Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/agFGHpSHHlGNMPYZuqHE3JKmxxU.roa
File: agFGHpSHHlGNMPYZuqHE3JKmxxU.roa (raw, json)
Hash identifier: 6GgLR0MqPDsR57vMsTChbdAJ6eAfZUdSTKlczcjlIeQ=
Subject key identifier: 6A:01:46:1E:94:87:1E:51:8D:30:F6:19:BA:A1:C4:DC:92:A6:C7:15
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 01886FC29F274866954EA3F6ECF6806CAA23
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/agFGHpSHHlGNMPYZuqHE3JKmxxU.roa
Signing time: Wed 31 May 2023 03:03:25 +0000
ROA not before: Wed 31 May 2023 03:03:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.122.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Jun 2023 08:45:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6f:c2:9f:27:48:66:95:4e:a3:f6:ec:f6:80:6c:aa:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: May 31 03:03:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a01461e94871e518d30f619baa1c4dc92a6c715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c8:78:32:f6:3d:b7:9a:b1:a6:ff:d6:d7:c2:
e9:e3:7a:47:1a:2d:08:dd:ae:95:17:d6:4f:ee:fe:
c6:e3:45:7f:67:d1:5a:5a:05:63:81:91:67:bf:07:
5d:8e:be:f7:8e:46:20:8d:ed:f4:c4:af:d9:d7:af:
9a:b0:3b:93:66:b5:c9:25:de:2a:97:12:16:05:92:
89:c5:4d:8b:b9:87:cf:b5:68:a3:0d:3c:df:85:19:
d7:b3:39:cd:1f:0d:ba:6e:13:cd:b5:4e:03:1c:29:
14:ff:39:b1:53:f6:b3:30:98:6c:95:ba:3a:11:cc:
56:ab:19:cc:31:f5:2f:d6:4a:46:b0:45:37:ec:cf:
f8:eb:2c:7c:dd:8e:19:ba:9b:4a:23:5b:49:13:97:
0b:d3:e1:bc:55:73:10:d9:f8:93:47:05:33:77:da:
7b:13:f8:b2:b0:5c:01:7e:49:ed:70:6d:03:b0:9e:
a0:82:25:47:33:99:08:2a:5f:b6:0e:59:f4:24:60:
cb:50:39:7c:52:13:37:b4:1d:80:e1:77:87:1f:c8:
28:d3:c5:60:7c:ea:00:f1:fd:8c:e7:6b:4b:1b:fe:
d1:f1:5a:57:42:dd:f8:27:19:15:24:03:d8:6e:17:
29:02:5a:15:ee:0e:39:c1:b9:2e:3a:22:c0:db:0a:
0a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:01:46:1E:94:87:1E:51:8D:30:F6:19:BA:A1:C4:DC:92:A6:C7:15
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/agFGHpSHHlGNMPYZuqHE3JKmxxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.46.0/24
Signature Algorithm: sha256WithRSAEncryption
44:24:cd:9e:ce:1f:66:b8:a2:4b:0d:7e:c0:ad:9e:2d:f6:31:
9c:a3:5c:99:b9:08:3b:ae:09:8b:2d:2d:be:1b:9d:cf:8f:8e:
8b:51:c6:23:2e:dd:9c:9b:ad:e1:bb:1f:d7:89:15:a0:0c:cb:
94:fc:e4:fb:72:a9:c2:8f:84:c8:61:46:87:79:92:70:7a:69:
45:ef:67:a7:a6:64:13:c2:d4:85:c0:3d:68:f9:37:8c:67:b6:
d3:04:0c:8c:7f:e3:7c:4c:7c:59:92:34:dc:5e:8a:b9:a5:d1:
ac:07:c6:d5:43:6d:e0:41:12:38:81:dc:32:b3:3a:c9:be:1a:
d1:2f:13:c9:42:65:58:a1:7b:4b:cc:d7:11:21:b7:5e:bb:5b:
e5:bd:61:75:9a:77:8d:0b:5b:e6:1f:e7:94:cc:0e:14:7c:42:
1a:4b:a4:f2:f3:39:76:5f:3b:20:b5:95:29:ee:c0:01:7a:37:
01:c3:a0:5e:a3:e8:f3:ce:e0:c4:2a:bc:16:16:94:13:7d:9d:
c2:84:e7:dd:2a:86:db:f3:62:b1:fa:12:b1:65:9d:12:6d:f9:
4e:ba:b9:ef:a2:d9:0e:be:ce:ec:88:94:07:38:33:0f:f3:d5:
84:18:0e:7a:5a:5f:b6:33:de:9c:70:13:be:da:24:a2:f4:bf:
f0:79:79:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org