Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/SuoIlo99di4gHspjyapksC2xOCM.roa
File: SuoIlo99di4gHspjyapksC2xOCM.roa (raw, json)
Hash identifier: QVXZZ3ysfoVEA5BoGsHQIJQFcF0qo+B705M05CKhY9U=
Subject key identifier: 4A:EA:08:96:8F:7D:76:2E:20:1E:CA:63:C9:AA:64:B0:2D:B1:38:23
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0189E3961C2F0D62CEBE1AB66F5203EA3C52
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/SuoIlo99di4gHspjyapksC2xOCM.roa
Signing time: Fri 11 Aug 2023 07:53:32 +0000
ROA not before: Fri 11 Aug 2023 07:53:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 81.22.136.0/22 maxlen: 24
109.72.115.0/24 maxlen: 24
109.72.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Sep 2023 07:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e3:96:1c:2f:0d:62:ce:be:1a:b6:6f:52:03:ea:3c:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Aug 11 07:53:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4aea08968f7d762e201eca63c9aa64b02db13823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d1:f2:78:b0:21:78:52:9d:ae:d2:c9:a5:03:
49:91:5a:df:4a:2d:7e:5d:76:38:95:6d:ee:a6:d2:
75:91:c7:3d:c8:14:ae:36:0f:b6:df:b2:29:af:7c:
94:45:82:c5:f1:b6:c9:40:d4:49:6a:f0:b7:40:71:
3f:a4:35:f2:3d:e9:fd:50:7d:7a:42:e0:3c:a8:3f:
fa:61:3c:3d:48:c5:93:5b:ad:da:b3:ea:67:7b:fd:
d3:c3:f0:35:f5:f5:b9:41:72:50:e4:45:9f:72:b9:
5c:0e:b5:ec:a7:b8:81:58:0b:91:97:f7:e7:58:d9:
92:c1:fe:ac:0b:18:6d:92:de:15:b9:bb:27:68:02:
3b:19:49:cb:72:c5:93:05:05:18:66:c8:14:e8:c1:
48:8b:6f:05:ae:7f:a7:e4:39:4c:cf:fe:4a:a7:40:
35:b4:ae:0f:11:20:5d:aa:f9:ce:1a:3b:fc:e7:55:
c9:24:45:7e:0e:c6:4d:20:54:04:c3:b1:f8:3b:39:
f7:2b:87:d0:87:de:bd:3c:7a:7f:cc:f5:62:e5:e0:
7d:83:77:24:3a:7c:02:e7:c0:1c:c0:0a:0e:13:27:
61:24:89:d9:b0:de:68:33:39:63:51:d5:bb:19:7e:
a3:16:63:11:76:07:ed:d0:e4:fa:b3:15:9b:46:42:
bc:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:EA:08:96:8F:7D:76:2E:20:1E:CA:63:C9:AA:64:B0:2D:B1:38:23
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/SuoIlo99di4gHspjyapksC2xOCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.136.0/22
109.72.114.0/23
Signature Algorithm: sha256WithRSAEncryption
28:ff:2b:30:11:1c:c4:11:ba:36:70:1a:47:1f:4c:e8:bc:c9:
75:a7:9b:cd:fe:e7:dd:a8:e4:f8:de:93:20:e6:2e:3e:a6:c7:
89:32:fb:e1:8c:3c:f3:b9:19:e5:0b:44:76:93:5f:1e:2e:34:
70:67:08:0a:4d:a6:f6:2d:24:0b:99:7c:7f:88:70:51:4d:15:
14:e4:1a:21:ac:c9:d3:ee:ef:7f:a9:e0:13:25:72:d4:29:c8:
b8:8e:e3:6d:85:39:86:e8:18:a9:ed:aa:e1:dc:54:db:8d:dd:
9d:e1:f7:c3:38:8f:ad:1d:90:7b:69:4f:e3:bc:53:74:41:3a:
ca:89:4e:2d:6e:68:3c:ab:11:59:32:fe:15:84:5e:44:c6:75:
31:81:01:b8:e6:2d:25:76:79:c4:c5:bb:04:3f:c2:65:a4:32:
f3:fe:a4:31:9f:42:2b:fa:9d:66:65:d9:de:77:dd:47:d1:a7:
31:e1:62:ad:8c:9c:bb:0e:59:a7:1e:00:6f:e9:91:83:d8:83:
6a:ae:ae:2f:58:5e:e4:2b:d0:a7:32:ed:41:d9:15:1c:6b:b2:
29:fd:23:ad:9f:de:93:fb:98:1d:74:6f:47:ec:e8:b1:35:d8:
44:2e:a7:93:db:a8:db:7d:96:d6:f0:44:96:3d:32:c4:26:48:
13:23:cf:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org