Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/zjlcH81iPtME5rAznVBvrQzRbuM.roa
File: zjlcH81iPtME5rAznVBvrQzRbuM.roa (raw, json)
Hash identifier: JdIi/m6y7UOW0U3FFKlHCAbip42n0sVeNgoTxwIyUY8=
Subject key identifier: CE:39:5C:1F:CD:62:3E:D3:04:E6:B0:33:9D:50:6F:AD:0C:D1:6E:E3
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018699CA6E1CAC96532E0FA809D0B9A3BC8C
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/zjlcH81iPtME5rAznVBvrQzRbuM.roa
Signing time: Tue 28 Feb 2023 20:50:25 +0000
ROA not before: Tue 28 Feb 2023 20:50:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206505
IP address blocks: 109.72.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:99:ca:6e:1c:ac:96:53:2e:0f:a8:09:d0:b9:a3:bc:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Feb 28 20:50:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce395c1fcd623ed304e6b0339d506fad0cd16ee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:2f:ac:39:54:1a:7e:04:2b:90:2e:0c:f7:d1:
cb:18:ec:6c:52:b4:20:4d:4f:ed:76:be:e6:bb:0f:
50:f9:38:ab:98:2e:f3:61:ea:83:1e:35:c2:c0:1b:
70:59:0d:80:a2:31:9c:4f:9e:e9:4c:89:ea:7c:89:
a9:f9:8e:ca:4e:0f:82:dd:8d:05:34:c9:e2:cd:e3:
f8:15:9d:6a:a3:38:d2:fb:6d:bb:df:57:35:89:dc:
92:2a:28:e2:3e:fc:49:fd:dc:e8:e6:25:47:12:c6:
47:98:cf:7d:6b:7c:21:00:75:45:7d:ea:45:fb:cb:
1d:39:ff:2f:b2:9f:9d:10:b9:e4:47:c2:1f:a2:a6:
ca:24:cb:35:45:63:c7:65:6e:36:bc:5a:d0:d3:09:
89:e6:47:c3:f5:f7:98:6b:8e:ed:9f:f0:64:3e:1b:
44:aa:5d:01:e4:d4:b9:a3:dd:6c:43:25:42:a6:0b:
4a:24:53:0f:da:be:1c:d8:8f:f9:65:7d:bf:ad:40:
6c:df:f4:7b:89:aa:ab:db:58:3a:b7:65:79:ba:55:
c4:32:d3:75:7c:21:3d:c1:06:cc:fa:76:7a:fb:43:
ac:8a:fc:14:5e:a9:c5:ef:93:28:8c:db:ee:9a:d6:
78:07:2c:b9:04:21:3f:3f:57:7d:f1:a3:8f:ab:35:
92:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:39:5C:1F:CD:62:3E:D3:04:E6:B0:33:9D:50:6F:AD:0C:D1:6E:E3
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/zjlcH81iPtME5rAznVBvrQzRbuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.124.0/24
Signature Algorithm: sha256WithRSAEncryption
66:1d:ac:54:2f:5b:af:72:11:4c:de:5e:ca:dc:a0:ac:a6:e6:
c4:9f:72:86:59:d8:b5:c2:47:4c:88:28:14:42:60:d6:d8:05:
7f:ac:2b:43:f2:83:c9:92:03:4c:12:2a:d9:3a:c7:65:f3:f8:
09:d0:27:d9:1d:60:15:d9:01:85:d9:6f:eb:e5:0b:b8:8a:65:
28:f9:df:dd:d2:14:d8:e5:f6:0f:f5:77:e5:a7:5b:8a:5a:a3:
b1:69:05:88:99:27:77:51:d9:0f:78:5a:57:f1:9b:5a:73:4e:
77:c2:40:9c:63:1b:b2:9b:bc:cd:40:68:2c:74:e7:51:5c:13:
d1:16:23:0e:16:16:d8:c8:47:70:55:41:c9:7e:c1:e4:ec:3d:
2b:e3:1b:50:86:fa:5f:2f:0d:2a:a9:02:bb:ab:d7:3d:45:0e:
76:d4:81:ee:22:84:90:5e:75:f0:59:43:bf:5b:a9:3e:20:f9:
32:b1:52:e7:c6:2f:dd:0e:3e:94:35:a8:4b:88:fe:cd:e7:e2:
c3:23:21:9a:bd:3f:ce:58:b9:a7:01:44:48:ef:18:c1:47:bf:
c1:e5:56:e3:2a:b2:1e:e4:30:07:13:6c:05:25:d1:8e:5a:fc:
45:4b:24:0c:4c:99:68:0b:22:27:65:05:28:7c:fc:52:d1:63:
b1:e8:51:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org