Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/9oTKcPREE0k9Wy0QpnzCG--poNU.roa
File: 9oTKcPREE0k9Wy0QpnzCG--poNU.roa (raw, json)
Hash identifier: j58E+tc5sLz3Ewk4UC9IJVeQvKVwnLjnjEpFDUeaUww=
Subject key identifier: F6:84:CA:70:F4:44:13:49:3D:5B:2D:10:A6:7C:C2:1B:EF:A9:A0:D5
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0191BFD8CF294DF11C7C0776494A48D1F72C
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/9oTKcPREE0k9Wy0QpnzCG--poNU.roa
Signing time: Thu 05 Sep 2024 01:42:22 +0000
ROA not before: Thu 05 Sep 2024 01:42:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 109.122.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Sep 2024 07:04:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:bf:d8:cf:29:4d:f1:1c:7c:07:76:49:4a:48:d1:f7:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Sep 5 01:42:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f684ca70f44413493d5b2d10a67cc21befa9a0d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2e:7d:c1:dd:da:95:c3:eb:b7:65:61:c7:c0:
85:e1:03:66:85:3a:49:99:67:d9:57:52:f5:01:46:
e4:4c:b1:ec:22:05:d5:3e:f4:cd:95:3c:01:a0:41:
b6:94:b4:1b:00:c7:17:ba:44:7b:5c:e3:c6:a5:2a:
d3:f7:a0:78:40:9e:73:2b:87:6d:b6:bd:ae:56:79:
c4:92:ef:0c:d3:47:f5:24:8a:e3:2e:7d:2a:13:4b:
5c:b3:8b:66:64:d8:38:eb:83:0e:56:f2:a3:24:82:
6c:93:b6:fd:db:56:54:ee:d9:79:70:ea:33:2e:13:
5b:17:a5:08:47:61:82:73:fe:0d:bc:71:82:69:2a:
5f:b6:0a:13:c8:21:25:0b:4b:2f:b3:f8:03:df:04:
82:5f:b8:4d:4c:c1:5d:8c:23:22:fd:5f:c0:70:31:
bb:2c:a1:f4:60:c1:c8:52:b1:80:c4:ea:53:fb:a7:
06:27:06:16:40:b8:99:40:7e:de:08:fd:f5:b8:42:
14:3d:2d:3c:ce:5f:f5:80:19:09:3e:07:c5:4d:5d:
1a:6f:f2:e2:b1:cb:71:3b:ae:df:77:de:ec:cc:1b:
41:d3:e8:af:e7:fe:33:8f:87:7e:10:38:22:95:b7:
87:76:91:59:39:c5:30:10:b9:9a:ca:d4:7f:d1:56:
b8:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:84:CA:70:F4:44:13:49:3D:5B:2D:10:A6:7C:C2:1B:EF:A9:A0:D5
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/9oTKcPREE0k9Wy0QpnzCG--poNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.46.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:a2:45:58:0c:44:5a:3c:cb:90:fc:ce:1b:3e:c7:57:05:18:
34:6c:c8:63:9d:43:17:3d:ec:55:1f:f1:58:af:58:56:66:d6:
1f:e3:79:f4:40:ed:b1:04:cf:0e:95:0f:95:b1:db:10:8c:35:
fa:8d:92:52:8d:81:f4:67:00:cc:74:f9:6d:b2:cc:b1:02:27:
6e:3b:42:07:b2:fc:ed:a6:c6:49:52:b5:4e:55:71:b1:d7:99:
44:f9:51:2a:cb:49:65:1c:bc:27:58:a8:5f:f6:51:91:c7:ce:
be:05:78:ab:c3:15:fe:17:c4:22:9d:e5:b1:5d:c2:07:18:8c:
ca:47:3a:ba:90:f2:7e:3f:bd:44:a1:b8:72:16:bd:7c:9f:12:
6c:b0:ea:5a:a4:f5:d1:6f:ad:a6:16:68:b9:6c:e8:03:ad:d2:
22:0e:7a:de:43:ee:b7:79:db:07:17:ea:1b:71:92:f8:db:db:
6e:4e:8f:28:86:75:91:29:fc:cc:96:75:c3:b9:37:ba:1a:ba:
f1:fc:58:cd:69:e2:06:ab:40:a3:f6:89:1f:e3:14:4c:61:c5:
55:f7:00:92:c2:da:5a:94:4c:de:b3:35:0a:d2:89:83:f5:71:
bb:b8:8d:98:8f:0e:06:f0:ba:82:4c:8a:01:2e:33:1f:6b:96:
bb:f9:9a:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 20 09:07:15 2024 by rpki-client on console-ams.rpki-client.org