Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/lwIVFR-rQjALKQXKNg6V8YuutRQ.roa
File: lwIVFR-rQjALKQXKNg6V8YuutRQ.roa (raw, json)
Hash identifier: 1+ZbhfAyEbBO5WWLtwf8uOSNNKoTFixODriyFtwoSbs=
Subject key identifier: 97:02:15:15:1F:AB:42:30:0B:29:05:CA:36:0E:95:F1:8B:AE:B5:14
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0189F856DBFC5FBBB51639DF4F9510BD73D8
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/lwIVFR-rQjALKQXKNg6V8YuutRQ.roa
Signing time: Tue 15 Aug 2023 08:36:29 +0000
ROA not before: Tue 15 Aug 2023 08:36:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213186
IP address blocks: 109.72.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Aug 2023 13:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f8:56:db:fc:5f:bb:b5:16:39:df:4f:95:10:bd:73:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Aug 15 08:36:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=970215151fab42300b2905ca360e95f18baeb514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a7:06:38:92:cf:dc:93:d0:fe:27:a9:7c:47:
5a:ae:4a:8a:41:17:42:6a:fb:5c:14:6e:bb:2b:14:
7f:37:b4:db:02:59:55:d0:00:a8:b5:a8:c4:f9:d6:
ff:90:16:8a:6c:23:8e:27:84:92:59:e9:ca:78:97:
a5:56:bb:fc:93:89:7a:7e:4c:8b:f0:1b:f7:25:a4:
66:89:52:e1:df:5d:47:44:1f:44:3d:78:36:53:3b:
92:97:66:d2:09:88:d7:92:bc:38:ae:67:c9:0d:79:
84:c5:51:5a:b9:06:f7:8b:96:41:70:ca:40:fe:b1:
e6:33:77:91:36:e7:68:f0:36:00:e4:24:2b:16:6b:
9c:c8:84:ff:3f:9f:a3:41:e9:b6:7e:0c:16:9f:db:
45:98:28:69:aa:fe:4a:3c:5a:8e:d7:7e:f7:dd:fa:
1c:ab:70:80:ee:7b:dc:09:0b:f0:70:4b:f1:d8:e9:
0e:ae:de:b1:08:24:42:10:84:c8:ca:ed:2e:d0:2f:
f7:cf:4d:97:f0:25:5c:12:df:d5:da:2c:b3:b4:47:
9b:5c:c2:b1:a0:ad:5e:49:e1:43:30:f3:0c:4c:50:
d3:2b:2d:8a:23:a2:a8:ff:20:f5:0f:87:f9:a3:df:
66:ff:f3:44:35:ec:c7:7e:ba:bc:50:e8:6a:97:7e:
10:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:02:15:15:1F:AB:42:30:0B:29:05:CA:36:0E:95:F1:8B:AE:B5:14
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/lwIVFR-rQjALKQXKNg6V8YuutRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.116.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:d0:c1:0a:68:aa:48:cb:31:04:1a:01:31:8e:a8:cd:49:23:
74:78:9e:ed:c1:55:27:d0:34:21:7f:96:0b:ab:44:46:24:36:
a5:d9:a3:53:4a:92:33:37:2e:bc:8c:ad:c1:8c:27:55:fc:27:
b0:79:db:08:27:1d:f4:37:67:53:18:9a:bb:35:cd:fc:f8:63:
4e:94:d9:f2:fd:43:42:2b:ef:d7:3c:ed:76:d3:18:bc:e6:1e:
8d:f5:34:3b:2a:48:9f:5f:ae:1d:42:83:3c:18:77:a7:9b:9d:
12:8e:25:cb:d6:5e:7b:f7:67:81:79:db:02:7f:9b:74:4e:4f:
0d:4c:8c:38:3e:a8:f5:e2:94:a2:8d:97:d8:4a:e1:4d:8a:ba:
36:1a:e7:32:d8:cc:91:ac:f1:b7:08:c3:cd:9a:ce:e5:60:1a:
17:86:a5:a4:f6:1d:2e:f0:b8:fd:de:6a:25:b5:50:97:29:1e:
b9:7d:14:34:82:0b:eb:12:d1:65:bb:eb:d6:22:54:ea:16:32:
19:a5:5e:4a:d1:88:b8:26:eb:f2:71:82:1e:2b:79:92:fc:22:
20:59:44:0e:23:93:90:86:d7:4d:43:aa:9e:d0:43:f6:cd:10:
90:f7:00:6d:07:56:0f:e5:8d:8e:9a:e3:60:0b:9e:bd:e0:ef:
f0:63:7a:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org