Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/6kXlviZBlYw0hpxD7Ayc5WJ-G1k.roa
File: 6kXlviZBlYw0hpxD7Ayc5WJ-G1k.roa (raw, json)
Hash identifier: ATC9nvGKLSE8tyDOE51QeFnvWKZMxucmgkf0T7vfotQ=
Subject key identifier: EA:45:E5:BE:26:41:95:8C:34:86:9C:43:EC:0C:9C:E5:62:7E:1B:59
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018C8BB7A8B3ED0730E4D568B31B4433EFDC
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/6kXlviZBlYw0hpxD7Ayc5WJ-G1k.roa
Signing time: Thu 21 Dec 2023 09:31:58 +0000
ROA not before: Thu 21 Dec 2023 09:31:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43289
IP address blocks: 109.72.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8b:b7:a8:b3:ed:07:30:e4:d5:68:b3:1b:44:33:ef:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Dec 21 09:31:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea45e5be2641958c34869c43ec0c9ce5627e1b59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:59:b5:99:20:40:d4:de:b0:7f:0c:28:3a:c6:
e8:54:66:f8:be:ef:05:11:20:52:e6:21:13:de:d0:
4b:12:01:48:b6:87:14:12:f6:1f:88:e1:0a:3e:81:
60:3b:f9:2f:7a:47:b9:54:0c:23:56:b8:c4:53:b0:
d2:ac:8a:ee:1c:0a:28:e3:d0:99:1c:0e:86:c5:66:
ff:48:50:dc:e2:41:a9:7c:43:78:5a:cf:d6:26:d2:
1f:f4:8c:59:43:4c:1d:98:29:8d:eb:aa:e2:cf:93:
83:25:c8:cf:1c:65:14:e5:bd:93:08:30:6d:0e:06:
78:ec:d2:03:0d:d1:8d:3c:98:d3:22:0d:ca:ef:c7:
fc:20:23:23:7b:72:b6:07:d1:2a:9b:e1:67:ea:bf:
48:54:7e:98:6e:c8:2e:02:a9:06:a7:48:50:12:7c:
3a:3a:e5:d1:7a:17:bd:14:79:51:1e:6a:de:f3:ea:
38:33:6e:77:a8:9c:69:c2:63:7d:17:2f:c1:38:fb:
c0:50:8c:3f:0c:17:0d:99:f4:09:bc:12:68:48:ef:
29:a6:2c:dc:f0:99:c6:80:ea:43:73:26:f8:8e:9d:
6a:b3:ed:26:87:39:99:d1:3e:f6:06:4e:cc:95:1e:
ff:42:dc:8f:0e:b0:21:6b:f1:e7:1e:ec:fd:1e:81:
ce:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:45:E5:BE:26:41:95:8C:34:86:9C:43:EC:0C:9C:E5:62:7E:1B:59
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/6kXlviZBlYw0hpxD7Ayc5WJ-G1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.118.0/24
Signature Algorithm: sha256WithRSAEncryption
12:f6:db:58:7d:18:8f:34:ae:57:ee:d9:29:3f:d1:34:02:9c:
81:a3:44:8d:c1:8f:6d:44:df:25:a4:9f:41:44:af:ed:93:15:
11:f9:7c:1e:a7:2c:45:b8:53:7f:f7:b3:1a:c0:0d:7f:c5:7d:
57:68:32:c7:82:75:4d:97:f9:89:55:d6:0d:6d:87:36:ac:c9:
dc:66:16:fa:c7:c3:b6:63:fe:90:a1:11:75:e6:24:ae:7b:b0:
56:2a:f4:f6:03:ef:62:5f:27:57:b1:26:8b:4d:13:c5:10:67:
a4:e7:7b:52:99:45:7b:7a:72:7b:03:90:e8:f8:4a:85:54:10:
6a:09:48:6d:c9:69:91:35:6a:9f:3f:6d:8d:5e:bb:ed:2d:b7:
7a:21:ab:5e:6b:e1:d4:ab:3a:2c:5f:24:3f:aa:a6:e0:a7:71:
00:80:6d:83:80:06:43:a1:4f:97:2b:cb:41:ab:61:62:27:00:
57:b2:22:d4:ea:1b:77:b1:18:b9:75:65:e2:2b:a5:9c:b1:7d:
d2:58:2c:d7:cc:32:59:b1:d2:63:07:ea:96:ae:3f:72:2f:6c:
8d:45:a3:ec:ca:ed:3f:6b:ad:e5:f5:84:53:56:02:55:18:c0:
b2:21:d0:67:88:63:82:37:12:e8:73:41:43:aa:02:03:4a:7d:
a1:dd:e4:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:45 2024 by rpki-client on console-ams.rpki-client.org