Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/yY5C75unljUjK_GgulguHcilqJw.roa
File: yY5C75unljUjK_GgulguHcilqJw.roa (raw, json)
Hash identifier: UGOjRkddgaoQxuBEhVApiN+Mn80CVBKV/Olpux2bq6U=
Subject key identifier: C9:8E:42:EF:9B:A7:96:35:23:2B:F1:A0:BA:58:2E:1D:C8:A5:A8:9C
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 018FDF22735433BB5E1B14745DDE88143782
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/yY5C75unljUjK_GgulguHcilqJw.roa
Signing time: Mon 03 Jun 2024 17:25:27 +0000
ROA not before: Mon 03 Jun 2024 17:25:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205998
IP address blocks: 109.248.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 16:41:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:df:22:73:54:33:bb:5e:1b:14:74:5d:de:88:14:37:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Jun 3 17:25:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c98e42ef9ba79635232bf1a0ba582e1dc8a5a89c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:25:3f:9a:e1:67:52:27:d4:74:20:9a:28:db:
f6:a9:3a:09:c2:59:13:df:eb:bf:0c:71:c5:89:4f:
01:fb:d0:53:8f:2e:24:75:e0:54:e8:77:f6:15:5b:
d1:28:73:20:8f:af:a5:1c:a4:b1:55:17:31:42:e2:
07:8c:33:8e:61:1c:a0:d0:85:49:0d:d1:b8:84:59:
57:34:b8:e4:60:e1:16:b9:47:64:d3:2f:b3:cb:d9:
7e:1d:de:15:e0:b8:64:2f:50:12:56:5f:d9:13:31:
70:d2:f2:b9:41:46:43:c3:04:d8:44:47:9a:d5:69:
b8:09:45:26:8f:37:fe:94:15:4a:50:f2:a7:f2:4d:
dc:cb:d3:ab:a3:17:d1:d7:5e:35:73:c8:9d:c4:42:
9d:02:fa:a1:9a:a7:f1:5e:cc:33:bc:06:b5:30:c7:
07:1f:17:1b:c9:99:58:c9:f5:6e:94:4c:5f:c3:42:
9a:7a:ed:ca:3f:c1:30:c2:aa:6a:c4:75:55:11:dd:
ef:82:3c:d1:a3:72:65:cc:e4:60:59:50:79:88:af:
9f:fe:33:54:a5:a2:67:f1:e0:66:54:f3:79:4e:ac:
9e:44:67:e3:b3:fa:b2:fc:22:dd:6e:0b:e2:7e:f3:
3c:75:9d:31:6c:c0:7c:ec:45:a8:c5:16:b9:2d:8b:
ff:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:8E:42:EF:9B:A7:96:35:23:2B:F1:A0:BA:58:2E:1D:C8:A5:A8:9C
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/yY5C75unljUjK_GgulguHcilqJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.248.246.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:6f:9e:f2:98:c8:c1:c8:2f:6c:c2:fb:1d:d4:bf:02:fb:ef:
7f:36:9e:67:27:c7:00:69:c8:29:e2:34:cb:78:fe:14:0e:e2:
6a:f5:ac:0f:e4:d7:4d:26:dc:cc:d3:29:fd:39:cb:1d:22:e9:
23:0b:e7:d9:a5:43:2e:87:48:53:90:9c:d6:7d:63:73:7f:eb:
54:af:cb:51:12:73:89:7b:74:6c:b9:3b:43:a4:5d:47:4c:b3:
20:d7:c1:e6:a1:73:30:81:d5:52:de:b4:68:dd:a6:d9:ec:91:
4d:76:1a:9e:b2:38:a5:57:6f:f1:3f:38:50:c3:ee:dc:68:ed:
72:c2:b9:c8:a1:fd:95:ed:74:40:bc:fa:41:25:d1:55:a4:2f:
92:3f:3f:c8:8f:09:20:37:81:22:7a:45:29:25:c2:4b:5b:15:
32:ca:3b:98:af:97:5a:06:32:c7:df:47:8c:44:2a:01:6e:e6:
8f:81:b3:8f:2a:cb:80:9e:4e:9f:5e:30:10:43:3e:b2:97:cc:
f3:05:20:42:02:f6:e0:a6:f3:f6:39:3c:23:df:b8:0d:c5:3a:
1b:47:19:60:3d:a3:40:33:26:aa:19:83:35:e5:c9:da:8a:6f:
6d:11:78:97:53:a8:5f:3d:73:d8:46:f1:b9:fe:8e:3b:e5:5f:
44:3f:24:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:00 2024 by rpki-client on console-ams.rpki-client.org