Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/GoNt2FYBSTvEyqk6fzI7wOxkx2I.roa
File: GoNt2FYBSTvEyqk6fzI7wOxkx2I.roa (raw, json)
Hash identifier: giQzReysjfOxGmqOP4UHSssgxspk6Jxdiu1ZZV1VUzA=
Subject key identifier: 1A:83:6D:D8:56:01:49:3B:C4:CA:A9:3A:7F:32:3B:C0:EC:64:C7:62
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018A1DB86F1AFA7C4A79C8AFF067CB7521AF
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/GoNt2FYBSTvEyqk6fzI7wOxkx2I.roa
Signing time: Tue 22 Aug 2023 14:49:00 +0000
ROA not before: Tue 22 Aug 2023 14:49:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 109.206.236.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1d:b8:6f:1a:fa:7c:4a:79:c8:af:f0:67:cb:75:21:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 22 14:49:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a836dd85601493bc4caa93a7f323bc0ec64c762
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:78:54:fa:cb:a9:c2:d5:26:e8:d4:d1:28:f9:
09:f2:02:51:80:ed:cf:d6:ae:91:8d:aa:8b:a4:e1:
8b:0e:1f:c4:e0:dc:30:22:3b:00:74:b6:f2:bf:ae:
7a:aa:e4:a7:32:e5:db:e1:af:59:ce:87:ab:19:66:
2f:5c:2c:09:f2:f2:71:8e:e6:2f:b6:dc:24:25:94:
b9:f3:d4:b9:1c:ef:ac:ad:c6:da:0e:5c:8a:3b:66:
08:67:9b:0d:49:e8:db:f3:8e:a1:86:c1:aa:a3:a1:
31:66:1f:dd:ae:bb:99:f1:cf:0a:27:5f:1a:87:ef:
ba:13:83:ac:f1:cd:6b:9c:72:c4:15:a0:ac:03:7e:
e8:2c:25:66:fb:49:4e:ba:61:b2:71:0d:66:bb:9c:
f5:09:66:4a:59:19:cc:43:12:89:ce:d9:1a:5e:dd:
0c:5a:da:eb:56:05:85:37:af:b9:ca:b4:04:08:ca:
af:02:c6:90:a8:1e:f7:cc:6e:09:e2:ab:bf:0e:12:
31:57:ca:4c:d0:b3:c8:7e:c9:e2:ef:a0:4e:e5:6b:
1b:59:6e:5f:ab:3c:ea:74:c5:84:9f:17:a1:31:06:
11:d5:5d:78:03:04:c2:e1:f1:6e:d0:ab:8b:fd:a6:
e9:4c:fd:0a:1e:b9:98:78:fe:2a:6f:ab:c3:86:d9:
9f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:83:6D:D8:56:01:49:3B:C4:CA:A9:3A:7F:32:3B:C0:EC:64:C7:62
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/GoNt2FYBSTvEyqk6fzI7wOxkx2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.206.236.0/24
Signature Algorithm: sha256WithRSAEncryption
36:2b:c7:3f:5f:39:cc:b6:0b:d0:b3:78:35:ae:22:7a:fd:7a:
82:ec:4d:c1:76:ef:42:72:09:16:1d:a0:1d:c2:de:a4:aa:ba:
3b:97:90:0d:91:41:24:99:e2:08:80:62:63:6d:c0:bc:33:89:
3f:46:a1:30:45:78:e7:35:66:17:2a:7c:cf:8b:26:1e:62:e3:
42:c6:87:8d:9b:94:31:d1:2d:b1:47:b5:b3:3c:5e:6a:72:8d:
f4:a9:a5:84:36:b0:33:59:4b:47:13:67:52:f5:72:38:65:dc:
85:65:a7:04:a6:ff:00:60:20:5a:ad:b7:4b:68:49:de:41:ac:
7e:c7:dc:a1:df:b2:83:bc:f1:88:85:60:f1:84:b7:0b:ca:18:
07:c1:0a:a7:16:f9:cc:b4:f0:d5:63:f4:25:3d:7b:ac:d5:63:
95:01:fe:c5:60:70:87:43:9f:3f:d5:94:fe:5a:68:04:47:db:
2c:05:dc:f4:3e:dd:f1:99:d7:6e:5f:2f:42:e5:76:db:e8:95:
d7:73:27:00:8b:dd:23:1c:58:91:f9:24:8d:50:a3:77:f5:61:
9f:b5:7c:d0:0b:e2:8b:fe:e5:db:13:40:6a:5c:a1:95:dc:0e:
c3:bc:52:ed:55:1e:5e:63:70:4d:d1:15:f7:2c:1e:67:5f:26:
8a:d2:9a:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 23 07:07:27 2023 by rpki-client on console-ams.rpki-client.org