Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/YdBaMzpQ2iNgR-tEzsKHlCM5sTE.roa
File: YdBaMzpQ2iNgR-tEzsKHlCM5sTE.roa (raw, json)
Hash identifier: 4qHX2MjVs0U5W0BrJUEAZV0QHN2CfIhZPzEjdM4JE0g=
Subject key identifier: 61:D0:5A:33:3A:50:DA:23:60:47:EB:44:CE:C2:87:94:23:39:B1:31
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018AB3CFD7752477E0200A48779927152707
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/YdBaMzpQ2iNgR-tEzsKHlCM5sTE.roa
Signing time: Wed 20 Sep 2023 18:17:37 +0000
ROA not before: Wed 20 Sep 2023 18:17:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.122.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Sep 2023 19:47:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b3:cf:d7:75:24:77:e0:20:0a:48:77:99:27:15:27:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Sep 20 18:17:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61d05a333a50da236047eb44cec287942339b131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:30:ed:13:4d:c4:d2:b5:6d:b2:11:1f:56:59:
f6:50:83:73:5d:b0:fb:b8:9a:04:57:a8:48:57:83:
62:98:31:a1:63:c7:77:f6:78:77:f4:58:a7:41:d6:
e7:75:b5:55:e1:74:00:bb:17:70:99:01:c9:d5:07:
07:27:b8:57:f3:0c:8e:f5:2b:44:34:45:96:a8:ee:
a5:4d:ef:e7:54:7c:c0:fd:9b:be:fc:2d:3a:61:fa:
78:6f:c2:c4:1e:2d:93:d8:8b:42:73:1c:4b:38:f5:
22:8d:50:10:cb:c4:79:20:af:eb:9d:c8:41:40:33:
1a:c0:eb:e4:c9:8c:6d:9c:a5:9a:c4:9c:e1:92:9d:
23:53:ee:ed:ff:49:6c:dd:1c:42:19:03:db:83:b1:
04:9c:08:b3:d7:b1:b8:24:ed:55:52:2d:04:82:62:
99:6f:e8:89:e7:19:74:91:41:21:56:31:06:02:aa:
36:0f:fe:f3:04:69:fa:5a:12:4b:03:14:b2:51:f8:
89:b7:8a:ef:99:8c:78:9c:64:bc:86:9d:77:f8:3b:
f9:66:20:78:d8:ac:d5:82:12:d0:4d:5c:e0:d9:61:
29:09:c2:d3:0f:81:dc:d2:3f:85:a3:74:7d:7f:93:
c5:60:d8:2f:0b:07:a2:c9:98:dc:2b:91:b9:46:c8:
5b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:D0:5A:33:3A:50:DA:23:60:47:EB:44:CE:C2:87:94:23:39:B1:31
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/YdBaMzpQ2iNgR-tEzsKHlCM5sTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.46.0/24
Signature Algorithm: sha256WithRSAEncryption
39:c9:2b:98:bc:12:89:4b:20:6f:8d:c7:eb:07:2d:e9:09:ab:
0a:95:c3:a5:ac:2d:07:19:43:b7:63:67:25:81:c0:41:c8:44:
1f:10:c3:a8:06:f2:dc:49:6a:76:49:c0:70:20:a0:9d:45:87:
05:3a:1f:8e:ce:fd:79:03:06:b5:9d:22:07:0a:6c:67:12:a6:
db:b6:26:8d:d0:ad:73:56:79:53:df:8e:c1:52:58:bd:e4:97:
2b:5c:81:67:de:48:85:93:30:7b:8f:ea:6d:49:ba:71:ec:99:
b6:d9:1b:64:2f:56:11:6b:e9:b0:ed:8c:e7:56:8e:be:a4:1f:
21:4c:91:c2:8f:64:f5:fb:2f:80:92:87:bb:92:e4:ee:8f:57:
86:c5:7d:8c:88:bc:c3:2d:d1:77:0c:be:f3:51:d5:08:b7:07:
79:62:69:40:cc:87:d5:1f:ef:cf:a9:e8:0e:76:99:fb:cd:e6:
7d:d4:e0:9f:55:70:11:a6:45:53:75:3c:9e:de:01:6d:dc:b5:
4d:c1:41:08:b5:30:fd:6e:97:49:b7:54:98:23:71:33:2e:35:
96:7f:d3:29:1c:1a:3d:7f:c3:90:56:65:51:4d:f0:73:5b:d3:
6a:ba:1b:59:5a:47:c2:44:e9:e0:c9:ea:6e:20:fd:be:ed:0b:
8e:60:72:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org