Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/4e7b5c-2906-478a-8ef0-d29701487536/1/SI0YOGiXasY4xurVPYTqO-UL0y0.roa
File: SI0YOGiXasY4xurVPYTqO-UL0y0.roa (raw, json)
Hash identifier: 9SVXp278hEjrU71cpNe5h6xKLmpxGe/e6jAM7iud5qY=
Subject key identifier: 48:8D:18:38:68:97:6A:C6:38:C6:EA:D5:3D:84:EA:3B:E5:0B:D3:2D
Certificate issuer: /CN=5157c87d111c8050fd5c9ac2b06be62323675033
Certificate serial: 018571A78DCED7CC2DF4C3ADDE363D7AFC8D
Authority key identifier: 51:57:C8:7D:11:1C:80:50:FD:5C:9A:C2:B0:6B:E6:23:23:67:50:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UVfIfREcgFD9XJrCsGvmIyNnUDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/4e7b5c-2906-478a-8ef0-d29701487536/1/SI0YOGiXasY4xurVPYTqO-UL0y0.roa
Signing time: Mon 02 Jan 2023 08:44:44 +0000
ROA not before: Mon 02 Jan 2023 08:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41327
IP address blocks: 109.233.128.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 31 Jan 2023 18:37:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:8d:ce:d7:cc:2d:f4:c3:ad:de:36:3d:7a:fc:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5157c87d111c8050fd5c9ac2b06be62323675033
Validity
Not Before: Jan 2 08:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=488d183868976ac638c6ead53d84ea3be50bd32d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:9b:eb:c8:2a:9c:fb:54:46:57:c7:05:98:aa:
20:56:f7:23:68:ad:9f:2d:e9:79:ee:82:9f:64:d6:
56:ff:da:17:11:b0:4b:f2:5e:83:4f:3a:21:70:ed:
90:07:88:a5:8c:21:02:b6:cb:bd:69:70:e1:87:43:
56:90:76:de:b0:a6:7e:17:24:d1:44:b6:76:d4:bc:
b8:e2:d7:b0:41:9c:0d:f0:86:10:88:49:13:99:3a:
09:86:b2:8f:58:fd:d8:39:31:61:c8:47:c0:f9:cb:
c7:89:28:aa:e6:bc:e7:f5:f0:b6:7f:b5:0f:9b:44:
0d:e9:41:5a:55:bd:06:24:d0:b9:3b:d3:5f:2d:b6:
a2:14:ec:2c:fb:66:4f:28:0e:40:27:01:55:95:90:
ae:4f:3a:bb:f6:2e:09:bd:a7:ee:02:ec:59:92:3a:
9f:11:27:e6:b1:60:a0:3d:d4:9e:99:d4:9f:e5:24:
01:0b:27:67:f9:11:4d:09:d3:2e:05:4a:f3:6d:be:
10:14:ec:74:31:9b:ac:88:c5:83:b7:ac:e2:6a:06:
74:91:44:64:41:e6:7d:c6:b2:ec:fd:0e:de:8d:56:
5d:b6:0a:e8:1f:34:89:b0:8e:f7:e0:00:1a:4b:5e:
3d:89:5a:99:4b:05:89:d7:f3:72:2d:40:07:24:79:
1f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:8D:18:38:68:97:6A:C6:38:C6:EA:D5:3D:84:EA:3B:E5:0B:D3:2D
X509v3 Authority Key Identifier:
keyid:51:57:C8:7D:11:1C:80:50:FD:5C:9A:C2:B0:6B:E6:23:23:67:50:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UVfIfREcgFD9XJrCsGvmIyNnUDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/4e7b5c-2906-478a-8ef0-d29701487536/1/SI0YOGiXasY4xurVPYTqO-UL0y0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/4e7b5c-2906-478a-8ef0-d29701487536/1/UVfIfREcgFD9XJrCsGvmIyNnUDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.233.128.0/21
Signature Algorithm: sha256WithRSAEncryption
1f:7b:8a:65:99:93:21:29:5c:6b:1d:0e:24:8e:e3:b1:c8:02:
21:97:f9:a9:58:3b:5d:7f:0d:87:2c:69:45:29:dd:7b:55:93:
d0:cc:d8:3f:ca:b4:9e:29:45:ca:ee:be:af:80:23:f7:55:45:
cb:34:69:e9:0d:aa:af:ab:4c:07:b5:64:58:1e:5a:72:d2:3a:
10:44:5c:1d:88:52:b7:f8:9a:01:07:64:ce:22:6b:92:50:d8:
54:af:f8:26:5c:6e:5b:1b:f3:19:7d:75:42:89:c7:09:26:d1:
7b:a1:3a:13:f2:72:6a:0d:2d:72:f4:d6:46:49:66:b7:0d:96:
ee:17:bf:7e:bb:b6:c3:53:d5:1a:59:0e:48:81:c5:50:a3:68:
75:99:35:b9:92:d1:b8:90:ca:17:fc:b9:a2:98:86:35:15:3f:
65:05:4f:85:41:58:31:13:9b:9c:bd:b7:bd:c1:6c:58:cb:de:
c3:4b:b8:18:b9:d8:1c:a5:53:1d:ba:db:26:c1:44:d0:0c:70:
f3:f2:7a:28:3b:81:10:b8:df:05:3f:0b:b6:dd:e6:42:93:6a:
63:e6:7d:e9:15:60:85:fb:59:9f:b3:38:e6:e1:ca:12:cb:af:
8c:ca:3d:cc:79:cd:20:9f:8b:43:af:37:85:32:0e:a1:b0:c4:
10:e1:43:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:36 2024 by rpki-client on console-fra.rpki-client.org