Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/bVi18HcvYrgdwVpaw5Mi10-T5Q8.roa
File: bVi18HcvYrgdwVpaw5Mi10-T5Q8.roa (raw, json)
Hash identifier: 1NgOp10qrqhxhXMLVbRP7R18hxEiPaCeouMIaVTRs2U=
Subject key identifier: 6D:58:B5:F0:77:2F:62:B8:1D:C1:5A:5A:C3:93:22:D7:4F:93:E5:0F
Certificate issuer: /CN=60ebd4f7ac3d24920de1c1ff1185d9507e9ad078
Certificate serial: 0188FBA334CC74945F9CBB25FB3484E98302
Authority key identifier: 60:EB:D4:F7:AC:3D:24:92:0D:E1:C1:FF:11:85:D9:50:7E:9A:D0:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YOvU96w9JJIN4cH_EYXZUH6a0Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/bVi18HcvYrgdwVpaw5Mi10-T5Q8.roa
Signing time: Tue 27 Jun 2023 06:55:57 +0000
ROA not before: Tue 27 Jun 2023 06:55:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59441
IP address blocks: 109.95.65.0/24 maxlen: 24
109.95.66.0/24 maxlen: 24
109.95.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fb:a3:34:cc:74:94:5f:9c:bb:25:fb:34:84:e9:83:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ebd4f7ac3d24920de1c1ff1185d9507e9ad078
Validity
Not Before: Jun 27 06:55:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d58b5f0772f62b81dc15a5ac39322d74f93e50f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:15:02:d7:fc:ff:6f:a0:19:5c:3a:bc:19:e7:
ff:96:73:98:d9:25:56:dc:4c:8b:35:e7:14:77:43:
f1:de:1e:a5:72:da:45:39:65:d0:a4:d7:3a:85:8a:
e4:3f:46:a4:1a:0e:82:af:14:f4:5d:2a:46:b3:96:
57:6f:77:00:73:45:5f:ce:49:76:14:a3:7b:b3:51:
77:97:19:9e:b7:79:09:6d:db:70:1e:5d:8a:14:50:
cf:a4:f6:cf:e7:d8:c8:43:98:b9:62:bc:66:fe:15:
f0:3c:c1:7d:d2:f5:16:bb:3a:27:35:c6:89:ac:01:
da:e9:6f:e0:e1:cc:0c:ce:fe:97:9d:43:20:40:18:
ef:a3:b0:7a:06:f2:88:cf:2b:2b:32:9f:eb:ee:22:
40:93:07:d7:26:30:49:69:a1:a8:e9:dc:73:03:a5:
13:65:b1:2a:d3:85:8b:54:2f:f0:07:db:7f:7b:13:
44:f4:8e:e1:f6:eb:42:b3:47:97:66:4b:d2:b6:02:
39:f4:da:c6:3b:68:e9:75:a6:26:d3:85:38:95:ad:
80:84:7d:73:bc:9a:53:98:a5:56:90:eb:74:5b:77:
88:5b:16:7f:cc:41:c8:17:0c:c7:b1:a9:05:60:3a:
35:79:11:ee:e4:e2:e4:2d:4a:f7:1f:64:8c:03:28:
98:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:58:B5:F0:77:2F:62:B8:1D:C1:5A:5A:C3:93:22:D7:4F:93:E5:0F
X509v3 Authority Key Identifier:
keyid:60:EB:D4:F7:AC:3D:24:92:0D:E1:C1:FF:11:85:D9:50:7E:9A:D0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YOvU96w9JJIN4cH_EYXZUH6a0Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/bVi18HcvYrgdwVpaw5Mi10-T5Q8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/YOvU96w9JJIN4cH_EYXZUH6a0Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.95.65.0-109.95.66.255
109.95.68.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:c9:47:2e:1f:09:cc:4d:08:21:e0:76:9f:ef:e0:2a:b5:d8:
fd:de:73:84:45:ee:b4:88:9b:d2:11:cd:f0:ca:1a:81:1f:f6:
67:6a:7c:d4:f1:9b:1f:79:4f:91:62:b6:4d:59:3a:65:13:c9:
65:15:53:fc:c2:36:37:21:e9:86:5f:c3:73:8e:f9:e3:d3:57:
55:78:9d:bb:82:ec:eb:90:c6:da:31:44:31:07:73:6f:5c:7e:
53:a1:6c:eb:8d:57:76:f8:25:20:a5:33:5e:85:bb:0c:23:9d:
f6:41:21:78:b0:ce:32:a2:b1:da:da:f4:58:4b:03:bd:de:a9:
47:ea:96:47:36:88:46:8e:06:e1:70:ac:28:e4:38:83:a6:50:
b6:63:25:6c:2b:86:ae:58:33:34:5f:5e:75:4c:4d:c9:80:51:
23:9b:bc:9b:f5:06:38:63:ba:9c:46:56:fb:ea:a9:6a:19:9c:
25:95:31:64:0f:87:ef:0c:ee:2c:c4:55:e4:7f:de:ef:dc:e0:
6a:dd:76:6a:db:41:06:37:b3:0c:7f:4b:86:b4:8f:63:c6:71:
87:81:45:0b:f3:ac:43:1e:36:71:b6:70:35:c9:2b:f8:ee:e5:
2e:b0:37:e5:a9:37:5d:a6:f0:d7:f5:fa:8b:47:18:f4:15:33:
9c:e0:83:a1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:34 2024 by rpki-client on console-ams.rpki-client.org