Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/d4-pICScyudtRA-dOpF5CtoQn6o.roa
File: d4-pICScyudtRA-dOpF5CtoQn6o.roa (raw, json)
Hash identifier: cHOyedBXgQK+qshz/hJY5naRupnpD7TtoYtZzspqC4s=
Subject key identifier: 77:8F:A9:20:24:9C:CA:E7:6D:44:0F:9D:3A:91:79:0A:DA:10:9F:AA
Certificate issuer: /CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Certificate serial: 018BD8E13C29498CB5A8961F85B27150B166
Authority key identifier: CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/d4-pICScyudtRA-dOpF5CtoQn6o.roa
Signing time: Thu 16 Nov 2023 16:05:21 +0000
ROA not before: Thu 16 Nov 2023 16:05:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50837
IP address blocks: 109.224.243.0/24 maxlen: 24
185.113.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d8:e1:3c:29:49:8c:b5:a8:96:1f:85:b2:71:50:b1:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Validity
Not Before: Nov 16 16:05:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=778fa920249ccae76d440f9d3a91790ada109faa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:1e:21:a8:ac:b9:12:b1:72:3a:55:a2:4d:33:
28:09:59:cb:5d:62:e2:0f:0f:6f:7d:77:e1:fa:55:
61:41:5e:69:bc:07:4b:f7:68:93:cc:15:43:0a:37:
1f:30:38:67:f4:3b:55:0f:ca:6a:72:2e:42:f2:94:
bf:f2:58:ad:c5:69:3a:88:69:f6:81:63:74:93:f5:
40:05:14:14:f7:a6:fb:33:6b:2c:b4:d0:79:21:e5:
63:3b:c5:ea:93:cd:63:ac:70:8c:48:4f:73:f1:54:
df:5d:21:69:07:04:57:17:7c:26:ec:00:e0:c8:f2:
4a:f8:85:c2:68:c2:61:ce:27:45:75:47:21:76:4e:
ab:1a:a1:da:3e:fc:46:1d:fb:f6:97:2a:8a:d7:d2:
0d:a7:67:bb:63:f9:b1:d5:3b:c5:94:20:bf:09:0e:
09:04:dc:c8:bd:ce:c2:f6:ed:c1:f9:8b:87:55:8c:
87:27:48:d4:45:fe:67:64:a7:80:60:0f:0f:af:29:
83:a9:30:49:c9:7b:39:19:44:4c:79:4b:2e:66:a6:
f1:a1:87:92:69:99:a9:8a:74:42:c8:96:f8:ee:14:
8f:63:dc:50:9a:ac:41:29:2e:61:2e:6d:13:12:db:
b3:36:8b:8d:17:31:17:38:bc:ea:9c:7f:42:9e:f7:
84:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:8F:A9:20:24:9C:CA:E7:6D:44:0F:9D:3A:91:79:0A:DA:10:9F:AA
X509v3 Authority Key Identifier:
keyid:CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/d4-pICScyudtRA-dOpF5CtoQn6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.224.243.0/24
185.113.222.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:07:d2:76:f6:c8:9f:ab:cc:67:1a:75:f1:26:c5:96:4f:78:
71:1d:5a:04:06:bc:68:96:61:15:b4:05:a4:c3:f9:63:c6:b9:
03:03:a8:10:d0:32:fe:a3:9c:28:af:7d:04:2a:04:d5:db:57:
f6:78:86:b8:65:71:f0:ce:02:6a:04:77:97:de:fc:5e:4a:d1:
6a:b0:91:5b:1e:89:f2:c2:47:f7:b0:5c:bb:ad:cf:04:3f:76:
23:ce:80:b8:43:f9:61:24:65:12:41:c2:49:b4:93:ed:db:0d:
ff:c3:05:09:a1:17:2a:4d:b7:f6:98:db:34:43:e1:dc:6b:83:
0d:4d:cd:35:f5:f5:e8:12:47:4e:14:5c:4e:af:c6:60:16:ff:
e1:29:35:c8:7d:de:c2:04:53:e0:df:1f:6d:97:32:7d:5f:77:
0e:bf:c3:a1:76:d5:32:96:33:ed:f7:69:85:07:0f:5b:63:db:
31:ae:2f:e6:d2:79:09:6a:bf:d7:2a:b5:9b:d4:26:91:fd:ae:
21:6b:9a:c9:d2:fc:08:51:44:ca:e2:37:20:51:2b:54:eb:17:
5a:cb:67:db:64:64:ba:45:0d:8e:08:66:8e:83:c8:a6:5f:92:
0a:d0:e6:85:91:ea:fb:4f:21:98:c9:e2:51:1e:5e:91:d1:85:
67:dd:e9:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:59 2024 by rpki-client on console-fra.rpki-client.org