Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/Cj_iZT-MVBlRZUOtl8ByRi0aJVc.roa
File: Cj_iZT-MVBlRZUOtl8ByRi0aJVc.roa (raw, json)
Hash identifier: LqiIqjClxPMRL8I8eoAzmAGGNsQDGapgtNBHjQ1eAxM=
Subject key identifier: 0A:3F:E2:65:3F:8C:54:19:51:65:43:AD:97:C0:72:46:2D:1A:25:57
Certificate issuer: /CN=01423ad4d629b2f828b79f00ac40388e37b8e252
Certificate serial: 01856FCBC45E787731C78512B0E5B4E44DCD
Authority key identifier: 01:42:3A:D4:D6:29:B2:F8:28:B7:9F:00:AC:40:38:8E:37:B8:E2:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AUI61NYpsvgot58ArEA4jje44lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/Cj_iZT-MVBlRZUOtl8ByRi0aJVc.roa
Signing time: Mon 02 Jan 2023 00:05:03 +0000
ROA not before: Mon 02 Jan 2023 00:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61355
IP address blocks: 185.234.109.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:c4:5e:78:77:31:c7:85:12:b0:e5:b4:e4:4d:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01423ad4d629b2f828b79f00ac40388e37b8e252
Validity
Not Before: Jan 2 00:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a3fe2653f8c5419516543ad97c072462d1a2557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2e:2f:07:54:79:3c:0b:d1:69:b6:ed:fc:3f:
b2:e2:16:31:50:2b:bb:a3:e4:2c:b6:d4:18:c1:5c:
18:42:74:65:bd:d9:8d:40:1e:9b:1f:f6:09:a6:bb:
24:22:e4:b9:17:77:44:bb:14:3d:38:b2:47:99:34:
c0:8d:e0:0a:f9:ef:b7:ff:99:02:03:1e:02:1e:28:
1a:c1:de:45:7a:33:b3:9e:54:c6:09:29:85:ec:8b:
82:f1:65:74:bb:bb:8d:2b:a7:f5:90:11:3f:5f:69:
88:4b:85:e0:4f:34:7f:17:f0:36:13:45:89:5b:e3:
dd:8e:91:bd:3c:f3:7d:62:56:ed:7f:f8:b3:06:7c:
75:20:d2:65:53:29:7f:7a:49:38:69:a3:78:08:7b:
f2:8b:8d:fc:be:7e:0a:98:6b:46:01:a0:21:24:99:
08:33:d7:26:72:9e:76:ee:19:cc:72:8c:df:9a:a4:
c6:5b:6d:84:55:6e:44:00:9a:5e:71:3d:06:20:5e:
3c:6f:85:96:a9:0e:0e:73:2f:ef:e5:d9:2e:fc:e0:
1e:5f:24:4c:da:19:9c:e0:2b:52:c6:2d:e8:f6:6e:
e2:ca:77:11:a5:5f:80:ad:35:9f:dd:9f:ef:11:e5:
b5:7b:51:ae:f6:6d:74:77:9a:0c:c9:9f:03:6f:2f:
1c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:3F:E2:65:3F:8C:54:19:51:65:43:AD:97:C0:72:46:2D:1A:25:57
X509v3 Authority Key Identifier:
keyid:01:42:3A:D4:D6:29:B2:F8:28:B7:9F:00:AC:40:38:8E:37:B8:E2:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AUI61NYpsvgot58ArEA4jje44lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/Cj_iZT-MVBlRZUOtl8ByRi0aJVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.109.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:57:0e:49:fa:ee:b3:e8:b4:eb:1f:b4:03:b6:a1:8d:0c:af:
1c:c8:0a:90:5e:dd:4f:1e:a9:c8:5a:cc:23:83:dd:7a:fd:d7:
aa:91:57:bf:87:48:0f:f9:b6:3e:e0:08:7b:20:1e:42:dd:51:
d7:ce:0e:9d:a4:05:36:06:5f:96:6e:16:ef:62:fa:22:9f:03:
4c:25:ab:54:7f:10:d0:f0:05:61:33:fd:3e:22:49:cd:f2:19:
5b:ae:fa:90:35:31:a1:88:fe:99:65:de:7d:41:cf:75:09:8f:
b8:e8:e9:d9:8f:3f:be:68:36:47:82:eb:ef:ab:d3:1a:fb:11:
29:ab:16:cc:35:f0:bb:22:0c:05:f4:3f:cf:72:da:43:cc:6e:
60:84:b4:fa:1b:14:b6:15:62:82:8f:43:ce:3d:d4:fd:f1:fa:
9c:d0:12:65:ed:4c:cf:46:aa:28:9b:c4:74:b7:73:06:b1:ab:
c5:0d:39:63:c0:84:22:92:ed:26:1f:96:23:be:10:7a:99:50:
ea:3a:14:29:dd:e6:64:ce:42:a3:a3:a6:61:4d:22:d5:d1:2d:
6c:02:73:03:b4:ee:80:d6:07:16:93:79:e8:7a:d4:9e:8d:eb:
8f:71:ba:61:7e:8b:23:9c:96:60:ff:21:19:90:c0:9a:78:4d:
0d:88:c5:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:49:41 2024 by rpki-client on console-fra.rpki-client.org