Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/S_cxw1BCB-rJu8cr4Y59r7CvqAE.roa
File: S_cxw1BCB-rJu8cr4Y59r7CvqAE.roa (raw, json)
Hash identifier: 5lGvbIjx8oVdw/ms1PwGrh+kvvx0rI7Sv72cRu04zHQ=
Subject key identifier: 4B:F7:31:C3:50:42:07:EA:C9:BB:C7:2B:E1:8E:7D:AF:B0:AF:A8:01
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019029C772BA5CB4C57993D76DB1149B3F16
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/S_cxw1BCB-rJu8cr4Y59r7CvqAE.roa
Signing time: Tue 18 Jun 2024 05:17:35 +0000
ROA not before: Tue 18 Jun 2024 05:17:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 11938
IP address blocks: 109.206.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jul 2024 07:36:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:29:c7:72:ba:5c:b4:c5:79:93:d7:6d:b1:14:9b:3f:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 18 05:17:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4bf731c3504207eac9bbc72be18e7dafb0afa801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ad:e5:ce:ab:3b:bd:62:1c:80:c7:39:ba:78:
f9:8a:ea:de:2e:c7:f7:1f:74:85:52:ab:2f:10:d2:
39:f1:8f:01:27:45:9b:6b:89:97:c7:2d:a8:da:a6:
a8:1e:e8:81:9d:ef:bd:57:99:9f:fe:f4:ba:53:c6:
a7:50:7e:73:37:74:2e:70:1a:35:22:41:77:ee:7d:
9f:a9:46:aa:06:25:2a:7e:cb:e3:91:53:af:9c:ac:
f5:b3:47:eb:0c:50:4c:3b:b6:09:73:84:91:b0:5b:
e1:8b:02:8f:25:74:2d:ce:4e:ab:68:3e:e4:be:b2:
9c:43:67:59:2d:1f:39:dc:2f:0b:96:72:5f:85:84:
e0:68:41:e0:4a:e6:cd:74:46:95:26:0b:53:37:9f:
31:7e:ca:7f:2d:1d:b1:fc:25:44:7a:cd:e5:cd:b2:
ef:04:1c:47:48:7b:98:74:16:b7:1a:20:89:23:1e:
99:8b:95:5d:07:30:e7:6a:f7:58:f4:4b:e8:1d:e5:
8a:42:3b:a2:07:71:71:32:cc:56:13:6b:d2:af:f9:
4a:4c:d4:09:97:ba:77:c7:26:7b:66:e5:b8:b0:1e:
18:14:bc:c9:06:58:e1:32:67:65:03:61:e1:86:42:
2a:2c:bc:6c:53:c5:ae:a2:1f:b9:74:32:7b:5d:75:
37:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:F7:31:C3:50:42:07:EA:C9:BB:C7:2B:E1:8E:7D:AF:B0:AF:A8:01
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/S_cxw1BCB-rJu8cr4Y59r7CvqAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.206.237.0/24
Signature Algorithm: sha256WithRSAEncryption
23:b7:15:11:7e:44:d9:2c:f1:fc:2c:49:29:d7:7c:e8:54:ea:
cc:81:51:0f:b0:76:22:5f:75:40:79:d3:a7:84:88:f5:4a:17:
48:2d:bf:54:b0:ed:63:ee:f0:2d:12:8f:d0:aa:d4:5f:e1:a8:
50:02:50:49:53:21:ea:22:a9:a5:3f:56:15:34:77:1e:e1:60:
ce:e8:64:26:81:4a:7c:f4:06:bc:b8:e6:3b:c7:05:f0:26:d8:
ac:f0:a5:bf:c3:01:14:2c:cf:62:91:30:45:a8:3c:5c:af:8d:
b5:da:b8:af:a4:a6:0e:16:8d:c8:ce:fe:fc:6d:67:29:86:a9:
bf:64:03:3d:8f:0d:af:0f:6b:6b:e0:c7:c7:20:b6:3d:fc:a1:
d6:05:52:90:35:7a:5b:71:6a:eb:05:25:32:fd:2e:39:df:1e:
7c:32:d1:4b:41:c5:25:b0:f3:b5:f5:3f:7d:9c:90:d3:e1:8b:
98:94:63:2b:66:21:3b:a9:b5:15:5a:ed:02:66:37:b3:b6:b4:
f9:19:08:17:0a:95:d0:db:84:57:f4:c9:2e:b2:10:e5:a4:bd:
e9:e6:9e:f1:90:4a:8d:c8:00:b2:67:32:c1:c8:86:63:dc:d3:
20:e2:51:e0:28:79:ba:65:84:06:fb:1c:85:f6:60:cb:8b:7e:
fd:67:ca:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 29 10:02:42 2024 by rpki-client on console-fra.rpki-client.org