Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/VWT9seE_n7gJuS7KNVMVxD5Bvs0.roa
File: VWT9seE_n7gJuS7KNVMVxD5Bvs0.roa (raw, json)
Hash identifier: /A3M+/64khVZIjX6E7A56wrgkGZ1iYblb3eH/YH8NHs=
Subject key identifier: 55:64:FD:B1:E1:3F:9F:B8:09:B9:2E:CA:35:53:15:C4:3E:41:BE:CD
Certificate issuer: /CN=307d887c02e07c9e474d1f8e21049caa6ce3fbd3
Certificate serial: 0185729EDE0E771A052810A0CB81438EB9C5
Authority key identifier: 30:7D:88:7C:02:E0:7C:9E:47:4D:1F:8E:21:04:9C:AA:6C:E3:FB:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/VWT9seE_n7gJuS7KNVMVxD5Bvs0.roa
Signing time: Mon 02 Jan 2023 13:14:52 +0000
ROA not before: Mon 02 Jan 2023 13:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60718
IP address blocks: 109.74.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:de:0e:77:1a:05:28:10:a0:cb:81:43:8e:b9:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307d887c02e07c9e474d1f8e21049caa6ce3fbd3
Validity
Not Before: Jan 2 13:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5564fdb1e13f9fb809b92eca355315c43e41becd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ad:e9:f6:c6:45:8d:a0:3b:fa:af:f8:44:65:
8b:2e:b5:be:15:fa:5f:51:73:7f:74:ac:ed:68:bc:
8b:a0:79:ae:a2:39:ce:2f:3c:a9:93:a7:3d:54:19:
e6:8e:33:d9:5a:33:e0:51:b4:59:4e:d2:f2:fe:f5:
d9:a3:df:5e:01:bc:b9:b7:5c:98:de:bc:e5:6b:11:
47:be:34:3b:de:e8:5f:bd:2e:03:c4:4b:2a:7b:6e:
bd:ec:c9:90:5a:d7:94:b1:eb:c0:c9:0c:3c:e1:d9:
cb:03:55:20:7b:ca:dc:13:90:d9:fc:14:80:1d:c7:
16:75:f9:94:40:3a:c1:3a:4a:09:ee:f3:52:00:e3:
6c:21:7c:b9:31:bf:43:20:86:33:e4:aa:92:07:2a:
45:58:44:5f:f3:94:6c:b4:b8:aa:3e:48:19:62:a6:
da:45:ea:e2:5a:fa:14:dd:fd:97:8c:e7:2a:a4:fd:
15:06:ae:79:04:ee:71:b2:dc:4b:22:3a:87:c7:24:
49:77:10:ec:69:2d:7e:9e:3f:58:40:4d:f1:41:bb:
9b:d7:63:d3:8f:b9:71:9a:69:a9:41:6c:f9:50:62:
9d:46:1c:47:6c:64:5d:30:b8:c5:7b:77:ab:4f:56:
e8:40:2b:2d:2c:fc:02:e6:8a:c5:6d:5f:24:7b:e0:
2e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:64:FD:B1:E1:3F:9F:B8:09:B9:2E:CA:35:53:15:C4:3E:41:BE:CD
X509v3 Authority Key Identifier:
keyid:30:7D:88:7C:02:E0:7C:9E:47:4D:1F:8E:21:04:9C:AA:6C:E3:FB:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/VWT9seE_n7gJuS7KNVMVxD5Bvs0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/MH2IfALgfJ5HTR-OIQScqmzj-9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.74.86.0/24
Signature Algorithm: sha256WithRSAEncryption
59:b0:17:0e:75:95:b2:6f:4b:95:52:39:4f:c9:a1:ca:ff:74:
1b:24:42:bb:7f:15:13:95:44:e6:21:ad:59:c7:24:5d:ba:a0:
5e:ad:22:bf:ce:4a:14:dd:90:9d:55:53:ce:6f:e1:bb:f6:05:
9e:79:50:ce:f0:cb:7d:91:fa:ad:8c:e1:92:99:03:04:c8:df:
78:ab:a5:2e:ec:40:ba:fb:bc:a0:bb:e8:6f:79:60:f2:60:de:
db:9a:31:bf:b0:b4:0b:4c:ac:0a:63:ba:60:e4:5b:a4:56:20:
bc:90:5b:54:c0:42:d0:f8:04:93:aa:b0:00:78:a1:46:7b:04:
93:d2:ce:c9:c6:5c:cc:fc:22:7a:05:2f:3c:30:7a:c3:be:2b:
da:00:5e:13:5f:68:43:0f:3b:7e:9d:35:94:90:24:1f:9f:e8:
27:95:eb:e2:ba:0d:1c:ff:cd:b0:b3:e9:fb:8c:20:7d:d5:64:
a2:a8:71:e0:e7:91:2d:aa:12:97:f9:7a:03:d2:29:0e:15:36:
c6:93:06:36:cc:83:b5:19:7a:54:f6:da:46:90:49:60:b4:3d:
e7:e6:1a:15:68:5f:e4:8d:a1:e0:31:8f:28:b1:92:ad:9a:6c:
2e:07:fa:f9:59:bb:28:8a:d5:14:98:1e:0a:d0:61:11:bc:f9:
79:77:48:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:35 2024 by rpki-client on console-fra.rpki-client.org