Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/1-Z4O7t3Ww-Eo1jW7lpG1m5kU0BU.roa
File: 1-Z4O7t3Ww-Eo1jW7lpG1m5kU0BU.roa (raw, json)
Hash identifier: eJ6DjOtcu9AoT3E2oEt7HLHLGtMpUtCu1Unz4y0nnGU=
Subject key identifier: F9:9E:0E:EE:DD:D6:C3:E1:28:D6:35:BB:96:91:B5:9B:99:14:D0:15
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 01857067307CBCEF5874F26A28B1824F484D
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/1-Z4O7t3Ww-Eo1jW7lpG1m5kU0BU.roa
Signing time: Mon 02 Jan 2023 02:54:48 +0000
ROA not before: Mon 02 Jan 2023 02:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211373
IP address blocks: 109.72.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Aug 2023 07:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:30:7c:bc:ef:58:74:f2:6a:28:b1:82:4f:48:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jan 2 02:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f99e0eeeddd6c3e128d635bb9691b59b9914d015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3c:5b:88:db:6b:50:43:8d:2b:e7:d9:dc:65:
4f:19:02:c1:34:c0:31:11:f4:83:15:9f:0b:bb:c1:
c1:5d:ff:a7:f9:45:b9:0f:4a:09:42:18:05:f0:95:
7c:90:70:1d:f8:a2:63:85:d6:d5:5a:a6:9e:ab:e5:
39:80:19:68:55:66:8a:f4:e2:1c:6d:7f:42:d4:28:
60:79:3e:da:80:30:17:6c:f2:48:00:30:e5:a5:4e:
26:c5:a5:f1:2a:7e:94:f2:5b:cd:dc:a0:5d:f8:0c:
df:f2:7d:b0:c7:1d:2b:7a:5e:1e:a2:ea:ac:2b:21:
71:fe:9c:ff:b5:bd:b9:bb:15:61:d4:52:85:f3:f6:
ab:e3:e3:30:e6:3b:ea:33:05:95:ac:92:31:41:3d:
d7:f6:c2:ea:57:4a:c7:cb:cb:37:dd:7a:d8:f1:ce:
76:07:2c:b5:59:88:72:1e:e8:9e:f8:bb:d3:76:f1:
a1:7d:75:c2:5e:0e:42:33:44:5d:d7:72:66:eb:b9:
ba:b0:cf:69:2b:b7:4f:99:3e:e1:1a:98:85:4b:f5:
e2:0c:cd:44:3e:0e:e6:7e:a4:a2:50:d8:a3:e2:ba:
51:7a:78:08:23:45:6c:36:16:c4:71:0d:70:1d:a6:
51:fa:fc:57:cd:d1:3d:60:37:e1:89:e7:49:2c:d7:
54:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:9E:0E:EE:DD:D6:C3:E1:28:D6:35:BB:96:91:B5:9B:99:14:D0:15
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/1-Z4O7t3Ww-Eo1jW7lpG1m5kU0BU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:f7:49:10:78:12:ed:f3:a4:00:5b:a5:fe:27:6e:73:fa:c1:
09:b7:0c:39:04:d9:37:f3:8b:9f:01:d6:3b:b9:9f:7a:30:f9:
41:42:c8:d4:6e:29:d9:0e:0a:3c:c7:02:ed:c5:34:bc:62:dc:
41:36:71:5d:7d:a2:4b:18:7c:5e:c7:25:38:39:03:54:84:3b:
97:3d:01:59:f3:68:d3:57:10:7e:b5:5a:7f:31:f8:28:a2:71:
85:62:80:aa:1c:89:a5:33:de:a2:af:b4:11:6f:27:b8:52:40:
a4:15:be:1c:a2:06:d1:6d:64:b6:e0:92:c8:89:aa:bd:7b:c2:
50:05:fd:3a:c1:2f:53:cd:df:38:c3:1b:a5:48:c1:b6:a2:b7:
b8:6d:35:6f:e5:34:c8:67:2e:ad:62:a4:af:8b:2a:1e:b2:9f:
7f:72:5d:48:33:ed:51:14:3e:6a:4f:33:e0:02:a0:ff:ce:15:
4f:ed:a9:0d:94:e3:fa:2c:5e:c3:a7:04:57:e2:21:c4:1a:24:
03:bc:b5:7f:17:61:7b:0e:01:d5:3f:4d:f4:be:e4:52:b5:87:
bb:e2:22:ba:98:3d:6a:5c:f3:b1:b1:0c:6b:0e:7d:66:dd:87:
cd:48:7b:e7:9f:ff:f0:7e:68:fe:e9:70:e9:1c:74:05:88:a5:
23:a8:db:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org