c1:94:ad:15:05:d6:
47:70:5d:ff:19:95:aa:48:1c:0c:ef:1e:f2:45:ee:
14:de:65:1c:0b:a6:02:f9:c7:33:64:48:bb:ed:5f:
f0:fb:49:65:63:67:f3:69:e8:d7:30:7a:42:83:1e:
35:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:05:73:02:64:50:0D:AC:B3:7B:8A:49:59:01:9F:13:35:01:45:34
X509v3 Authority Key Identifier:
keyid:8C:EB:23:E2:C5:D9:F2:C7:34:48:89:04:50:58:35:EF:28:09:FB:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jOsj4sXZ8sc0SIkEUFg17ygJ-zs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/aAVzAmRQDayze4pJWQGfEzUBRTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/jOsj4sXZ8sc0SIkEUFg17ygJ-zs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.159.0/24
Signature Algorithm: sha256WithRSAEncryption
64:32:26:aa:72:0a:3a:a3:0a:f1:e0:6e:87:51:e1:c9:96:19:
7a:c1:83:75:e3:43:13:ee:13:5d:b6:74:ca:95:9f:d7:bd:64:
85:25:63:3e:45:a5:72:7e:36:db:63:85:1e:50:00:4d:24:d0:
a0:31:d9:4b:fa:e7:a2:da:6d:e6:80:22:13:e4:b5:c5:54:2a:
63:93:bf:c5:a1:6d:7c:32:bc:e2:7b:6c:b0:97:94:09:a8:96:
82:d5:8e:d5:5a:37:dd:11:84:ad:28:60:06:e1:12:39:cd:59:
11:e4:96:ad:ac:b8:ad:5d:fe:65:46:7f:e1:07:03:92:56:b0:
b2:a5:4f:7b:16:cf:4d:20:ee:3b:7f:41:06:25:a5:00:b9:49:
5f:91:34:8b:71:fe:33:f4:8c:2b:58:87:27:55:a4:28:6a:ab:
52:e2:2e:3f:d1:3a:36:96:72:34:14:45:af:2b:09:22:c3:fa:
18:ba:45:12:14:cd:49:5a:ef:a4:4e:57:56:cb:02:8e:7a:ea:
37:5e:78:52:e4:3e:8a:3e:0c:06:e2:3a:c4:da:4a:41:84:a8:
50:a5:fe:d3:0b:1b:12:21:22:61:08:2c:b7:82:ad:d0:b1:5e:
fb:66:fd:0f:2a:82:4e:9f:c0:5f:c3:df:8a:66:9e:f2:1d:f1:
d2:39:5b:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org