Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/oKeP6MO2UWLd3nv2rC3lFQpjx0I.roa
File: oKeP6MO2UWLd3nv2rC3lFQpjx0I.roa (raw, json)
Hash identifier: p5uPAhBCRV5CbFmtHwVuoPAbcE1rjAPSB7p/HYOClGs=
Subject key identifier: A0:A7:8F:E8:C3:B6:51:62:DD:DE:7B:F6:AC:2D:E5:15:0A:63:C7:42
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0187B77613E04BD1AC7826859AA600F208B7
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/oKeP6MO2UWLd3nv2rC3lFQpjx0I.roa
Signing time: Tue 25 Apr 2023 08:09:41 +0000
ROA not before: Tue 25 Apr 2023 08:09:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205220
IP address blocks: 109.72.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 May 2023 15:46:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b7:76:13:e0:4b:d1:ac:78:26:85:9a:a6:00:f2:08:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Apr 25 08:09:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0a78fe8c3b65162ddde7bf6ac2de5150a63c742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d7:45:88:35:78:6b:ef:fe:ce:aa:3a:19:18:
80:6b:b8:5f:10:14:11:3c:b0:48:94:27:72:e0:b3:
d2:8b:75:51:00:3b:09:25:ca:10:ff:d7:22:5a:f0:
10:d8:4d:21:f4:db:6c:9b:28:c9:7d:cf:d7:84:db:
fc:9c:63:a4:e1:6c:86:f3:1d:3c:94:c9:be:a6:36:
b7:45:91:84:c5:49:eb:0a:66:17:0f:81:3d:de:93:
15:ac:66:28:88:3e:7c:99:f9:0e:16:d0:99:4b:67:
d6:79:c8:03:50:24:d9:42:4e:f7:28:54:4d:46:31:
33:09:e2:4d:d2:24:9d:e1:77:67:e3:3c:09:62:1b:
d7:60:3a:28:2c:5d:8c:9d:be:8b:08:09:24:bc:00:
7f:1e:65:e4:d5:51:82:e1:44:05:d0:2c:3d:08:8a:
0c:33:eb:c9:c3:17:b5:04:62:86:c5:a9:69:25:0b:
63:b8:1b:1c:36:81:91:ca:8c:01:66:99:0e:02:62:
06:57:e4:28:4b:23:85:da:25:9b:c1:cc:a9:1d:35:
3b:44:ec:bf:8c:a5:b5:7e:9f:c4:07:72:d2:db:d0:
16:7e:5a:81:c4:10:7b:fb:ef:d1:71:ea:86:81:bc:
f2:b8:b3:13:58:5b:28:f4:ed:a3:47:87:09:5f:59:
2c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A7:8F:E8:C3:B6:51:62:DD:DE:7B:F6:AC:2D:E5:15:0A:63:C7:42
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/oKeP6MO2UWLd3nv2rC3lFQpjx0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.127.0/24
Signature Algorithm: sha256WithRSAEncryption
50:4b:11:15:2b:09:5d:79:1b:4d:c1:24:21:64:d3:7b:88:13:
15:3f:cf:e7:14:86:7e:1b:67:87:e2:be:8a:bd:73:67:3d:c0:
60:db:a7:02:3c:b4:d8:e1:07:d6:10:25:89:3e:cd:30:cf:a9:
8f:23:d1:5a:47:88:3d:db:4a:f8:a0:38:b0:dc:5c:1c:35:ff:
19:cc:1c:19:f4:48:19:2b:18:39:e1:ce:4e:7e:dd:93:d1:1e:
19:02:1f:8e:2e:93:e4:b2:dd:34:7c:d7:fd:92:40:19:ec:49:
c7:68:52:24:f4:10:cf:a5:76:8c:a5:53:92:f8:26:55:f6:a2:
83:88:26:3c:ef:b5:80:0b:97:f1:14:43:aa:f6:c2:12:d1:cb:
c9:e6:61:ca:44:4c:1f:c3:76:44:e6:8c:4f:ee:9f:48:9b:f0:
0c:6c:ea:78:f1:b0:74:10:98:26:99:65:b9:70:2a:27:58:03:
c3:37:36:fe:bb:72:25:66:a4:c8:c4:b2:9d:d2:e5:70:3a:47:
3f:29:3c:55:5c:ee:8e:d1:11:60:37:d9:31:81:ba:9f:ea:8c:
31:a6:b6:f7:1f:0b:d8:1b:8a:e4:a0:c7:7c:19:8b:9a:0d:e0:
12:95:39:04:59:8f:cc:11:56:86:ab:e9:b6:06:32:72:29:03:
62:f2:3f:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org