Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/an0T8l8bg_A-yobH4yJlAmBCaQE.roa
File: an0T8l8bg_A-yobH4yJlAmBCaQE.roa (raw, json)
Hash identifier: 6trohzU1uQ/+TqhoyVt23+LH5hHJakHw5ZIhQRKdEFw=
Subject key identifier: 6A:7D:13:F2:5F:1B:83:F0:3E:CA:86:C7:E3:22:65:02:60:42:69:01
Certificate issuer: /CN=8ceb23e2c5d9f2c734488904505835ef2809fb3b
Certificate serial: 01856C0A61BB9F1F3A2FC1A22F002EEFE373
Authority key identifier: 8C:EB:23:E2:C5:D9:F2:C7:34:48:89:04:50:58:35:EF:28:09:FB:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jOsj4sXZ8sc0SIkEUFg17ygJ-zs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/an0T8l8bg_A-yobH4yJlAmBCaQE.roa
Signing time: Sun 01 Jan 2023 06:34:57 +0000
ROA not before: Sun 01 Jan 2023 06:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49813
IP address blocks: 109.105.128.0/20 maxlen: 20
109.105.137.0/24 maxlen: 24
109.105.139.0/24 maxlen: 24
109.105.138.0/24 maxlen: 24
109.105.144.0/23 maxlen: 23
109.105.144.0/21 maxlen: 21
109.105.146.0/24 maxlen: 24
109.105.147.0/24 maxlen: 24
5.63.132.0/24 maxlen: 24
5.63.128.0/21 maxlen: 21
Validation: Failed, certificate revoked on Thu 06 Jul 2023 07:03:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:61:bb:9f:1f:3a:2f:c1:a2:2f:00:2e:ef:e3:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ceb23e2c5d9f2c734488904505835ef2809fb3b
Validity
Not Before: Jan 1 06:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a7d13f25f1b83f03eca86c7e322650260426901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:56:5b:0d:05:4a:ee:74:82:91:1a:c2:3c:ed:
0f:50:08:5f:f9:0a:f6:3f:79:ec:73:bb:bc:98:8e:
cf:81:aa:fc:5d:c7:8f:f7:82:6e:ea:cd:b2:c0:f2:
b3:b6:bd:7d:1e:87:e8:f7:b2:d7:06:38:51:5f:2c:
4c:2f:d6:bc:99:da:07:e2:15:06:91:db:b1:30:64:
01:b5:67:b9:68:a7:ce:9a:65:70:26:d7:eb:ee:7a:
c7:b5:df:f4:f3:15:85:71:d4:bf:71:52:6e:7a:f9:
70:25:a7:d5:ad:b4:c9:11:67:ad:e7:26:aa:6b:d4:
62:d6:82:2a:e0:aa:fd:0d:4c:91:15:84:d0:7e:6a:
94:f0:f5:6b:1d:22:d1:23:88:ed:e5:86:60:59:0a:
5d:b9:0b:f8:44:4e:d5:ec:b8:71:57:dc:8b:92:61:
de:84:dd:e7:64:ef:aa:82:d8:71:16:92:41:42:d6:
0d:f6:9e:66:5a:ad:64:d9:44:4a:2a:b5:26:3e:a2:
d4:df:bf:c8:70:87:b6:a8:fb:4d:dc:a1:9e:f1:70:
fd:2b:65:ee:23:c0:8d:6f:ec:ce:77:a9:ac:2f:66:
8a:07:bd:5f:29:ca:80:8c:a7:e5:56:28:0c:75:95:
a2:ea:09:06:45:7f:ee:78:39:45:27:49:ee:64:59:
d2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:7D:13:F2:5F:1B:83:F0:3E:CA:86:C7:E3:22:65:02:60:42:69:01
X509v3 Authority Key Identifier:
keyid:8C:EB:23:E2:C5:D9:F2:C7:34:48:89:04:50:58:35:EF:28:09:FB:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jOsj4sXZ8sc0SIkEUFg17ygJ-zs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/an0T8l8bg_A-yobH4yJlAmBCaQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/jOsj4sXZ8sc0SIkEUFg17ygJ-zs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.63.128.0/21
109.105.128.0-109.105.151.255
Signature Algorithm: sha256WithRSAEncryption
1e:ce:6a:a9:e3:b7:c6:2a:33:25:4f:66:d4:4e:d2:08:6f:7c:
af:c2:57:af:16:76:80:2b:a8:6d:90:9a:4f:db:66:c1:7c:a1:
10:55:fd:9c:35:0d:35:6c:0d:96:55:ce:8b:d7:0a:51:3e:64:
a4:b8:89:aa:8b:7e:b4:6e:36:89:e9:6e:a3:3e:11:98:2c:dd:
d3:2b:c2:6c:74:fd:6b:69:7f:27:a4:7c:3c:e0:ec:7c:08:d6:
cb:07:f0:0c:26:af:7e:15:2e:7e:1b:8b:de:d5:49:c4:ac:0a:
d6:45:36:7f:b1:ff:d6:2a:26:0d:67:25:e7:98:4a:85:79:fa:
af:18:bf:f4:ba:a9:bb:91:2d:f6:a3:d0:12:ea:1f:7e:e7:95:
27:a3:52:9f:6e:ca:ba:2f:70:e9:87:b3:e2:b7:72:3d:72:0d:
a4:68:78:be:33:1a:f3:81:80:c2:54:0b:4c:d7:31:99:03:51:
fb:d7:c5:a4:4a:a9:cd:3b:a9:cb:77:06:b7:7c:3f:da:1a:0b:
5f:14:d5:e8:c1:2b:03:ff:82:4e:cb:6f:fc:ec:77:78:40:b3:
ca:2a:10:8c:48:dd:5a:87:13:d1:c1:1f:e9:09:92:f9:9e:31:
c9:e6:37:fc:ca:0f:39:08:2d:1c:8d:91:ac:ae:78:30:6d:7b:
a2:e2:69:bb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org