Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d01a91-a3ab-4e08-9564-a51aa23a8fdd/1/dBfjbDa29NbI9fFMNZoG4bli3BM.roa
File: dBfjbDa29NbI9fFMNZoG4bli3BM.roa (raw, json)
Hash identifier: tHsrBiNpmSSv3DU9bLyogctNVSO/Mqhbe5dyWPdtuUk=
Subject key identifier: 74:17:E3:6C:36:B6:F4:D6:C8:F5:F1:4C:35:9A:06:E1:B9:62:DC:13
Certificate issuer: /CN=86df1259b3aa1de34d13d1d863178864d9d185cb
Certificate serial: 0185730395FBE5F9D94630F1C52067A7CC8F
Authority key identifier: 86:DF:12:59:B3:AA:1D:E3:4D:13:D1:D8:63:17:88:64:D9:D1:85:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ht8SWbOqHeNNE9HYYxeIZNnRhcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d01a91-a3ab-4e08-9564-a51aa23a8fdd/1/dBfjbDa29NbI9fFMNZoG4bli3BM.roa
Signing time: Mon 02 Jan 2023 15:04:52 +0000
ROA not before: Mon 02 Jan 2023 15:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 109.235.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:03:95:fb:e5:f9:d9:46:30:f1:c5:20:67:a7:cc:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86df1259b3aa1de34d13d1d863178864d9d185cb
Validity
Not Before: Jan 2 15:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7417e36c36b6f4d6c8f5f14c359a06e1b962dc13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:98:e1:8b:cf:52:6d:27:fb:41:32:82:04:4b:
72:5c:98:07:34:55:9a:96:28:37:83:c1:07:dc:62:
e8:68:79:f4:f7:ed:c9:a0:6a:a1:2e:d7:a4:83:f0:
62:f2:49:95:98:be:8f:b2:91:bb:3d:a4:d9:f9:f3:
ac:79:33:ca:c6:c1:34:55:e6:65:87:45:c5:cd:e3:
a8:e6:42:d2:7e:6c:bd:6e:da:40:55:f6:30:96:d5:
8b:b3:fb:ba:48:7f:c3:5c:72:23:8d:fb:39:c9:fc:
24:70:03:37:fe:5d:59:6b:cf:14:7d:89:1a:34:ea:
d3:ea:20:8a:fd:34:c9:db:e0:83:35:47:c0:02:e6:
5f:e7:1e:fe:00:11:1c:c7:64:50:14:d3:db:e1:28:
2d:10:b1:4c:31:cd:22:90:60:cf:77:ce:d1:20:05:
f0:68:75:4d:95:d2:70:78:c7:0e:73:a3:31:69:51:
15:8a:90:2a:2a:cd:bc:62:f2:66:74:36:5b:0f:fa:
70:b4:38:fe:87:bc:6b:6d:9d:f8:dc:6c:a6:e8:28:
15:f1:76:c4:16:5e:8c:06:0a:3a:52:f9:77:a7:fc:
29:e9:a5:11:77:b4:2b:f5:14:40:a7:53:76:63:1d:
a0:83:73:9f:4a:26:a2:8b:2f:b4:b4:65:17:be:b4:
5b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:17:E3:6C:36:B6:F4:D6:C8:F5:F1:4C:35:9A:06:E1:B9:62:DC:13
X509v3 Authority Key Identifier:
keyid:86:DF:12:59:B3:AA:1D:E3:4D:13:D1:D8:63:17:88:64:D9:D1:85:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ht8SWbOqHeNNE9HYYxeIZNnRhcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d01a91-a3ab-4e08-9564-a51aa23a8fdd/1/dBfjbDa29NbI9fFMNZoG4bli3BM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d01a91-a3ab-4e08-9564-a51aa23a8fdd/1/ht8SWbOqHeNNE9HYYxeIZNnRhcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.235.99.0/24
Signature Algorithm: sha256WithRSAEncryption
f2:93:8c:29:6a:6d:49:72:af:01:1c:3d:43:1b:cd:aa:71:d4:
31:18:f0:ea:c7:48:01:02:cd:91:54:e4:00:44:0e:00:a4:8e:
86:6c:ba:c7:5e:90:b4:5d:fb:03:56:41:e1:fc:52:00:8f:52:
ae:f9:3f:d6:95:30:5a:19:15:1f:14:bc:7b:bd:c4:99:5e:2d:
53:bb:d0:1a:dd:2f:8e:65:9a:99:ff:81:68:ce:6a:9d:cf:a9:
b2:0e:12:5a:2a:f8:3b:ba:62:58:41:b5:86:41:bd:92:fc:33:
ee:05:1f:b2:3d:84:f7:10:fb:a4:9e:6c:e5:30:2b:0d:c2:e2:
5c:7c:22:f2:ab:0f:b6:5a:59:a3:0f:19:57:d8:99:e2:1c:f5:
86:62:05:00:21:b6:3b:c3:9a:d2:7e:b0:0b:d3:d2:db:53:70:
f1:f1:45:10:e3:80:c5:49:25:10:4c:83:52:ec:9d:0d:b1:71:
c3:f4:06:b2:35:ab:f1:de:42:85:52:24:c8:af:74:30:b7:8f:
c9:73:77:07:08:7d:58:76:9e:d5:85:53:e9:76:3e:8f:5a:23:
62:3b:78:dd:a2:3e:8e:8c:e1:ff:e3:7c:50:34:5e:15:d1:a7:
84:b2:26:22:24:db:f3:d9:f7:8f:03:5a:10:bb:4e:af:fc:53:
3f:e5:ef:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:58 2024 by rpki-client on console-fra.rpki-client.org