Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wCYwIzLkoQNZf-7ee3rtaH-HrHU.roa
File: wCYwIzLkoQNZf-7ee3rtaH-HrHU.roa (raw, json)
Hash identifier: mNagCYQpBibb2nk2L8MzuSft0i+3XDmHNkPnFovAA4Q=
Subject key identifier: C0:26:30:23:32:E4:A1:03:59:7F:EE:DE:7B:7A:ED:68:7F:87:AC:75
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018B0BE38C8F974D77359F33176DBCD8F57E
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wCYwIzLkoQNZf-7ee3rtaH-HrHU.roa
Signing time: Sat 07 Oct 2023 20:45:43 +0000
ROA not before: Sat 07 Oct 2023 20:45:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19437
IP address blocks: 109.72.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Nov 2023 09:13:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:0b:e3:8c:8f:97:4d:77:35:9f:33:17:6d:bc:d8:f5:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Oct 7 20:45:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c026302332e4a103597feede7b7aed687f87ac75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:be:2a:b3:56:46:b3:a3:af:90:a8:52:4b:56:
2c:75:65:85:65:28:e3:ef:b1:c9:dc:cf:63:e5:71:
89:a4:2f:ce:bc:27:1d:c7:bd:c8:e3:4c:b0:48:de:
d7:ba:e4:a7:3b:2f:a6:33:4f:47:b9:17:72:16:2b:
c8:2c:8e:74:f2:77:d9:1b:a6:2c:e3:e9:4f:62:d2:
f3:7e:fb:68:bd:7d:87:d0:17:dc:ef:bd:0a:95:5a:
81:65:29:63:43:b8:3b:18:1b:af:c9:41:33:b3:37:
84:e1:18:5f:60:ea:c7:99:bb:ec:6a:1b:0f:02:11:
e6:d2:25:e0:0e:bf:3e:43:2a:5c:dc:20:f7:cd:17:
44:ca:ec:ca:d4:b7:b6:cd:ad:d0:1d:f7:85:70:b2:
60:0d:9b:31:3d:e2:1f:97:08:51:72:43:13:ae:a1:
13:49:1c:fd:ab:5e:3a:ef:a3:88:16:25:3b:74:94:
23:46:49:9e:0b:6d:6b:a9:7b:ae:a7:d5:4b:4f:9e:
f2:27:92:11:3a:be:08:0b:ed:d7:a2:15:f9:ad:5c:
f9:52:6b:f3:76:6e:d8:e1:ca:cd:52:6d:32:1a:83:
5f:17:76:d3:7b:ea:29:ac:00:78:3a:ac:56:0d:e4:
02:eb:b7:22:b6:0e:20:44:4b:e3:d4:de:0c:ef:12:
77:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:26:30:23:32:E4:A1:03:59:7F:EE:DE:7B:7A:ED:68:7F:87:AC:75
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wCYwIzLkoQNZf-7ee3rtaH-HrHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.112.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:7c:16:eb:4c:06:8e:2b:30:2a:f8:a2:74:b1:00:c6:b8:1a:
db:ac:5b:5b:45:9a:54:36:2e:48:76:e6:6f:74:9b:c8:7f:24:
c4:16:8c:62:82:93:ce:da:00:53:e3:dc:52:c7:74:46:70:46:
41:c2:e4:e5:85:0a:25:3f:a9:86:9d:67:e5:3a:c4:5a:b1:e6:
51:ea:04:dd:3c:9b:52:31:5d:22:0e:40:b4:ee:c0:df:93:dd:
bb:a5:d5:59:1d:c7:4e:65:42:37:10:82:c1:c5:ba:31:5c:72:
06:46:72:bc:46:9d:5e:52:17:8b:50:4b:26:db:eb:73:63:59:
58:9e:9d:bb:2d:a9:0b:93:05:e1:70:e3:95:25:0a:19:cc:ed:
ce:e8:47:94:1e:ff:d9:67:6e:ed:d6:8f:8d:c8:18:4b:df:50:
10:98:50:0d:ed:34:ea:06:18:9e:14:6d:78:55:4a:0b:75:93:
95:db:52:82:d1:4e:83:74:22:a0:b4:6f:a9:33:40:dc:04:06:
ad:ca:55:d2:b5:f8:72:ba:24:b4:00:99:cb:7e:20:9f:9d:43:
b0:6d:f1:3c:92:1a:94:64:44:e1:62:d5:e0:bd:82:16:b1:53:
37:e3:65:9a:82:c2:bb:d2:d4:ce:ed:37:16:88:c3:92:77:b4:
e4:f3:ff:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org