Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ixNuYlaTMKcPGbjSwj6dyLQAunM.roa
File: ixNuYlaTMKcPGbjSwj6dyLQAunM.roa (raw, json)
Hash identifier: iVRChUqAtU5TJi4y/G1CTNx5psNBBSdJboizECurWnE=
Subject key identifier: 8B:13:6E:62:56:93:30:A7:0F:19:B8:D2:C2:3E:9D:C8:B4:00:BA:73
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0189207698F4A3B22B75349FDECC7607680B
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ixNuYlaTMKcPGbjSwj6dyLQAunM.roa
Signing time: Tue 04 Jul 2023 10:33:10 +0000
ROA not before: Tue 04 Jul 2023 10:33:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35409
IP address blocks: 109.72.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Aug 2023 08:51:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:20:76:98:f4:a3:b2:2b:75:34:9f:de:cc:76:07:68:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jul 4 10:33:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b136e62569330a70f19b8d2c23e9dc8b400ba73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:7a:21:fe:07:42:70:e5:94:73:75:09:32:13:
9a:a4:e7:5e:f3:ee:ac:a4:25:5d:fe:8d:8e:46:27:
4b:f2:fe:47:44:f7:dd:5f:e6:91:31:20:39:43:c6:
50:1f:91:55:77:0a:9a:63:be:a4:85:27:04:e5:40:
0d:60:d5:6b:6a:d4:aa:61:be:fe:c8:9d:35:5e:07:
93:99:ef:92:06:e1:ed:2c:53:02:8b:d1:ac:55:0b:
4c:e9:10:7f:33:82:a7:4e:82:9b:be:aa:4c:10:66:
53:e8:f2:ff:47:7d:89:1e:06:34:c6:dd:1d:bf:85:
4d:2b:06:08:fa:44:eb:d1:9e:6f:c0:63:48:5c:b2:
36:f0:53:02:ad:9a:30:89:e0:22:a2:48:99:28:e5:
04:22:a5:97:0f:05:b5:4b:2b:da:f0:39:d0:60:12:
79:d2:06:37:d3:c6:df:c4:0c:a9:0f:96:64:ae:ee:
b9:38:b4:59:3f:ed:b4:96:05:a2:6b:19:7c:70:e4:
6a:16:df:ce:7a:8c:4f:c2:87:0a:34:93:64:11:14:
51:d1:0f:d6:8b:e8:e0:76:02:f7:97:6b:85:56:0a:
a2:7c:b4:56:24:a9:1c:46:f4:b9:4c:a9:8c:30:4e:
0d:71:5d:57:8a:a5:19:cd:30:b6:33:83:89:08:55:
0c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:13:6E:62:56:93:30:A7:0F:19:B8:D2:C2:3E:9D:C8:B4:00:BA:73
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ixNuYlaTMKcPGbjSwj6dyLQAunM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.126.0/24
Signature Algorithm: sha256WithRSAEncryption
35:42:de:0b:03:3d:dd:03:2a:83:97:ec:ca:1f:a3:e8:65:ff:
4d:39:60:5f:61:58:6b:29:e6:52:d5:73:8d:35:07:79:49:7a:
fb:65:fc:a5:0a:22:bb:a3:39:4e:79:5e:43:ae:5e:72:2e:b5:
17:52:5f:91:39:f2:71:26:ac:2e:d3:78:dd:93:8d:85:01:f6:
a8:ab:af:e9:ae:67:dc:5c:43:e7:a8:65:d6:0c:9d:46:99:0e:
2f:75:03:7f:63:90:de:b1:e3:05:ff:6d:e9:0c:f3:76:ce:f2:
60:42:3e:c8:00:ef:78:f6:5e:96:7e:ae:eb:b3:1f:eb:e4:13:
8e:bf:ea:41:0b:88:05:44:69:0c:98:60:01:aa:ed:81:fa:73:
37:1d:ca:d4:73:91:b5:ec:b3:37:cf:0b:4f:d5:4e:02:06:35:
ef:06:1d:c4:1d:f2:de:e0:37:52:f6:ee:a4:36:64:9c:85:47:
16:bb:6e:e7:09:da:df:c0:a5:37:57:29:9f:9d:dd:b1:3b:12:
73:fc:7f:97:a0:d5:06:04:1f:82:7b:74:0f:40:cd:e4:2a:46:
22:e1:f5:7e:fd:81:8e:6a:ac:04:68:85:66:10:d3:17:28:af:
50:30:03:d4:d6:b8:20:3e:0a:de:56:1f:a7:4e:0e:ac:de:b7:
a1:65:89:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org