Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/C6DHMFBm5OPOMVUGCLNEGB3fxek.roa
File: C6DHMFBm5OPOMVUGCLNEGB3fxek.roa (raw, json)
Hash identifier: ViBJhiaBiDKtcKwK8rdz8zfI0Ai0pUCX3vI4+/1dPFQ=
Subject key identifier: 0B:A0:C7:30:50:66:E4:E3:CE:31:55:06:08:B3:44:18:1D:DF:C5:E9
Certificate issuer: /CN=33c342c06aacc359d39439ff58defa8ea1875748
Certificate serial: 01856F0B64948C61705DFA73D167A758158F
Authority key identifier: 33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/C6DHMFBm5OPOMVUGCLNEGB3fxek.roa
Signing time: Sun 01 Jan 2023 20:34:55 +0000
ROA not before: Sun 01 Jan 2023 20:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50753
IP address blocks: 109.236.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:64:94:8c:61:70:5d:fa:73:d1:67:a7:58:15:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33c342c06aacc359d39439ff58defa8ea1875748
Validity
Not Before: Jan 1 20:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ba0c7305066e4e3ce31550608b344181ddfc5e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:39:7f:06:2a:8b:b9:f5:f0:22:05:c9:bd:2f:
40:8a:b4:ca:15:70:53:bf:8a:05:a0:a9:30:1d:72:
20:e3:dd:65:1e:c1:84:6b:77:b5:c3:cc:a0:1f:ac:
50:a2:f4:2d:b6:9a:7c:d6:fb:ed:66:61:00:08:48:
40:d5:d8:29:0a:79:c0:7d:94:85:49:5f:62:1d:e5:
43:12:05:5d:10:db:c2:cd:d6:5c:4c:9a:c1:3f:b9:
bb:ba:4c:10:b8:e4:93:63:b3:18:fa:3c:ac:9a:9a:
c6:38:a5:27:cb:60:58:94:1d:3b:12:c5:44:a5:a5:
2c:31:6e:4c:1f:95:5a:97:64:4c:60:36:0a:ad:39:
a6:f6:24:cf:56:3e:54:e8:57:4c:f2:6b:53:d9:14:
fe:e9:66:c6:3e:45:28:a7:d4:2e:54:a6:fd:7a:c5:
08:54:bb:60:b2:3f:d3:38:cf:6b:1c:c1:e9:88:2a:
b7:6e:94:a7:34:23:da:fe:d1:2a:fd:a2:f8:68:1b:
47:35:7f:09:fb:63:fb:99:65:ea:18:6d:02:24:15:
bc:7d:7f:43:e3:18:d5:9f:96:82:ad:ca:5a:43:ad:
6c:d9:21:a7:70:01:61:bd:99:98:49:c7:30:d7:f7:
4a:1a:25:39:44:45:f8:3c:98:11:69:28:f2:fd:24:
ae:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:A0:C7:30:50:66:E4:E3:CE:31:55:06:08:B3:44:18:1D:DF:C5:E9
X509v3 Authority Key Identifier:
keyid:33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/C6DHMFBm5OPOMVUGCLNEGB3fxek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/M8NCwGqsw1nTlDn_WN76jqGHV0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.236.252.0/24
Signature Algorithm: sha256WithRSAEncryption
53:b9:9f:86:4d:65:d3:93:7e:6f:b1:10:45:40:92:8b:40:c6:
8e:1d:35:93:03:a4:e4:20:44:d9:0c:b6:22:19:07:0e:94:1e:
06:6e:de:37:0e:f8:63:77:30:41:d5:4f:b2:ee:e8:b2:70:53:
cc:21:2a:2b:06:39:bb:79:a5:94:54:86:e9:dc:89:37:40:76:
70:f5:be:ef:cb:38:21:cc:3e:8c:a5:78:86:74:14:20:93:6c:
2a:22:ef:25:19:71:43:8c:3f:eb:cb:b5:2a:41:83:7c:21:24:
8a:56:45:dd:83:8c:56:16:bc:f1:59:7b:f9:b5:c5:c2:17:b1:
dc:70:8a:b4:50:e5:21:5b:6e:24:6a:30:f9:93:b3:3c:d5:bd:
4d:fd:7e:bd:0b:65:f1:0e:b3:26:3b:20:39:2e:dc:67:0c:05:
dc:5e:a3:10:91:7a:6a:01:d5:a1:d0:a3:a6:0f:16:cf:eb:2c:
92:6a:4d:a8:78:0b:46:f4:0b:a9:31:07:e7:1d:67:d8:7e:bc:
80:64:db:0b:5b:f2:11:22:fd:4c:f8:f8:01:89:fc:18:8c:45:
06:d4:5a:c4:7c:26:5a:48:87:3e:45:48:7f:42:8b:82:88:e8:
6f:b9:0e:bb:9a:fb:88:64:d9:34:ab:9e:ce:24:22:1c:b8:b7:
c0:03:96:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:28 2024 by rpki-client on console-ams.rpki-client.org