Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/vL-cVhiuA_9ZbDr5QiRp0XsWAcs.roa
File: vL-cVhiuA_9ZbDr5QiRp0XsWAcs.roa (raw, json)
Hash identifier: ryY9Xqjsr8XDrDsylhEO07MI+BGwUl0N1YfGwGnAWBk=
Subject key identifier: BC:BF:9C:56:18:AE:03:FF:59:6C:3A:F9:42:24:69:D1:7B:16:01:CB
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018DB28959C5B0ADE861D2177F65A4D9283F
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/vL-cVhiuA_9ZbDr5QiRp0XsWAcs.roa
Signing time: Fri 16 Feb 2024 15:29:22 +0000
ROA not before: Fri 16 Feb 2024 15:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8100
IP address blocks: 109.72.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 13:24:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b2:89:59:c5:b0:ad:e8:61:d2:17:7f:65:a4:d9:28:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Feb 16 15:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bcbf9c5618ae03ff596c3af9422469d17b1601cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a9:b8:73:00:b4:8e:74:61:79:55:48:47:b4:
20:c5:55:65:93:60:46:ef:a7:cb:1e:01:1b:30:3f:
c5:c4:9a:46:70:53:28:1a:f7:ba:b6:c1:bf:48:55:
1e:04:9c:11:80:5c:87:41:93:15:9c:f8:06:fe:7a:
1e:31:ca:dd:34:cc:8c:ec:a6:24:9b:72:d3:de:bf:
10:94:b9:7d:57:1b:39:2a:b6:7a:e7:3f:18:17:e0:
21:51:89:42:e3:cd:33:64:99:a8:12:b6:e0:3a:cd:
23:0a:47:25:17:a7:d9:e8:75:07:1d:d8:42:2d:e7:
1e:3d:cc:0d:2c:c2:db:0a:ee:f2:9d:cb:b7:03:26:
28:ad:0b:6e:d6:21:ad:51:87:6a:3a:89:a9:98:86:
c2:17:d3:38:c7:21:54:3c:7b:dd:ca:52:b4:c1:88:
85:f3:f1:b1:6b:e4:21:91:fc:6f:eb:16:c0:18:80:
7c:e1:4d:1c:b6:73:99:0b:e2:06:4c:f2:fd:21:50:
06:96:30:d8:6b:81:2b:74:04:d5:1f:9e:8b:41:e3:
48:a5:f5:ff:1d:0f:6a:c4:2a:8e:a3:c1:6b:79:34:
c3:98:07:69:07:ee:0a:ea:05:2a:2d:9f:8a:22:70:
37:54:6b:5f:06:e2:3e:a6:41:52:53:89:15:1f:9d:
8d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:BF:9C:56:18:AE:03:FF:59:6C:3A:F9:42:24:69:D1:7B:16:01:CB
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/vL-cVhiuA_9ZbDr5QiRp0XsWAcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.112.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:a9:be:b8:31:fc:09:5c:38:f7:d6:98:39:f1:16:1a:eb:18:
8b:d8:a9:df:bf:09:4e:ef:38:46:3a:e5:68:93:95:0e:06:81:
37:c2:40:b3:03:a8:7d:21:58:8b:85:ce:04:da:e9:73:33:02:
0e:1a:82:19:60:e5:24:70:05:31:34:a2:f7:97:88:ec:ce:ff:
8b:d7:9e:26:da:b2:2a:bd:99:2c:a7:24:ed:db:5e:b2:1e:b4:
1d:7e:40:5a:4a:86:96:49:bf:60:80:50:7c:a7:ed:18:6b:75:
4b:61:8a:57:d9:40:e9:70:6c:8f:85:0d:d3:a9:a7:7e:b1:a6:
05:b6:1f:37:fe:b9:bd:ac:34:ba:c4:40:fa:d9:22:3b:7a:67:
31:33:69:ec:de:7d:46:3f:45:b3:3f:f3:0a:32:aa:92:8e:cd:
71:f1:7c:1f:44:d3:e5:c8:f1:0e:02:1d:bd:78:f6:58:46:eb:
7c:32:6f:bc:e0:59:aa:5a:74:b1:fa:b8:70:f8:89:f9:fb:68:
77:c8:9f:90:72:6b:2a:69:c1:ed:d2:cd:bb:93:64:5b:17:2a:
64:00:0f:1b:1d:a1:51:77:61:b4:38:a2:53:17:71:98:9a:bb:
f1:43:94:4a:1c:fd:41:6e:3b:c7:34:fe:bc:8b:84:70:ef:a4:
01:c7:cf:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org