Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/FoWbAOmsxLUZjEf6GqSscGiYAN0.roa
File: FoWbAOmsxLUZjEf6GqSscGiYAN0.roa (raw, json)
Hash identifier: V2AFJA42Y2t7vPYeanVMTdRBxelO2LNca1ksQN7RLeE=
Subject key identifier: 16:85:9B:00:E9:AC:C4:B5:19:8C:47:FA:1A:A4:AC:70:68:98:00:DD
Certificate issuer: /CN=37949ac84d0b86910f4fd3cf5962927d83450aeb
Certificate serial: 018A8EA8A017F3C16AE401EE6FE18D840E46
Authority key identifier: 37:94:9A:C8:4D:0B:86:91:0F:4F:D3:CF:59:62:92:7D:83:45:0A:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5SayE0LhpEPT9PPWWKSfYNFCus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/FoWbAOmsxLUZjEf6GqSscGiYAN0.roa
Signing time: Wed 13 Sep 2023 13:08:50 +0000
ROA not before: Wed 13 Sep 2023 13:08:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203
IP address blocks: 109.234.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Sep 2023 13:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8e:a8:a0:17:f3:c1:6a:e4:01:ee:6f:e1:8d:84:0e:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37949ac84d0b86910f4fd3cf5962927d83450aeb
Validity
Not Before: Sep 13 13:08:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16859b00e9acc4b5198c47fa1aa4ac70689800dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f6:bf:5f:89:f3:68:32:bf:7b:79:78:a4:d5:
46:d8:30:de:f8:6c:64:42:cf:d3:9a:55:19:c2:9b:
26:23:22:99:56:ef:a1:56:42:c3:14:d7:ae:26:5d:
aa:82:5c:c5:61:a8:d2:84:cb:85:9a:b1:16:c2:f2:
fb:45:7d:b5:f1:fe:51:7d:53:1c:e5:14:5c:9e:69:
af:61:cd:03:28:a4:85:f7:e1:72:49:d8:01:e0:6f:
7d:d4:07:a8:b2:6e:80:dc:72:86:c9:8e:f3:60:24:
41:27:bc:09:a5:9b:45:c7:6f:1d:f2:e5:8e:82:a0:
7d:c0:31:e6:dc:c0:0f:15:ce:2b:9e:ce:00:51:e6:
62:b5:e0:da:b9:d1:24:0d:48:94:bb:56:63:97:0d:
d7:8d:d9:3e:39:5c:d3:5a:71:5e:3e:5f:bd:73:46:
b1:c8:c4:6f:3a:8c:11:79:0c:29:de:ec:30:4f:f3:
a4:7a:42:c1:ab:9c:d8:92:23:d9:e6:29:19:b8:9c:
86:51:49:98:a3:40:4b:18:2e:bb:9b:eb:e9:23:10:
5c:ec:c5:39:f0:a8:8f:53:b4:97:40:26:55:53:81:
d1:4f:05:57:af:58:d2:28:bb:75:88:23:14:e7:87:
a1:16:ef:6f:2d:cf:18:6d:37:4b:ac:fc:e7:df:4a:
85:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:85:9B:00:E9:AC:C4:B5:19:8C:47:FA:1A:A4:AC:70:68:98:00:DD
X509v3 Authority Key Identifier:
keyid:37:94:9A:C8:4D:0B:86:91:0F:4F:D3:CF:59:62:92:7D:83:45:0A:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5SayE0LhpEPT9PPWWKSfYNFCus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/FoWbAOmsxLUZjEf6GqSscGiYAN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/N5SayE0LhpEPT9PPWWKSfYNFCus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.1.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:11:36:a1:a0:de:f1:70:50:58:76:f8:d6:f5:a9:22:c2:3d:
ee:f1:e9:3b:9a:fd:49:1f:b8:ae:73:dc:1b:42:14:c2:58:24:
98:d3:b2:00:b8:2f:5d:a1:0a:ee:89:64:ed:9b:64:1f:66:a5:
87:3f:19:49:a6:ce:79:ec:ac:0c:7c:d4:05:07:4b:35:77:ef:
1a:90:60:7e:55:56:1f:1c:d0:a8:57:9f:e1:e3:a6:97:d1:ab:
f2:ef:6b:30:ce:1d:0a:4b:32:b5:be:5c:07:8c:ba:89:2f:8b:
c4:05:cc:f3:55:7c:3a:bd:81:13:36:d4:36:95:ae:ee:eb:93:
b1:f2:ce:4d:fe:9d:f0:91:20:75:55:45:47:f4:b8:b6:2c:46:
fc:d7:08:0c:2f:19:9f:87:ff:24:a7:81:e8:16:9c:9a:f9:fc:
95:e2:b9:9d:53:34:af:68:eb:ef:09:2a:2e:e1:36:ba:18:9d:
4b:47:9c:ba:da:79:f6:8f:26:7b:61:db:7c:9e:38:9b:3f:7a:
95:5d:16:67:fc:2b:a9:52:86:3f:72:69:eb:f5:75:c6:07:39:
d1:3a:dc:22:79:26:b7:de:8c:48:c3:5a:a1:df:c8:f2:85:75:
dc:f7:6c:d3:89:46:73:42:82:96:b4:6a:0c:8c:77:e5:9a:e6:
90:5f:77:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:51 2024 by rpki-client on console-fra.rpki-client.org