Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/SqXIH6JwSqEGn7bTOJvUQt3uhT4.roa
File: SqXIH6JwSqEGn7bTOJvUQt3uhT4.roa (raw, json)
Hash identifier: 6Df+xG7sU9gnZuPQXlQ9GkHGLBFneAquVVNC7cV5K5c=
Subject key identifier: 4A:A5:C8:1F:A2:70:4A:A1:06:9F:B6:D3:38:9B:D4:42:DD:EE:85:3E
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 01875188D3FDBCA90B6673F0EBA835844845
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/SqXIH6JwSqEGn7bTOJvUQt3uhT4.roa
Signing time: Wed 05 Apr 2023 13:08:54 +0000
ROA not before: Wed 05 Apr 2023 13:08:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 109.72.112.0/24 maxlen: 24
109.72.115.0/24 maxlen: 24
109.72.116.0/24 maxlen: 24
109.72.113.0/24 maxlen: 24
109.72.114.0/24 maxlen: 24
109.72.121.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 May 2023 04:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:51:88:d3:fd:bc:a9:0b:66:73:f0:eb:a8:35:84:48:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Apr 5 13:08:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4aa5c81fa2704aa1069fb6d3389bd442ddee853e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e1:0d:68:29:b0:12:8e:0d:00:bd:ca:4f:8b:
38:18:44:fb:5f:79:ba:81:59:42:2f:0e:81:0f:31:
fc:c4:7a:90:7d:74:86:5b:05:95:84:0f:9a:5a:a8:
b6:70:6f:cb:a9:9d:a0:4d:93:49:06:3f:5c:5b:e9:
d9:2e:3b:a8:55:87:93:f0:89:92:c9:3f:9b:c2:c3:
ea:27:d5:19:00:7a:b0:70:fd:db:18:fc:db:ec:d3:
15:c9:75:b8:17:f0:2b:46:09:98:17:35:28:b4:8b:
e9:51:0c:be:e3:4e:1c:e8:c3:73:bf:48:80:5e:ed:
44:f6:6f:89:d4:1b:cf:5a:e2:47:b3:d4:1d:ff:f7:
d1:04:17:62:05:12:8d:e8:ae:22:6d:ba:79:0c:36:
a3:4c:25:1f:8a:9b:2a:df:5f:f0:52:d7:66:f1:6d:
7f:3e:90:3c:1a:fc:25:44:43:a7:ce:d9:87:08:d6:
97:88:d9:b6:5d:95:f4:37:7c:19:3c:41:c6:c7:d7:
4a:6a:90:79:6b:be:9f:36:9c:b9:83:39:d5:61:cc:
27:c5:e8:41:ed:00:a9:c5:f1:87:71:2f:de:3b:90:
d0:14:50:28:f4:39:42:0a:18:41:49:b6:cb:d5:b9:
bf:e6:80:e9:da:5d:45:d0:1b:20:63:1d:56:67:80:
2b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:A5:C8:1F:A2:70:4A:A1:06:9F:B6:D3:38:9B:D4:42:DD:EE:85:3E
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/SqXIH6JwSqEGn7bTOJvUQt3uhT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.112.0-109.72.116.255
109.72.121.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:b1:af:ad:bb:97:2e:ea:8d:19:e9:63:6e:6e:43:ca:80:fd:
75:bc:c2:c8:ce:60:e8:61:21:a4:a8:59:a8:6e:84:2d:21:fa:
42:6e:72:1f:83:42:40:0c:2a:64:25:ca:58:d9:f0:f0:e0:76:
e1:dc:ca:f8:90:f4:90:b7:a3:89:52:05:06:90:4d:7c:5f:7c:
01:32:17:d3:d6:f9:11:c0:81:87:4d:33:ae:8b:39:14:c3:63:
76:ef:64:6f:65:a6:9c:06:08:b5:8d:a9:b3:eb:92:c5:2c:d2:
56:11:93:d3:57:ae:8a:27:de:de:66:32:77:90:e0:d3:bf:e9:
39:98:5c:52:3d:94:75:2a:af:8b:e6:48:eb:bb:36:d0:b0:f5:
bb:ab:23:9d:61:26:2c:7f:71:96:6e:f1:08:53:26:d8:02:6e:
97:f9:d5:6a:e5:d1:08:75:ee:87:4a:f4:de:17:21:81:dd:41:
40:65:9d:02:18:64:1a:19:c6:0b:39:1e:22:3b:19:25:e3:2b:
96:49:4b:70:d2:40:8b:6e:87:de:f9:4c:71:01:01:42:94:83:
8e:82:67:a5:18:47:8f:07:9e:9d:60:18:c0:0e:a7:82:8d:6f:
fe:b7:cd:28:e7:85:c1:f9:25:ef:fc:83:0c:36:5e:30:02:83:
79:ab:94:88
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org