Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/8cN3NP3Q9DFSVXA9GX18dPAD5Qw.roa
File: 8cN3NP3Q9DFSVXA9GX18dPAD5Qw.roa (raw, json)
Hash identifier: sqWlC8RhuCpArppzi23FS/msCINgUST6h9rwIJAnD1s=
Subject key identifier: F1:C3:77:34:FD:D0:F4:31:52:55:70:3D:19:7D:7C:74:F0:03:E5:0C
Certificate issuer: /CN=4456c14cd8724f9a909627b94e006cf69d12307b
Certificate serial: 018A9855212E52DED47FB5F3A28847B8DED5
Authority key identifier: 44:56:C1:4C:D8:72:4F:9A:90:96:27:B9:4E:00:6C:F6:9D:12:30:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFbBTNhyT5qQlie5TgBs9p0SMHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/8cN3NP3Q9DFSVXA9GX18dPAD5Qw.roa
Signing time: Fri 15 Sep 2023 10:13:50 +0000
ROA not before: Fri 15 Sep 2023 10:13:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216394
IP address blocks: 109.205.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Oct 2023 08:10:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:98:55:21:2e:52:de:d4:7f:b5:f3:a2:88:47:b8:de:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4456c14cd8724f9a909627b94e006cf69d12307b
Validity
Not Before: Sep 15 10:13:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1c37734fdd0f4315255703d197d7c74f003e50c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:97:b0:b3:4d:8b:fc:8a:4e:e4:06:0a:ec:f9:
75:87:55:e7:ce:fe:7a:04:03:f0:05:c2:7b:55:7c:
a3:c4:79:9b:71:0a:f2:b7:fa:50:78:01:c8:23:de:
de:93:05:f0:6b:05:b0:fc:80:3a:df:65:9c:8f:ee:
8d:cc:b5:cf:58:52:d2:e3:90:e5:d5:bf:46:ec:50:
8d:f0:fd:8a:76:f5:2c:6d:e4:d8:c1:f4:3e:6f:82:
a9:ee:13:91:43:c9:8c:76:a3:1f:46:6b:12:08:c7:
37:72:39:7f:1e:d1:f1:fa:3a:e9:c1:b5:f3:55:3a:
d2:b6:38:57:e9:e3:82:11:96:ec:1d:9b:ca:90:2b:
5d:68:41:ae:37:73:a9:eb:12:6e:2d:b7:bb:f4:2d:
d9:ea:ee:6f:86:d7:d0:5d:03:d3:a9:94:04:28:54:
15:9c:c0:86:77:ab:37:5e:2b:f3:d4:69:dd:01:fd:
b8:93:ec:ef:58:e9:72:c4:ff:e3:b8:ee:b4:c2:ad:
ed:37:9a:75:61:6f:04:b6:9f:bb:87:8b:d1:6e:a4:
d0:87:6b:90:dd:19:21:ca:c3:46:2c:82:5b:d5:ca:
3a:92:f1:73:42:9d:d9:72:b9:dd:d5:16:c9:fa:ab:
a0:02:cd:25:c7:a0:a3:99:a5:e8:d4:6e:61:45:3b:
a3:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C3:77:34:FD:D0:F4:31:52:55:70:3D:19:7D:7C:74:F0:03:E5:0C
X509v3 Authority Key Identifier:
keyid:44:56:C1:4C:D8:72:4F:9A:90:96:27:B9:4E:00:6C:F6:9D:12:30:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFbBTNhyT5qQlie5TgBs9p0SMHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/8cN3NP3Q9DFSVXA9GX18dPAD5Qw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/RFbBTNhyT5qQlie5TgBs9p0SMHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.9.0/24
Signature Algorithm: sha256WithRSAEncryption
45:a3:5c:e0:38:24:87:c8:1c:2d:31:45:b2:75:1c:07:c6:18:
5e:83:96:48:35:ce:33:1e:f3:2b:cf:af:e0:80:c0:e5:8d:22:
15:24:03:13:dd:51:1a:70:8a:14:6e:e4:53:40:67:59:1d:65:
d9:07:58:2e:8c:45:66:f0:09:f1:39:a0:6f:9f:3f:09:b1:0d:
a4:7e:9a:19:12:15:ba:58:ed:ad:21:2f:b1:ff:39:91:67:1f:
32:37:b1:2a:ec:34:ac:28:c2:f4:c1:cf:72:d9:41:de:b0:d0:
13:c3:eb:33:f9:a0:73:05:a0:64:c2:d4:e2:1b:aa:ab:5d:47:
c8:ea:5c:46:c1:b6:46:32:3b:d7:62:f8:a7:d4:71:4f:f9:e5:
58:50:35:8f:99:18:ce:7b:c0:a3:9b:a9:f2:a2:eb:5a:14:46:
71:b3:9d:92:89:31:11:4a:f8:e9:87:5f:fa:68:d5:ff:74:29:
76:4d:07:33:66:77:26:3e:cf:fa:4b:c2:7c:65:bf:99:d7:56:
cc:a2:93:30:eb:2d:69:92:8f:32:dd:c0:57:d7:2c:dc:24:fd:
bf:f5:34:53:06:2f:c1:ff:43:38:30:93:d1:69:98:82:52:96:
b2:e4:11:c3:0d:b9:cd:85:ee:6b:73:5e:6b:12:b4:5a:ea:19:
ca:0d:b6:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:11 2024 by rpki-client on console-fra.rpki-client.org