Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/UF5n4ryDMy2aCMKb_q3PIY94CSo.roa
File: UF5n4ryDMy2aCMKb_q3PIY94CSo.roa (raw, json)
Hash identifier: cOsnBYDORNsFxBUQb4eFlvAnkOXXfMnJPMqagRuRayM=
Subject key identifier: 50:5E:67:E2:BC:83:33:2D:9A:08:C2:9B:FE:AD:CF:21:8F:78:09:2A
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018CC649CBCE0201781255FCBDE1169A3B6F
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/UF5n4ryDMy2aCMKb_q3PIY94CSo.roa
Signing time: Mon 01 Jan 2024 18:29:34 +0000
ROA not before: Mon 01 Jan 2024 18:29:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201575
IP address blocks: 109.72.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 Jan 2024 10:44:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:cb:ce:02:01:78:12:55:fc:bd:e1:16:9a:3b:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jan 1 18:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=505e67e2bc83332d9a08c29bfeadcf218f78092a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:2a:c0:04:63:99:3e:d3:27:94:51:04:00:11:
bb:30:4e:3c:28:c4:33:79:f0:fe:ac:92:97:f8:bd:
ea:f4:28:2f:30:24:61:a9:6b:00:9d:58:0b:04:8c:
38:f9:e1:c5:65:bc:51:c6:24:3c:14:c4:40:35:78:
12:49:af:00:51:89:43:3b:ea:03:40:ff:04:bc:e9:
79:01:40:2c:ec:ac:de:b9:39:87:3d:a5:f4:80:ae:
fe:b6:8e:01:33:04:fc:76:54:0a:24:e0:8b:9c:11:
06:b1:43:db:31:3b:b3:08:62:17:03:dd:1a:05:89:
85:ac:90:3f:5e:52:36:23:67:a4:88:5f:5b:4e:e0:
c2:d2:52:02:de:3e:4f:0c:1a:36:1f:95:d3:d9:f8:
26:e2:7a:dc:46:f6:67:87:fc:9b:83:df:8f:c1:65:
84:2b:d3:8d:01:ba:3e:f5:86:29:28:35:f4:ff:8b:
44:e6:b6:eb:24:ca:75:f8:70:47:ad:52:aa:df:b0:
c7:be:9e:a7:64:33:bd:ac:1d:a4:4b:1f:10:c7:d3:
75:ca:41:74:bb:43:10:19:14:7d:51:c1:23:01:25:
7c:fa:69:4e:83:ab:df:3e:6a:66:c3:47:97:4a:80:
7d:4c:75:42:56:93:30:45:1e:23:ee:0d:58:21:0f:
1a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:5E:67:E2:BC:83:33:2D:9A:08:C2:9B:FE:AD:CF:21:8F:78:09:2A
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/UF5n4ryDMy2aCMKb_q3PIY94CSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.116.0/24
Signature Algorithm: sha256WithRSAEncryption
85:58:11:58:2b:60:60:1b:b2:a4:f9:2d:c3:82:89:50:48:4e:
e1:fd:14:59:d8:f7:1e:ea:42:57:9d:5f:2b:c1:58:0d:fa:51:
b4:0e:fd:56:73:44:dd:d5:26:79:ce:e9:a6:c1:39:33:e4:6d:
2a:7d:0a:d6:5d:7e:1f:70:0a:07:c3:cc:b5:b7:78:b0:0d:b6:
27:08:3e:13:cf:61:bc:d2:ba:59:97:e5:64:f4:62:6f:6e:37:
89:de:da:83:be:bf:56:17:cf:88:8e:a7:f5:2a:ef:ac:ca:f5:
ca:ee:4e:51:80:f9:eb:39:1f:a4:26:ab:29:67:01:da:30:a0:
18:37:4d:b1:16:47:16:65:09:33:ad:01:37:ff:f9:8b:14:44:
00:a6:cf:50:8c:55:f7:1f:07:04:54:17:79:2f:96:65:c1:c9:
3c:75:57:fc:62:3d:3b:32:92:55:fe:26:3f:ce:61:6c:8c:92:
42:fb:fd:53:f6:fc:c5:c3:b7:57:c7:61:6f:c8:59:75:0d:c1:
f6:9e:e9:51:bb:a1:60:bb:2c:6e:d6:c1:95:88:74:ba:61:49:
5a:59:63:97:d5:76:1f:b3:b6:7e:17:0c:ed:0c:f5:72:6d:65:
bb:bb:b6:74:83:28:1a:e5:5e:93:74:6b:12:e4:5b:be:35:27:
c7:da:d5:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org