Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/xtXoYY834ncdN-O56aJGYuOos5U.roa
File: xtXoYY834ncdN-O56aJGYuOos5U.roa (raw, json)
Hash identifier: LUwxcj1uKWfx5DRG03R7Ld/ZHTuZYxr2U8ovbXPdxRY=
Subject key identifier: C6:D5:E8:61:8F:37:E2:77:1D:37:E3:B9:E9:A2:46:62:E3:A8:B3:95
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0186C73DAC547CB1995683A6284B754F9E49
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/xtXoYY834ncdN-O56aJGYuOos5U.roa
Signing time: Thu 09 Mar 2023 16:39:13 +0000
ROA not before: Thu 09 Mar 2023 16:39:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213305
IP address blocks: 109.72.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Apr 2023 13:03:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c7:3d:ac:54:7c:b1:99:56:83:a6:28:4b:75:4f:9e:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Mar 9 16:39:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6d5e8618f37e2771d37e3b9e9a24662e3a8b395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:eb:6f:f5:b4:42:8a:d6:5b:ee:7a:f3:02:22:
df:2f:01:c3:71:bd:92:e2:2e:07:5c:23:1b:59:3c:
3c:a2:8e:16:70:05:c9:55:87:6c:ef:13:40:a2:c2:
51:25:50:79:91:e8:27:f5:4e:de:47:f5:1d:21:e1:
e9:2c:13:0e:61:41:3b:1e:76:ac:2c:df:9f:e2:19:
50:8c:54:8e:24:04:55:3d:0f:94:41:06:23:60:5e:
42:f0:30:9d:fe:ee:4f:4e:3a:46:0d:43:eb:ce:1c:
17:fb:f3:e5:03:c6:30:d0:a4:2b:81:43:7c:cb:22:
9a:c8:92:ed:fa:2c:13:6f:e8:cd:2c:9f:fd:f5:c8:
45:5f:3c:85:27:b5:e5:28:9c:41:3a:3a:8c:33:d1:
7c:29:33:ff:ae:3b:c3:18:2a:f6:c7:2c:e1:1e:f9:
01:23:c2:a7:f7:a2:53:06:70:be:9e:df:10:4c:f6:
51:95:f0:b3:20:4d:68:e7:2d:7e:3e:75:db:fb:08:
04:e8:60:91:1a:66:e4:61:50:05:28:b0:0a:f4:47:
81:ce:45:31:e3:5d:8c:f9:f6:9e:69:1a:28:b0:a1:
05:fe:6c:8f:cf:88:13:a7:bf:f0:cb:82:6e:af:26:
d2:37:b1:06:f4:a5:bf:97:21:dd:f4:e8:0d:d3:74:
fe:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:D5:E8:61:8F:37:E2:77:1D:37:E3:B9:E9:A2:46:62:E3:A8:B3:95
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/xtXoYY834ncdN-O56aJGYuOos5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.115.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:7c:ee:5e:bc:b5:da:9e:bd:91:6d:67:a9:a2:3e:55:29:a4:
ab:9b:0a:92:f0:df:b3:5e:44:36:7e:0d:56:44:cd:73:6c:03:
89:e8:dc:da:c9:db:71:67:98:20:3a:fe:c8:d7:da:0f:fd:f2:
3d:1b:ce:8a:96:32:b3:5d:b9:94:1d:99:a0:24:c8:27:4e:a2:
ea:8c:a3:30:45:69:62:f4:fe:95:fd:66:d2:4d:09:3f:b4:d2:
0c:98:72:44:80:0e:51:d4:5b:e2:95:c1:fe:96:c4:b8:f5:90:
37:15:c5:02:8b:f5:1b:6c:24:31:8a:76:1a:ee:e1:c1:c3:13:
c4:dd:a3:e8:61:c9:1a:5e:40:64:ed:cc:15:7b:76:24:16:e9:
0f:2f:87:17:67:51:c8:40:bd:32:c9:58:35:8a:be:7b:c3:8c:
10:3a:83:6f:ea:78:40:87:c5:fe:06:b1:61:23:89:15:97:85:
a1:17:51:ac:b5:18:f7:51:bc:d8:12:f7:56:35:37:b0:0a:2d:
b2:2a:0b:9c:73:1f:98:b8:49:ce:03:a3:71:59:9b:4f:89:c4:
47:1a:59:ed:72:c2:15:c0:58:2a:18:a3:97:9c:88:fb:fd:42:
21:25:fb:32:20:1f:e4:4b:8d:89:5a:dc:19:40:98:82:56:8f:
95:d6:5b:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org