Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/RwP-zRDLkQyHWef1b8w4fIw1Cvw.roa
File: RwP-zRDLkQyHWef1b8w4fIw1Cvw.roa (raw, json)
Hash identifier: kCUHLX3OIOvCFKXUre6faQFW/RnqG50LMHwepldPr9Y=
Subject key identifier: 47:03:FE:CD:10:CB:91:0C:87:59:E7:F5:6F:CC:38:7C:8C:35:0A:FC
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018B1E275499CD60D96564CD4A05E7A6AF9F
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/RwP-zRDLkQyHWef1b8w4fIw1Cvw.roa
Signing time: Wed 11 Oct 2023 09:52:55 +0000
ROA not before: Wed 11 Oct 2023 09:52:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209242
IP address blocks: 109.72.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 Nov 2023 14:19:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1e:27:54:99:cd:60:d9:65:64:cd:4a:05:e7:a6:af:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Oct 11 09:52:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4703fecd10cb910c8759e7f56fcc387c8c350afc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e8:d8:f6:3a:20:37:72:a0:e2:f8:c6:26:8d:
c4:b1:1a:bf:dc:e6:59:0f:d3:31:49:e4:2f:41:74:
47:de:7a:e5:20:56:91:3b:c0:7f:3a:53:3b:84:21:
13:78:f4:eb:e3:ca:66:93:67:87:ef:e6:d6:d7:e4:
3b:45:d1:65:fd:8a:a1:fe:e8:36:a7:e1:21:1c:42:
5d:ad:a8:d2:03:3f:97:b1:58:3a:ca:17:72:e3:02:
d5:ac:53:fc:65:e9:1f:34:f3:11:d9:1c:58:a1:8e:
de:9d:d9:a9:b0:70:db:00:64:f2:64:f0:96:0d:8d:
93:e2:49:3b:9d:a0:9d:98:65:4f:bf:7d:3e:14:da:
01:85:db:3d:09:10:8b:05:6a:05:40:8a:ba:cc:bf:
a2:bc:4b:7d:a6:38:78:08:90:24:0c:86:31:87:4b:
63:29:ec:06:a0:82:1b:04:93:4f:65:f7:5e:0e:a0:
a4:35:17:b3:dc:37:36:fd:14:1d:14:b5:6b:dc:ec:
6b:0e:8d:3c:2d:c5:e9:a1:a6:36:03:90:38:32:c1:
05:db:3e:ff:6c:c7:d6:4e:c0:f1:20:21:ef:08:52:
3e:fa:bf:ff:ad:62:1d:76:26:da:f9:59:e8:ea:35:
8e:26:a1:d4:e4:c7:33:d0:31:06:12:63:23:6b:34:
d6:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:03:FE:CD:10:CB:91:0C:87:59:E7:F5:6F:CC:38:7C:8C:35:0A:FC
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/RwP-zRDLkQyHWef1b8w4fIw1Cvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.113.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:01:5d:b2:d1:9b:79:4e:ce:98:7c:e2:36:39:5b:ac:a1:df:
6e:a9:bf:07:9c:e5:ff:3c:35:82:76:63:cd:34:46:03:13:8e:
d8:50:8f:5d:7f:0d:28:d7:e0:dc:5c:dd:76:66:f9:33:7b:8d:
51:18:7b:21:bb:b5:d7:a9:2e:07:c8:93:6f:67:d9:1e:1d:88:
75:12:6b:48:9e:f4:26:7d:d5:0f:83:f4:d2:bb:0d:20:b0:bb:
a9:7a:19:95:31:9c:44:d4:1c:ab:09:3c:a5:1f:6e:cf:f2:11:
5d:6a:a2:6f:d1:83:92:69:b6:e3:2f:98:dd:56:65:6f:e3:58:
2d:a0:63:63:3d:87:27:4c:d2:89:64:da:bc:ba:46:7d:67:7d:
12:82:53:94:c6:2b:44:88:25:8c:3c:46:db:21:04:86:eb:e2:
5c:a2:f3:ac:b6:ea:28:53:36:af:5e:09:e7:67:d3:09:e7:eb:
4c:a5:36:5b:c7:0e:12:15:05:b5:f3:66:a7:7b:44:6a:2a:e2:
cd:eb:cc:15:dc:06:79:a5:43:6d:9a:54:5f:5c:b3:0e:1c:62:
ce:ba:f1:19:5a:a1:dc:a0:2c:da:74:cf:39:08:2c:ae:8d:60:
c7:76:84:f4:b4:cb:55:b1:bd:2b:4e:db:8e:ad:41:e6:da:5b:
16:f2:da:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org