Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/M-1TjDuxOo3a2vcImKf2dTHPL-k.roa
File: M-1TjDuxOo3a2vcImKf2dTHPL-k.roa (raw, json)
Hash identifier: oho5wtiXex5IjmQR7N1EudcLP/gkiRubIWGcWCkM6zM=
Subject key identifier: 33:ED:53:8C:3B:B1:3A:8D:DA:DA:F7:08:98:A7:F6:75:31:CF:2F:E9
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018905784F29BDBE6F82F246299AA8A4232B
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/M-1TjDuxOo3a2vcImKf2dTHPL-k.roa
Signing time: Thu 29 Jun 2023 04:45:17 +0000
ROA not before: Thu 29 Jun 2023 04:45:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35409
IP address blocks: 109.122.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 29 Jul 2023 11:45:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:05:78:4f:29:bd:be:6f:82:f2:46:29:9a:a8:a4:23:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jun 29 04:45:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33ed538c3bb13a8ddadaf70898a7f67531cf2fe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b0:ef:69:11:45:3c:1f:d3:1a:12:78:32:d8:
bf:3e:f7:29:0a:05:64:b1:46:44:35:69:6a:bf:96:
39:21:63:cf:eb:e9:4f:66:4f:f7:c4:fe:e6:45:ad:
c4:17:ae:56:fb:30:ea:a2:58:49:f1:50:c6:f1:2b:
48:d4:7a:ce:1c:f8:10:b2:f4:45:83:bc:ee:1e:43:
f7:d3:3f:c5:4c:6b:ec:f0:5a:2d:27:cf:e7:67:0a:
a9:dd:e5:85:8f:f1:61:0c:02:7b:6d:22:0c:89:c3:
0b:ca:44:c4:0f:1b:eb:d7:eb:fb:ef:fa:0b:22:60:
d8:19:d2:55:22:e5:9f:cc:4f:74:97:fc:84:7b:ff:
61:b2:7c:24:f1:5e:55:36:63:67:7d:81:42:b6:a8:
9e:35:b2:45:bf:a1:e5:79:7f:99:d2:88:83:8c:7e:
c3:48:0e:de:3a:08:84:84:35:ee:c0:26:19:e9:8c:
4c:b0:d4:1c:10:9c:46:13:12:be:46:2b:ca:fa:bc:
05:c1:ff:ed:50:04:05:54:69:39:59:47:22:0b:22:
24:a8:3b:2b:83:1f:fc:e9:b1:1b:99:e6:e5:9f:94:
fd:8c:20:b6:9d:0a:b0:cc:af:d5:e6:6a:7d:10:10:
3f:9b:05:bd:ec:19:2e:39:8f:28:f3:de:47:c9:38:
93:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:ED:53:8C:3B:B1:3A:8D:DA:DA:F7:08:98:A7:F6:75:31:CF:2F:E9
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/M-1TjDuxOo3a2vcImKf2dTHPL-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.42.0/24
Signature Algorithm: sha256WithRSAEncryption
11:b6:ad:84:02:f7:3f:99:4b:72:59:3b:89:c8:f8:be:95:e6:
88:0d:34:e4:74:4a:9b:32:4e:08:28:d6:0a:de:02:43:8e:67:
e5:33:43:a3:ea:96:9f:58:84:16:87:e0:99:fa:e6:9f:32:55:
39:cc:57:2a:d9:c5:31:8e:e9:77:54:94:83:e7:70:40:fa:3f:
4f:bd:f0:08:23:1d:69:10:6a:82:fe:4a:70:2e:64:0d:d0:4e:
45:8d:bc:b4:64:e7:b1:47:e1:8d:ac:05:2e:59:79:3c:dc:9d:
5b:1b:85:f6:9f:d6:6c:5f:23:b9:c3:88:ad:3a:35:18:be:73:
0e:94:d8:b2:23:52:7a:e8:37:20:37:48:49:67:cb:aa:18:b5:
13:20:a2:71:8e:9b:af:6b:e2:b9:38:34:db:c8:d7:39:1d:b5:
62:59:b3:77:03:d5:82:6c:f6:b9:d8:59:0a:3a:ac:ee:a7:45:
97:1a:4c:e4:1f:16:bd:55:45:bd:ed:0c:2a:3f:a7:c6:4e:1f:
36:a1:00:eb:27:a6:82:08:b4:91:65:e2:32:e2:b3:d7:55:93:
ab:bd:82:85:e7:91:56:88:6c:57:39:f7:c6:77:97:ec:ce:57:
9b:23:01:ad:71:1c:64:4f:49:8b:70:ed:9e:17:87:96:b5:73:
fc:81:f8:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org