Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/B9VBtl_IFYR9j7OK6L2n_-UEd-w.roa
File: B9VBtl_IFYR9j7OK6L2n_-UEd-w.roa (raw, json)
Hash identifier: M8ucBHAz1IiHKJ0vWJFzkueulY/b4RcGbKrTq55cx6o=
Subject key identifier: 07:D5:41:B6:5F:C8:15:84:7D:8F:B3:8A:E8:BD:A7:FF:E5:04:77:EC
Certificate issuer: /CN=37949ac84d0b86910f4fd3cf5962927d83450aeb
Certificate serial: 018A8EA8A078A98403CB613CEFC833F77C49
Authority key identifier: 37:94:9A:C8:4D:0B:86:91:0F:4F:D3:CF:59:62:92:7D:83:45:0A:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5SayE0LhpEPT9PPWWKSfYNFCus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/B9VBtl_IFYR9j7OK6L2n_-UEd-w.roa
Signing time: Wed 13 Sep 2023 13:08:50 +0000
ROA not before: Wed 13 Sep 2023 13:08:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 109.234.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Sep 2023 13:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8e:a8:a0:78:a9:84:03:cb:61:3c:ef:c8:33:f7:7c:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37949ac84d0b86910f4fd3cf5962927d83450aeb
Validity
Not Before: Sep 13 13:08:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07d541b65fc815847d8fb38ae8bda7ffe50477ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9f:33:e8:2f:f0:87:10:c8:a9:c1:f0:56:76:
e2:8f:f2:40:a8:e4:32:c8:33:c1:04:db:2f:26:f3:
7c:bb:dc:47:3f:0e:05:3b:d0:63:ec:e8:88:88:c4:
c6:f6:c4:23:bc:40:b2:1d:89:6b:26:db:ca:d4:be:
c0:45:84:e2:99:24:d6:99:b4:a1:20:b4:d4:d7:45:
b0:b0:e7:f8:ed:eb:ec:f5:a6:20:b7:14:1c:4c:3f:
f1:4d:da:26:97:d8:a5:5c:22:64:85:79:cd:8a:f3:
72:11:e2:94:25:34:9e:00:03:a0:18:34:64:2f:21:
24:17:90:bc:65:42:46:7b:2c:ec:6b:33:00:1d:4a:
07:79:ba:6e:02:8d:26:ca:8e:a6:ab:58:f0:12:0f:
8e:5b:ed:c2:75:5b:66:37:12:1d:eb:1a:85:b4:2e:
62:34:90:f1:98:a3:7e:6a:07:e8:93:40:de:87:cb:
a2:62:9f:3a:02:5c:97:c3:fb:84:63:8f:42:4c:dc:
8d:ee:50:3e:28:b9:43:87:b4:a4:cc:1a:1f:38:9d:
79:44:e1:af:7e:c1:09:c2:de:3f:74:d8:14:9b:99:
71:7a:8e:48:9f:16:b3:11:a8:c5:4d:60:de:49:ff:
9d:ba:65:d0:5e:56:cf:8c:6f:e8:af:3e:c9:b0:64:
dd:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:D5:41:B6:5F:C8:15:84:7D:8F:B3:8A:E8:BD:A7:FF:E5:04:77:EC
X509v3 Authority Key Identifier:
keyid:37:94:9A:C8:4D:0B:86:91:0F:4F:D3:CF:59:62:92:7D:83:45:0A:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5SayE0LhpEPT9PPWWKSfYNFCus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/B9VBtl_IFYR9j7OK6L2n_-UEd-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/N5SayE0LhpEPT9PPWWKSfYNFCus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.1.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:73:5f:76:41:bf:1d:35:d5:17:26:ec:2c:b4:c7:be:5b:85:
46:db:05:84:5f:97:c5:39:2b:dc:b1:b5:f2:8a:f6:55:6e:ea:
1e:5d:e4:d9:d5:c6:8d:96:17:b8:d6:d4:62:f7:1b:26:e2:90:
c9:01:e4:f8:9f:87:5d:46:a5:67:2d:79:96:6d:c1:c1:49:aa:
52:0c:39:45:22:9e:11:a5:bb:84:2a:a2:80:84:4a:dc:62:2a:
65:3a:84:b3:18:72:78:db:fe:45:67:57:df:4a:b7:4a:4c:7c:
7c:62:3a:8a:5d:f8:72:df:f7:99:1c:96:fe:73:9c:a5:c7:e9:
26:36:7b:a9:55:af:67:54:1b:9b:ef:e5:2d:81:0a:b6:2f:d4:
b3:37:1e:2b:ad:c3:39:9c:d1:2f:ee:9d:a8:36:d6:f6:46:5d:
54:fa:fd:03:d4:76:f4:5c:77:9c:f0:65:8c:d6:5b:53:76:96:
eb:45:2d:96:ac:0c:3a:2a:fc:c1:9f:4f:15:33:26:db:13:9e:
5b:1c:17:6b:b2:e9:69:d2:22:8c:fb:06:a1:7c:94:3f:6b:33:
a8:d1:ba:bb:f5:03:18:1c:23:1a:2f:d7:57:4e:59:27:e0:3c:
91:c9:93:3a:73:7e:dd:98:74:34:23:4a:2e:5a:93:de:70:b0:
53:33:49:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:51 2024 by rpki-client on console-fra.rpki-client.org