Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/7By6i34RK0oRQeFX-otY_TkoZQQ.roa
File: 7By6i34RK0oRQeFX-otY_TkoZQQ.roa (raw, json)
Hash identifier: NN8WAj8mn3X6aCn67y1WqOxsHgJoxsZmdj+7xikASGA=
Subject key identifier: EC:1C:BA:8B:7E:11:2B:4A:11:41:E1:57:FA:8B:58:FD:39:28:65:04
Certificate issuer: /CN=33c342c06aacc359d39439ff58defa8ea1875748
Certificate serial: 01856F0B67596989F2405E236B65B829256E
Authority key identifier: 33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/7By6i34RK0oRQeFX-otY_TkoZQQ.roa
Signing time: Sun 01 Jan 2023 20:34:56 +0000
ROA not before: Sun 01 Jan 2023 20:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198960
IP address blocks: 109.236.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:67:59:69:89:f2:40:5e:23:6b:65:b8:29:25:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33c342c06aacc359d39439ff58defa8ea1875748
Validity
Not Before: Jan 1 20:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec1cba8b7e112b4a1141e157fa8b58fd39286504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f2:2b:13:ba:63:c2:58:68:c5:ca:c9:c8:b7:
58:98:5f:d2:c5:5d:8a:0a:e0:59:31:f0:eb:a0:96:
79:48:8d:0e:cb:34:39:1b:04:c2:50:c6:a6:26:1b:
c2:f0:c5:a6:d7:76:e5:0c:9f:d0:c7:5e:b3:a4:6a:
f5:a2:c9:3f:80:9f:a1:77:90:87:01:d4:64:f0:1e:
c5:9d:09:24:54:5a:71:3a:f9:70:aa:b5:2c:d8:87:
fc:04:b1:b3:17:7d:43:86:cb:e4:3e:b3:d7:5a:1c:
e7:81:04:6b:1c:91:c6:3c:09:4d:00:1f:25:13:23:
ef:1f:86:2e:2e:de:0d:05:50:40:83:a0:8f:10:23:
55:e6:65:20:f4:e7:c7:ca:72:61:a6:79:e6:e2:48:
c6:0c:45:0b:5e:6e:07:29:24:01:ab:a3:d1:7c:fa:
51:99:86:0b:40:16:ee:cb:d8:89:bb:37:92:8d:17:
48:ae:a1:1f:fa:94:38:31:47:d5:e8:9a:5c:94:73:
a7:80:09:bd:db:dc:5b:cb:6b:97:5e:26:3d:ef:6f:
6d:e2:dd:de:5c:a3:c9:fb:c6:7d:ea:56:b3:cf:86:
9d:6f:94:7d:e3:5d:bf:b2:01:51:b6:58:ee:c8:fc:
d8:36:a7:6d:b5:20:1b:43:82:07:72:36:cf:90:50:
95:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:1C:BA:8B:7E:11:2B:4A:11:41:E1:57:FA:8B:58:FD:39:28:65:04
X509v3 Authority Key Identifier:
keyid:33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/7By6i34RK0oRQeFX-otY_TkoZQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/M8NCwGqsw1nTlDn_WN76jqGHV0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.236.246.0/24
Signature Algorithm: sha256WithRSAEncryption
26:ae:b7:17:a4:2b:f5:f6:ce:60:f7:90:86:2e:b5:3d:29:0b:
01:c7:8c:64:11:16:5c:18:20:7f:02:3a:a3:53:b6:54:6a:2e:
79:11:17:ae:67:c5:6d:4b:ba:7a:04:3e:27:b0:62:00:67:bd:
e2:72:64:54:01:49:8f:f4:63:f9:63:1a:65:c4:3c:73:9f:0c:
0f:a6:bb:92:7e:60:49:ba:0d:54:0f:05:6b:e8:45:08:a4:00:
c5:08:75:0d:70:5c:50:1a:ae:10:de:7a:a2:e2:52:f4:6e:b3:
91:2a:f2:d9:f4:15:52:4b:65:83:2d:59:55:82:4e:0f:43:8c:
e0:39:51:16:5b:8a:14:97:0e:a8:3d:15:b5:70:64:72:66:1b:
c5:64:05:0b:16:8d:b4:70:07:59:c1:2e:24:48:1c:a1:24:1b:
06:26:39:b2:c4:99:c6:46:0e:76:67:54:65:94:89:d1:74:15:
a7:de:ca:a4:22:b5:d9:4f:64:78:98:77:3d:34:c0:26:da:d9:
20:e3:65:01:f6:c2:b2:be:8b:91:ca:4a:98:a9:ed:ca:20:c0:
ff:8c:93:4b:5c:30:e3:7d:8f:5d:43:65:1d:1e:96:21:47:bc:
23:9b:b2:9b:bb:0f:14:cb:95:9a:8e:d6:29:9c:35:ea:94:3b:
aa:22:d8:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:54 2024 by rpki-client on console-fra.rpki-client.org