Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/_Hk1_vXtnEJBfZbKjQgps1hsWHY.roa
File: _Hk1_vXtnEJBfZbKjQgps1hsWHY.roa (raw, json)
Hash identifier: xWH9M++OjQaJUnVZPzuqLbO8XTQjwxhcNCaMxDCSDOg=
Subject key identifier: FC:79:35:FE:F5:ED:9C:42:41:7D:96:CA:8D:08:29:B3:58:6C:58:76
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 01900FF0C05744BA227E3F222C2F4E69A710
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/_Hk1_vXtnEJBfZbKjQgps1hsWHY.roa
Signing time: Thu 13 Jun 2024 04:52:34 +0000
ROA not before: Thu 13 Jun 2024 04:52:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 109.122.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jul 2024 12:23:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:0f:f0:c0:57:44:ba:22:7e:3f:22:2c:2f:4e:69:a7:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jun 13 04:52:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fc7935fef5ed9c42417d96ca8d0829b3586c5876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:94:66:af:17:68:67:26:cb:23:a5:42:49:a3:
6c:4e:70:64:ff:eb:2e:69:79:d7:e3:8d:5e:07:7c:
7d:aa:c4:94:19:8c:e4:86:95:4e:8a:6f:08:90:34:
b9:4c:f5:75:3f:7e:58:ff:0a:74:ff:1d:84:91:28:
a4:d8:5a:13:d0:b5:d5:9d:9a:60:54:ee:2d:01:8a:
42:bd:ea:89:b4:71:18:97:9d:88:b7:83:56:aa:10:
7a:8d:bc:41:bf:72:03:54:11:2d:ca:87:e7:e4:2a:
a9:6d:1e:37:8c:0d:31:46:82:4d:d9:ac:46:a0:2e:
90:67:f3:e4:78:cb:a6:b4:66:e2:25:aa:87:5a:91:
7f:3f:4c:f0:4c:bc:55:fa:50:05:91:a4:3f:ae:1a:
93:17:f5:81:42:bc:ba:bb:2b:6f:0a:99:54:31:31:
2b:b6:b6:04:84:35:f1:3a:0c:3c:ae:47:01:f4:40:
be:05:81:73:a6:4b:61:7c:68:77:f9:18:d3:c6:d8:
56:35:bf:ca:63:1c:fe:75:70:bb:8c:4a:fb:5d:60:
90:71:f6:04:26:bb:84:81:92:19:6f:3a:ce:be:3f:
31:e4:77:e5:b7:0c:a1:57:20:1e:16:cb:f6:34:e4:
e3:3b:17:67:18:b4:dc:fc:95:48:8b:9a:30:a2:a3:
97:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:79:35:FE:F5:ED:9C:42:41:7D:96:CA:8D:08:29:B3:58:6C:58:76
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/_Hk1_vXtnEJBfZbKjQgps1hsWHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.46.0/24
Signature Algorithm: sha256WithRSAEncryption
03:c8:f3:a2:d8:e6:28:aa:ba:d9:6a:a9:d9:2f:de:fc:60:af:
c8:72:19:ee:f5:8d:b1:3a:e8:92:76:a7:e6:fb:eb:8f:3a:b1:
e9:33:20:5d:8b:fd:8d:5d:f9:73:c4:95:eb:0b:92:2e:20:62:
6d:b2:cd:6f:a6:6b:05:83:e8:bd:8f:73:d9:3b:d4:1e:87:5b:
c1:a5:68:74:7e:42:f6:9e:20:39:de:5a:58:48:81:74:f9:f1:
33:82:d7:ac:43:00:8a:ca:d7:db:78:9a:f0:e0:dd:f2:38:0e:
64:24:d8:92:85:2e:cc:47:ca:11:19:42:8b:3c:6d:59:15:d7:
6b:1b:91:51:ea:23:7d:19:d4:3b:33:61:57:a4:b6:60:3e:0b:
56:e7:cb:72:ed:b4:08:84:72:12:dd:e7:4b:2f:44:c4:34:99:
75:35:e0:a8:ee:6f:82:22:97:33:e2:36:04:84:fc:6a:e2:8a:
30:67:c9:96:ad:76:7e:8c:e5:41:3c:96:47:0d:85:31:d2:81:
97:a9:f6:09:85:99:68:15:47:d5:9d:03:6e:70:5c:78:31:68:
db:5f:67:dd:63:71:7a:20:e2:eb:7d:7c:c0:71:27:70:86:05:
d4:c1:ce:c4:91:0d:a3:67:57:03:76:67:61:52:9c:28:3c:34:
67:e4:e6:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 16 15:47:31 2024 by rpki-client on console-ams.rpki-client.org