Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/4KLDOD1-dwSSryWPmfyFvnPGhVE.roa
File: 4KLDOD1-dwSSryWPmfyFvnPGhVE.roa (raw, json)
Hash identifier: ihwuTWtd+iUZcpf5ibjKRlRAKYoXxl07ugd2PMOlzDg=
Subject key identifier: E0:A2:C3:38:3D:7E:77:04:92:AF:25:8F:99:FC:85:BE:73:C6:85:51
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0187A51186EE7BBECE230BFE78F41F09FB7C
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/4KLDOD1-dwSSryWPmfyFvnPGhVE.roa
Signing time: Fri 21 Apr 2023 18:26:41 +0000
ROA not before: Fri 21 Apr 2023 18:26:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200019
IP address blocks: 109.122.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Jun 2023 10:20:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a5:11:86:ee:7b:be:ce:23:0b:fe:78:f4:1f:09:fb:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Apr 21 18:26:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e0a2c3383d7e770492af258f99fc85be73c68551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:92:a5:77:cf:55:9b:6a:02:3c:1c:35:41:5b:
4e:b5:02:aa:b3:4b:7b:b4:53:a4:b9:fb:b5:a2:bd:
d2:39:0f:1e:d9:fc:94:24:15:72:d7:1f:b5:bf:4d:
40:64:9d:89:ee:60:31:2e:b6:db:40:96:15:fa:d4:
69:37:03:a1:db:2a:11:7a:95:42:f5:d1:f4:d4:25:
b5:d8:ea:80:b6:b6:2a:f0:53:09:d1:ad:87:be:36:
af:ed:06:cf:18:c7:7e:48:3d:85:b1:08:3f:aa:0a:
d4:42:0d:2a:b3:58:6f:f1:37:93:ec:77:35:6c:de:
40:8d:0a:72:6c:9e:d0:fc:35:8f:8b:f9:2b:31:e7:
9c:06:39:d6:ea:4c:94:b1:20:92:dc:4d:6d:eb:b1:
9b:b2:af:a7:62:1d:86:08:5f:84:4a:5f:1d:3e:72:
d4:e9:e5:aa:3b:7b:87:09:53:49:a4:06:78:c1:27:
0f:b2:60:c2:8c:6e:c4:6e:66:06:88:80:58:3c:09:
a3:fb:60:ea:b8:f9:5e:25:9d:41:a6:18:08:dd:8f:
5f:2f:fb:80:bd:40:3c:8c:0c:4b:68:ad:09:76:72:
c4:33:d5:73:e3:85:69:5c:28:7d:f1:9c:23:ac:20:
be:81:af:a8:fa:01:b1:15:cd:ef:c1:7f:60:15:3b:
56:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:A2:C3:38:3D:7E:77:04:92:AF:25:8F:99:FC:85:BE:73:C6:85:51
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/4KLDOD1-dwSSryWPmfyFvnPGhVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.40.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:13:62:8b:96:e5:fc:25:03:77:94:42:00:60:11:4d:8d:72:
ec:5a:6d:b7:b7:53:41:32:cf:fb:8f:a9:88:78:a0:e2:5b:b1:
cc:23:e5:07:28:b7:3c:39:60:2a:c2:aa:12:78:3b:cc:9d:e8:
53:25:2e:90:da:5b:68:39:7e:a7:7c:d3:76:f8:74:39:83:65:
de:a2:e2:f3:f1:ac:70:26:14:eb:3f:44:0b:a2:8d:0d:19:5c:
9a:a5:c5:9a:8e:66:ad:c3:07:88:47:66:e4:8c:9b:b1:48:46:
4c:8e:5f:69:72:5e:a6:75:c0:1c:62:66:c4:35:e2:bd:23:3f:
ad:40:03:5f:a3:d8:2e:a2:34:d1:40:cf:15:84:a8:71:cd:b3:
71:b3:25:12:79:5c:25:ca:44:6d:4f:7c:42:e5:f7:bc:92:b1:
5d:55:eb:86:8e:d0:fa:ed:41:9c:d6:13:eb:4b:09:3c:31:9a:
10:97:e9:71:1c:e1:20:7e:16:71:89:d5:bd:6f:bd:b6:79:3e:
5c:f3:6d:18:e0:97:e3:30:3f:41:d2:82:2d:43:db:23:29:93:
fd:d3:36:ef:95:a2:18:03:d8:cb:72:05:39:f8:cc:e2:5e:4e:
ee:1f:6c:7e:65:07:15:bd:31:94:49:3c:ff:d5:42:2c:03:f2:
75:2c:6d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org