Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/1a24f6-c5a0-40bf-abb6-8da5373a6a6d/1/CtHtZc4O5TsuJPi-WB8j_5XJvjw.roa
File: CtHtZc4O5TsuJPi-WB8j_5XJvjw.roa (raw, json)
Hash identifier: Sco924Capp8AOd1Ec2QzprTbGrzpByrlMN8KKgiGtlU=
Subject key identifier: 0A:D1:ED:65:CE:0E:E5:3B:2E:24:F8:BE:58:1F:23:FF:95:C9:BE:3C
Certificate issuer: /CN=0331b87e91ea271046d31995e7a6c038bf1b147c
Certificate serial: 018572BA36E11D28A48273FA9EC06A788892
Authority key identifier: 03:31:B8:7E:91:EA:27:10:46:D3:19:95:E7:A6:C0:38:BF:1B:14:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AzG4fpHqJxBG0xmV56bAOL8bFHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/1a24f6-c5a0-40bf-abb6-8da5373a6a6d/1/CtHtZc4O5TsuJPi-WB8j_5XJvjw.roa
Signing time: Mon 02 Jan 2023 13:44:44 +0000
ROA not before: Mon 02 Jan 2023 13:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15830
IP address blocks: 109.234.72.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:36:e1:1d:28:a4:82:73:fa:9e:c0:6a:78:88:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0331b87e91ea271046d31995e7a6c038bf1b147c
Validity
Not Before: Jan 2 13:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ad1ed65ce0ee53b2e24f8be581f23ff95c9be3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bf:a6:fc:1c:03:44:f8:13:db:39:9b:9a:9a:
a4:57:6e:2a:39:a9:9f:e2:0d:fb:65:5c:ef:a2:86:
e1:a9:b2:bd:b5:60:ef:3c:88:d1:3a:57:22:63:2b:
d0:27:ef:50:47:ba:79:5e:07:e2:76:d8:3b:de:72:
06:d8:a9:72:b4:c0:6e:77:98:ef:e8:6e:c1:29:7d:
c2:6c:b3:8f:af:1c:d8:5f:54:76:3c:7e:c7:ac:61:
2a:36:0d:bd:91:cc:2a:11:77:a8:65:2e:0d:86:f1:
af:3f:ee:eb:e9:40:41:14:cf:62:7b:ab:e5:86:7d:
92:19:ed:bc:34:e5:87:6d:36:46:45:b9:98:3d:26:
69:9d:ed:b7:94:d5:79:20:35:ac:fd:67:fc:02:9c:
fe:d7:f6:af:90:57:87:e1:10:2f:9c:cd:65:1e:59:
30:a6:76:85:35:2f:aa:aa:23:dd:91:6c:a2:82:af:
87:46:1f:d3:81:bb:7e:28:15:4c:13:1f:15:6e:9b:
c4:13:ea:20:72:d7:64:77:b7:c9:51:15:e4:e5:40:
32:e3:57:86:08:0f:34:60:ba:07:40:79:eb:96:fd:
ff:b5:3e:fc:95:d1:91:b0:e6:d8:a7:58:d3:e9:8c:
c0:ba:34:d9:e3:b8:51:ec:df:50:a6:1e:44:cc:4e:
70:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:D1:ED:65:CE:0E:E5:3B:2E:24:F8:BE:58:1F:23:FF:95:C9:BE:3C
X509v3 Authority Key Identifier:
keyid:03:31:B8:7E:91:EA:27:10:46:D3:19:95:E7:A6:C0:38:BF:1B:14:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AzG4fpHqJxBG0xmV56bAOL8bFHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/1a24f6-c5a0-40bf-abb6-8da5373a6a6d/1/CtHtZc4O5TsuJPi-WB8j_5XJvjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/1a24f6-c5a0-40bf-abb6-8da5373a6a6d/1/AzG4fpHqJxBG0xmV56bAOL8bFHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.72.0/24
Signature Algorithm: sha256WithRSAEncryption
32:2c:7b:1f:6b:23:9f:22:4a:22:59:56:ef:2e:5e:eb:ec:ef:
75:5c:56:45:37:e5:ba:03:13:0d:77:40:c6:8f:b6:67:93:6a:
97:35:5d:5a:52:a4:ec:8a:2e:2c:63:d1:18:76:1e:8c:43:b8:
d2:7f:b3:43:e2:d7:28:b9:d3:22:0f:fd:c4:1a:ec:38:05:40:
21:a3:eb:59:04:d7:88:f9:ad:c7:05:dc:a8:fc:37:94:05:64:
df:33:c4:9d:f3:d5:f3:1c:7b:18:73:4e:00:d5:92:9a:fa:2a:
b1:d2:94:dc:d7:56:81:9e:67:ad:60:c4:d3:99:df:0f:e8:d5:
30:26:06:3b:90:bc:ee:f4:88:8c:8f:a8:63:1a:db:c4:0a:22:
d0:e9:b3:e0:03:98:fd:5e:09:77:f2:a6:df:f1:13:77:c2:1f:
8d:0e:a3:2d:cd:51:29:c2:d5:7a:55:82:2d:df:83:19:41:c1:
be:44:7f:5e:fa:7c:20:91:b9:05:81:cf:0e:13:69:37:c1:71:
8a:3f:89:7e:7d:b6:28:76:a2:92:8a:27:61:67:8e:4c:37:68:
a1:8e:9b:97:17:4a:bf:63:bf:5c:62:58:a5:cb:31:ca:8a:01:
e7:66:3b:be:0a:26:51:f1:fd:fa:fe:c3:db:8c:d5:0b:ba:74:
59:06:3e:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:19:30 2024 by rpki-client on console-ams.rpki-client.org