Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/jYde4QwoZltb5Nue4wVv8wT4QfY.roa
File: jYde4QwoZltb5Nue4wVv8wT4QfY.roa (raw, json)
Hash identifier: hHshdZSC+YWxV90nLlKRjOnpUgHr9Hr3TRdNN6aElJo=
Subject key identifier: 8D:87:5E:E1:0C:28:66:5B:5B:E4:DB:9E:E3:05:6F:F3:04:F8:41:F6
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 01856D4AD2655448D90F771384D0E4550CDA
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/jYde4QwoZltb5Nue4wVv8wT4QfY.roa
Signing time: Sun 01 Jan 2023 12:24:58 +0000
ROA not before: Sun 01 Jan 2023 12:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 109.107.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Feb 2023 09:41:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:d2:65:54:48:d9:0f:77:13:84:d0:e4:55:0c:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Jan 1 12:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d875ee10c28665b5be4db9ee3056ff304f841f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c9:59:98:5b:2f:0d:7d:b2:fe:e3:e3:c4:44:
aa:9c:e9:38:17:9d:67:a3:ba:d8:57:43:45:6c:38:
0e:a2:25:6c:29:9c:56:63:17:60:54:6c:a8:6d:24:
7e:f3:30:1e:27:e7:bc:41:01:f0:96:3a:0f:9a:78:
d2:7b:9b:1c:75:49:28:61:06:da:bb:20:ce:f8:3b:
08:6b:5d:32:e4:2d:22:bc:af:de:e2:44:22:02:61:
f8:42:b4:19:45:c4:29:6c:62:8f:11:5e:7d:ef:b7:
d7:bd:b4:8f:e3:b2:33:08:c5:db:aa:50:5e:22:cc:
7b:af:ed:2a:88:19:6e:b0:05:16:c7:71:7d:58:a1:
76:e8:a1:16:72:45:86:e7:b7:77:9b:e4:91:a0:5e:
48:1e:58:bf:37:3c:48:1d:d8:2b:cd:4e:47:55:a7:
76:f3:3f:b9:86:0a:13:00:39:38:1c:bb:7e:dd:9e:
c3:1c:fb:4a:75:5a:05:9a:7c:97:18:7c:e0:ad:27:
46:c3:c6:c5:c0:a0:6c:7b:80:10:16:4d:b0:a5:c4:
c2:df:dd:cc:70:58:7d:d6:cf:c7:cd:70:e6:61:d2:
91:a1:bd:6d:bb:a2:16:7c:dd:82:89:12:8d:ed:f4:
37:59:49:de:11:64:81:a4:76:72:ef:98:1c:ae:85:
44:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:87:5E:E1:0C:28:66:5B:5B:E4:DB:9E:E3:05:6F:F3:04:F8:41:F6
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/jYde4QwoZltb5Nue4wVv8wT4QfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.132.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:b3:33:6c:72:c7:79:66:14:85:62:68:69:ee:a2:7a:69:a0:
df:fd:08:b7:1d:22:1f:76:35:af:e8:6b:20:2b:22:04:95:90:
39:20:2b:7b:26:f7:3c:e5:4c:a7:e0:21:f3:92:f4:15:cd:60:
c8:fd:4d:a8:25:d2:40:d2:2d:f0:65:65:24:89:d7:fa:f1:ef:
56:81:e7:ed:b2:ed:6c:b6:e2:50:de:63:88:10:84:25:96:3e:
74:22:1d:4c:2b:f8:2c:72:2f:71:6e:8d:00:27:d5:d0:f2:27:
9b:6c:4a:cf:43:57:37:85:af:f7:ea:ee:73:6f:27:78:11:e5:
7c:be:60:31:f1:17:42:8d:4a:55:af:05:3a:52:cd:a2:26:f9:
eb:a0:ab:9b:ed:57:5e:17:ac:b9:8c:35:dd:0f:28:d6:b7:4d:
90:b0:a3:c6:ac:13:58:c8:8b:c5:db:5b:21:f5:d8:82:30:b5:
ea:c2:d0:c2:55:52:4b:cf:23:96:9f:29:a8:34:70:8e:07:39:
c6:4d:a3:6e:95:39:36:04:91:6c:b4:be:2a:6c:84:ce:c0:23:
0d:bc:6a:64:83:fe:9d:31:93:a6:0c:9b:7c:b8:91:60:d3:29:
3b:de:92:e2:dc:14:6a:73:91:ca:5a:47:3a:02:b1:9e:e2:bb:
5e:6e:3b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:38 2024 by rpki-client on console-ams.rpki-client.org