Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/6670f9-418e-4275-8000-a29eb139e79d/1/R35WJmnmRjP_yHf_3VISBKparf4.roa
File: R35WJmnmRjP_yHf_3VISBKparf4.roa (raw, json)
Hash identifier: qivEEgq61DQc9PCQewgxz7hZZ+evpR1yUiUGarCYZFE=
Subject key identifier: 47:7E:56:26:69:E6:46:33:FF:C8:77:FF:DD:52:12:04:AA:5A:AD:FE
Certificate issuer: /CN=24cacceee35ff87cd678ef6a92262cefce8492df
Certificate serial: 01856C4A57E193FD459E3D5FBA4121199D4D
Authority key identifier: 24:CA:CC:EE:E3:5F:F8:7C:D6:78:EF:6A:92:26:2C:EF:CE:84:92:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JMrM7uNf-HzWeO9qkiYs786Ekt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/6670f9-418e-4275-8000-a29eb139e79d/1/R35WJmnmRjP_yHf_3VISBKparf4.roa
Signing time: Sun 01 Jan 2023 07:44:49 +0000
ROA not before: Sun 01 Jan 2023 07:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51554
IP address blocks: 109.72.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:4a:57:e1:93:fd:45:9e:3d:5f:ba:41:21:19:9d:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24cacceee35ff87cd678ef6a92262cefce8492df
Validity
Not Before: Jan 1 07:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=477e562669e64633ffc877ffdd521204aa5aadfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:eb:6b:88:6b:13:1c:43:94:92:81:3b:10:d6:
12:3d:b4:18:0c:a4:cb:ad:85:71:d7:ec:3a:87:34:
58:b9:15:66:64:26:96:0d:01:bc:02:df:5d:bd:32:
72:ec:9b:a1:d1:5e:93:b2:c3:27:5e:1a:aa:49:08:
6c:03:77:a6:9b:c9:eb:b6:43:d9:45:9e:96:16:58:
fb:ff:74:1c:74:4d:fe:00:25:9a:be:67:19:37:c4:
21:9d:6a:56:f7:cc:c7:a9:e9:b2:1f:58:d0:bf:bd:
df:76:60:6e:d9:4b:b1:17:2f:af:cf:09:38:68:8f:
a8:b0:19:68:d8:32:9e:f8:f2:1f:9f:55:83:22:0b:
24:c7:d1:9c:da:64:8f:e3:ac:cf:ef:71:ef:84:30:
1d:1c:0b:8f:c7:89:32:fa:f8:0a:fd:25:89:47:42:
e1:ee:4b:0a:38:0b:18:cf:20:9b:d0:29:78:bd:ca:
f8:72:03:0f:11:9c:a6:1e:ea:3f:01:a9:15:46:41:
f3:bf:34:d9:f6:22:46:30:fd:14:26:83:92:8c:b3:
a8:3f:c6:9e:04:4d:06:01:a1:89:24:1e:fd:10:2f:
a1:93:47:ea:bc:4a:17:47:e4:39:c2:2e:c4:6c:d4:
21:12:03:81:89:d2:19:67:0f:68:c2:58:ff:57:98:
51:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:7E:56:26:69:E6:46:33:FF:C8:77:FF:DD:52:12:04:AA:5A:AD:FE
X509v3 Authority Key Identifier:
keyid:24:CA:CC:EE:E3:5F:F8:7C:D6:78:EF:6A:92:26:2C:EF:CE:84:92:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JMrM7uNf-HzWeO9qkiYs786Ekt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/6670f9-418e-4275-8000-a29eb139e79d/1/R35WJmnmRjP_yHf_3VISBKparf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/6670f9-418e-4275-8000-a29eb139e79d/1/JMrM7uNf-HzWeO9qkiYs786Ekt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.200.0/24
Signature Algorithm: sha256WithRSAEncryption
70:f6:d6:d5:59:fb:a5:c8:1f:50:35:47:c4:c9:e4:1b:b3:0d:
25:26:ed:a4:fa:9a:c1:35:cd:3a:65:56:15:02:ef:4e:c1:fd:
ec:10:de:4a:21:3a:f7:b4:99:88:24:f1:35:31:b1:44:6a:83:
a3:43:83:eb:fe:25:31:3a:aa:32:c3:3f:83:67:c4:0a:ed:8f:
a2:e4:b6:a5:c0:e0:79:f0:83:da:67:65:5f:59:83:88:27:83:
57:a2:b9:44:ca:e0:8e:84:e5:0b:22:fd:a4:bb:5f:16:90:98:
7f:44:b7:cb:c9:a9:9f:eb:da:91:5e:ab:ef:7e:a6:f8:e6:9f:
60:58:23:ff:a8:4f:78:e1:23:e2:c9:97:91:84:8c:96:1f:6f:
07:6f:4f:5f:e1:76:aa:e3:c3:4e:1b:17:e2:55:f8:81:f4:e9:
4c:90:66:34:ba:5b:2f:1c:61:01:09:51:7e:6c:53:6c:af:45:
25:ee:6a:77:0d:a5:53:67:56:1f:35:80:fb:fb:23:77:6f:03:
b0:03:e6:50:c6:5d:51:d3:00:c6:d5:d1:7a:fa:ae:0d:dd:5d:
1b:92:87:3d:e4:45:ce:a4:77:cc:74:5c:12:32:fb:9d:86:44:
6f:b1:94:8d:44:22:b6:80:a6:b6:f8:d6:d6:50:1b:80:b6:ab:
22:ae:af:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:32 2024 by rpki-client on console-fra.rpki-client.org