Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/SWjfDYq-65g3KcGHlFahdAuC3Y8.roa
File: SWjfDYq-65g3KcGHlFahdAuC3Y8.roa (raw, json)
Hash identifier: p7fhMLDE5BiJoySXnaH4yroo3UgAJDJ0T7cQF8rGNrE=
Subject key identifier: 49:68:DF:0D:8A:BE:EB:98:37:29:C1:87:94:56:A1:74:0B:82:DD:8F
Certificate issuer: /CN=33c342c06aacc359d39439ff58defa8ea1875748
Certificate serial: 01856F0B65F8B9B8A5BE3B7C16522FDBCF64
Authority key identifier: 33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/SWjfDYq-65g3KcGHlFahdAuC3Y8.roa
Signing time: Sun 01 Jan 2023 20:34:56 +0000
ROA not before: Sun 01 Jan 2023 20:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60513
IP address blocks: 109.236.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:65:f8:b9:b8:a5:be:3b:7c:16:52:2f:db:cf:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33c342c06aacc359d39439ff58defa8ea1875748
Validity
Not Before: Jan 1 20:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4968df0d8abeeb983729c1879456a1740b82dd8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:53:a6:6c:c8:76:35:49:55:c7:d9:88:94:e1:
5f:cd:4c:da:85:9e:e1:8a:11:a3:fa:30:c9:92:5e:
b7:cd:ce:ad:6d:30:e2:b0:0a:3b:c4:42:49:6c:f4:
2c:15:62:a5:92:4a:24:a3:49:f1:a6:ed:13:b0:5f:
07:a9:72:61:b8:a4:b3:33:9a:2e:5f:3c:65:ec:f5:
25:69:7f:b9:03:a6:2a:19:12:ca:68:cf:ab:b8:73:
89:45:ab:5f:57:c2:b1:a6:fb:db:6a:24:66:05:82:
c8:f3:de:69:ec:33:f7:d5:76:03:41:c1:ca:e5:e6:
65:16:47:fd:fb:f2:0b:ac:56:f0:78:56:9a:0a:41:
b3:2a:87:37:01:ee:20:d3:3e:dc:30:0b:be:07:70:
8f:d5:c2:43:09:8d:34:38:0b:78:b3:35:7d:26:6c:
fb:45:26:2d:e8:a3:14:a6:4e:2b:3b:b5:ba:0c:f8:
93:f4:73:2b:94:b2:2e:64:9d:63:95:03:59:f8:de:
02:19:be:27:29:9b:5c:b8:65:ef:3c:d1:cf:22:a6:
0c:b8:73:ab:41:82:b3:3f:60:6b:f3:de:be:24:77:
9e:1a:a3:c6:26:2d:fc:06:1a:f0:d3:0e:de:68:48:
7f:01:6c:8d:73:19:eb:05:37:58:d1:49:cc:00:a1:
ce:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:68:DF:0D:8A:BE:EB:98:37:29:C1:87:94:56:A1:74:0B:82:DD:8F
X509v3 Authority Key Identifier:
keyid:33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/SWjfDYq-65g3KcGHlFahdAuC3Y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/M8NCwGqsw1nTlDn_WN76jqGHV0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.236.253.0/24
Signature Algorithm: sha256WithRSAEncryption
72:81:78:98:c1:18:61:5f:20:5d:8c:02:2f:d5:f9:f8:28:67:
89:e1:06:4c:d0:be:8f:75:6d:96:79:2d:7c:78:76:8a:3e:70:
42:1f:45:6e:84:f1:c5:73:1e:d2:df:76:d4:41:e2:28:eb:53:
ce:65:0d:da:93:2d:1f:50:c5:7c:86:a9:d5:43:bc:06:dc:ba:
ed:ee:e8:29:1e:1e:26:dc:e2:be:b0:b9:3a:88:3a:95:13:44:
4a:eb:60:cb:e4:ee:e0:af:62:3c:22:09:1a:04:be:25:4d:26:
36:29:20:5f:01:6b:be:d0:a0:5a:50:ad:3a:2c:23:59:48:c8:
25:5f:b6:22:14:f4:08:ec:28:40:9a:cb:3a:eb:b0:54:3d:fc:
fb:d0:f2:06:63:80:a9:a0:f6:a0:21:86:77:0d:36:d5:2a:aa:
88:b2:80:19:ce:53:e0:4d:fb:a3:1c:28:99:e3:86:5d:fe:92:
4c:6a:af:90:88:c3:44:54:ff:ea:3a:1f:8d:c6:82:89:dd:c9:
3b:08:95:0a:b6:5a:78:e5:e5:fb:cf:3f:fd:c0:fc:7d:2d:a5:
9c:f9:1e:e2:e6:9f:8f:93:8c:2b:f3:60:b5:8a:9c:82:ef:b7:
36:7d:88:44:2b:54:51:98:ad:97:53:8d:2f:49:b1:97:cc:8b:
aa:29:a1:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:54 2024 by rpki-client on console-fra.rpki-client.org