Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ZcRsKxCedLPwj1jdAIRUwV3nFkA.roa
File: ZcRsKxCedLPwj1jdAIRUwV3nFkA.roa (raw, json)
Hash identifier: bVIQsqzLWuaf894FPdyDVW925Er3m0vu1JQJPB37UoE=
Subject key identifier: 65:C4:6C:2B:10:9E:74:B3:F0:8F:58:DD:00:84:54:C1:5D:E7:16:40
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018B1E283EBAEB10D596BFF41E80B59E0B61
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ZcRsKxCedLPwj1jdAIRUwV3nFkA.roa
Signing time: Wed 11 Oct 2023 09:53:55 +0000
ROA not before: Wed 11 Oct 2023 09:53:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60558
IP address blocks: 109.72.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Nov 2023 09:13:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1e:28:3e:ba:eb:10:d5:96:bf:f4:1e:80:b5:9e:0b:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Oct 11 09:53:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65c46c2b109e74b3f08f58dd008454c15de71640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:14:c7:a7:54:b0:30:5d:92:97:b5:19:c9:b9:
13:c9:93:9b:d8:c7:83:43:86:ec:7b:a6:36:67:69:
7d:bd:b4:2c:05:40:64:eb:ac:58:04:a7:9a:71:56:
2c:88:66:ac:a0:7e:d6:2a:62:e9:53:0d:3d:c8:9c:
41:26:50:3e:61:0e:d4:b2:cb:da:a3:15:4f:c9:17:
9f:f7:e5:3d:af:e0:b6:f2:10:07:c2:ae:ad:1c:a2:
0a:0e:2d:dc:35:bc:00:87:02:35:a0:13:b3:05:12:
d5:c4:d6:f4:93:6e:e3:f9:c8:9d:a2:4b:1a:18:67:
3e:35:ff:85:a3:62:87:69:5c:f4:2b:24:b9:52:24:
e4:45:96:87:60:6a:bd:a3:1e:06:fa:78:66:80:ff:
95:fc:da:91:53:e4:8e:af:2e:ac:a0:ed:5d:81:54:
7e:7f:8c:50:56:c4:24:e8:92:f4:f7:a6:68:e4:20:
84:8d:49:13:4a:2f:37:15:4b:b2:95:58:b7:b1:1a:
9d:a4:72:70:ae:a8:ac:b1:e7:f6:08:b0:a5:d5:79:
2c:4d:91:d0:22:37:f0:69:2f:e9:7e:24:c4:21:65:
f7:18:d7:58:87:74:6a:52:9f:e7:cb:8e:27:29:c9:
4e:a1:d9:72:fb:d1:9d:06:f9:1a:23:f9:98:7d:7d:
1d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:C4:6C:2B:10:9E:74:B3:F0:8F:58:DD:00:84:54:C1:5D:E7:16:40
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ZcRsKxCedLPwj1jdAIRUwV3nFkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.112.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:f5:b2:8e:69:0d:f1:2e:ac:4c:04:06:01:a6:c9:ba:86:bd:
8e:6e:14:44:bc:ac:10:d7:f3:eb:d0:6d:a6:d5:05:6c:8f:1d:
ca:4a:89:49:89:58:da:c5:0a:cb:61:a4:76:16:60:35:72:a2:
4a:ab:6f:69:44:80:d4:83:e2:08:28:3f:d3:28:3c:ba:33:92:
b1:9b:59:2e:4b:fc:c6:18:92:52:dd:f7:f8:ff:0b:e8:15:9c:
3d:b3:52:09:cd:db:e4:fa:8c:93:55:4b:ea:03:67:5e:10:bb:
ac:e3:ab:0a:35:c4:75:93:88:a8:bc:fe:9b:b3:e0:45:83:f3:
41:fb:46:79:12:62:08:54:ad:b3:4e:b6:86:37:06:44:c6:17:
d3:95:70:2e:16:8b:4e:42:52:4e:0e:23:a0:15:d3:31:e1:66:
4a:65:cc:2d:b1:10:ba:7b:3c:b3:3f:75:39:70:18:3f:ee:99:
b4:d8:1c:36:62:20:05:98:40:63:ef:32:17:31:e0:19:2a:72:
b6:a8:78:37:5d:4c:f4:99:5e:57:2f:bb:0d:1c:9f:f8:9c:a4:
39:86:08:65:c8:96:a0:4a:d2:22:24:90:2c:42:e8:0e:a9:38:
55:28:f8:5a:ee:7f:66:ca:63:65:ee:2d:7f:af:b1:a9:0a:1e:
f2:a6:b7:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org