Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/m5t7hnw2fLCCwWSZgFafY_hq6Bg.roa
File: m5t7hnw2fLCCwWSZgFafY_hq6Bg.roa (raw, json)
Hash identifier: zlZROoNWbHcv4BgU4rRSYLgfMWFG+d3xOpttan9xaMY=
Subject key identifier: 9B:9B:7B:86:7C:36:7C:B0:82:C1:64:99:80:56:9F:63:F8:6A:E8:18
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 019015E8C552E34EC46CCCBEAA3459F7B5C1
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/m5t7hnw2fLCCwWSZgFafY_hq6Bg.roa
Signing time: Fri 14 Jun 2024 08:41:34 +0000
ROA not before: Fri 14 Jun 2024 08:41:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57304
IP address blocks: 109.248.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jun 2024 15:03:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:15:e8:c5:52:e3:4e:c4:6c:cc:be:aa:34:59:f7:b5:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Jun 14 08:41:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b9b7b867c367cb082c1649980569f63f86ae818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0a:49:63:74:e1:cb:2f:9f:30:1e:2b:39:f6:
a2:18:36:c0:20:ad:9a:5d:5e:2b:c7:be:04:59:ea:
e4:e2:f1:16:79:b4:fc:d3:4b:ab:98:7b:bb:14:62:
5d:fc:d8:1e:9e:06:88:55:dc:04:41:ea:ef:1e:a4:
1b:1f:5e:4e:3d:83:d2:8f:e5:ab:c5:44:ba:1e:00:
5f:fd:16:f2:55:2e:65:42:01:67:50:b6:87:36:7c:
aa:e5:7c:08:a7:c8:51:53:eb:c7:52:a2:4a:47:59:
ca:91:ea:57:cd:79:95:5f:ed:7a:22:1f:5c:d7:af:
8d:87:19:c4:7c:06:30:a3:7c:b5:6a:a4:48:73:72:
38:5f:1c:d1:ef:22:cf:d8:26:eb:e4:f1:b3:74:82:
ac:9a:16:18:8c:31:84:aa:af:2e:95:a3:cc:01:b7:
62:5e:4d:d7:a9:2b:2a:2c:b8:f8:4b:45:f1:98:f0:
7e:1f:49:b0:c7:8b:f9:a8:58:69:12:51:39:69:4d:
ae:f8:ce:08:b9:a5:cd:35:4b:be:d4:e3:4d:c6:75:
cf:93:7a:04:36:4d:ce:b1:88:94:32:d5:c1:55:e3:
ea:c4:b9:35:cb:fb:4e:90:6d:f4:47:05:c0:e4:30:
7c:7e:3c:2a:57:ca:bb:59:9e:ef:47:20:d3:ef:93:
ba:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:9B:7B:86:7C:36:7C:B0:82:C1:64:99:80:56:9F:63:F8:6A:E8:18
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/m5t7hnw2fLCCwWSZgFafY_hq6Bg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.248.197.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:d4:87:50:5c:9b:62:99:ce:2f:30:78:19:9c:43:95:5a:4e:
53:68:8e:29:30:e1:f6:fb:3a:01:8a:bc:86:70:c3:92:e9:2e:
5c:52:16:1c:ec:59:bf:ab:d5:f9:5b:90:cc:33:18:0c:02:46:
4c:ee:01:3d:1c:ef:2a:c7:f3:92:fa:35:33:c9:26:0a:4b:7a:
7d:a2:c1:04:a9:d2:03:1e:9e:b8:98:63:6c:5b:52:98:82:a6:
32:e5:73:02:5e:0d:02:25:96:da:03:cf:db:c1:cf:80:56:46:
79:90:b9:87:57:db:e3:8b:46:76:be:e4:50:df:95:2c:b8:58:
41:a3:2f:5a:74:d1:aa:1f:3b:f3:fd:ba:95:cd:0f:7e:e2:55:
a6:48:bb:1b:ad:4c:a1:ab:29:da:0e:4f:68:d2:6b:73:a7:bc:
4e:df:eb:c2:3f:7d:0f:09:9f:98:23:25:5d:ce:7d:8a:84:ef:
10:94:1f:74:7d:69:d8:a6:fd:0f:6b:f9:71:2c:a5:14:d3:66:
6e:a5:77:6b:1a:ae:95:06:a7:fb:23:22:f8:d4:c6:10:7f:b1:
e6:5b:7e:9a:eb:02:c7:5d:79:24:2f:c7:59:5a:12:ac:98:12:
94:7f:f6:2b:82:4f:1f:b1:4b:e5:13:d9:6e:80:c0:43:57:0a:
0d:44:2d:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 19 18:14:31 2024 by rpki-client on console-fra.rpki-client.org