Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/c1e5_LDydEQ8m8-jYLY9UYuCaA8.roa
File: c1e5_LDydEQ8m8-jYLY9UYuCaA8.roa (raw, json)
Hash identifier: 88NS5SrJD8tedBI7UFmWeCzX3ZwThMpKEmaEfwzS1nA=
Subject key identifier: 73:57:B9:FC:B0:F2:74:44:3C:9B:CF:A3:60:B6:3D:51:8B:82:68:0F
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018C000C17602DC6C1AFA77344946DB6C435
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/c1e5_LDydEQ8m8-jYLY9UYuCaA8.roa
Signing time: Fri 24 Nov 2023 06:37:21 +0000
ROA not before: Fri 24 Nov 2023 06:37:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.122.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Nov 2023 06:39:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:00:0c:17:60:2d:c6:c1:af:a7:73:44:94:6d:b6:c4:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Nov 24 06:37:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7357b9fcb0f274443c9bcfa360b63d518b82680f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b4:8b:42:de:e1:08:03:3f:b0:64:db:e3:6a:
a9:5e:12:42:04:ce:b3:0c:52:fa:05:91:df:fd:c0:
08:ee:cb:a2:c0:b0:39:89:c4:89:6f:04:91:4e:b5:
92:a5:4a:46:17:d2:09:5d:e1:ad:80:c0:7b:19:52:
8b:22:75:93:b1:60:cc:08:21:9f:e1:2b:a9:c9:c6:
b4:74:9d:88:85:56:5c:f5:78:9f:52:a0:77:fb:72:
49:93:4a:79:06:b3:97:aa:8c:b6:f1:16:f6:da:85:
b2:7e:b2:0f:a6:97:98:e3:84:a0:f2:b6:83:e9:b5:
e7:cd:a3:b4:9a:99:82:60:62:6a:93:37:ef:fa:2f:
ae:e2:0f:b9:cb:08:1f:54:d6:e3:c3:61:d8:2b:97:
cd:5c:e5:d3:3e:c1:5e:23:7a:3c:71:a8:d3:7d:e0:
ae:75:ec:2c:f9:d9:06:75:09:d5:27:06:2e:dc:2b:
78:d5:fb:26:5c:65:08:d7:0f:e4:48:93:4b:5d:45:
85:19:26:98:b5:fc:c6:40:5a:7a:56:62:15:80:7b:
4b:4b:3c:1a:b1:57:c7:72:6e:b6:86:a1:fe:5f:04:
de:a5:4d:61:ee:a6:a8:cd:8c:8d:4c:14:00:8c:9d:
2c:cf:48:af:42:53:0c:e2:31:a4:b8:f6:f3:cb:56:
d1:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:57:B9:FC:B0:F2:74:44:3C:9B:CF:A3:60:B6:3D:51:8B:82:68:0F
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/c1e5_LDydEQ8m8-jYLY9UYuCaA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.46.0/24
Signature Algorithm: sha256WithRSAEncryption
89:0a:20:40:cd:fb:2c:05:c2:89:e7:cb:32:68:2c:db:c3:a8:
5c:6b:77:d8:c5:b6:7b:eb:b6:51:ad:01:d3:d0:c0:bd:8e:6d:
f0:b5:cc:67:79:ee:ff:e4:d7:73:0b:cd:5d:6c:84:9c:a1:62:
fe:ae:cf:57:04:7b:fd:79:8e:54:0a:11:c3:d3:ae:16:43:73:
d7:29:f7:33:e9:53:60:b5:40:4f:7f:34:e8:12:f7:45:65:89:
32:14:04:37:b1:f1:da:85:bb:5c:be:99:90:b1:eb:7a:75:5d:
bb:6f:36:88:48:85:fd:c2:8e:a7:a2:66:fb:37:55:3e:b4:75:
0e:50:ea:de:a2:7c:71:ca:a3:a2:67:29:45:4f:00:7f:a5:f3:
00:e7:86:41:e8:67:3b:61:c7:6c:00:37:f7:39:97:a9:2b:02:
06:57:f6:98:8e:50:51:35:20:b5:10:98:1c:60:23:3b:e2:b6:
a6:cb:37:72:d7:d0:9f:47:1c:02:19:8b:fe:70:76:82:5c:1d:
11:b3:28:8c:cd:00:df:18:dd:d1:01:17:db:c2:59:ee:e4:a1:
52:2e:5a:ff:84:e4:d2:83:00:62:0c:3d:20:72:58:47:c9:48:
61:96:b4:60:b5:05:f2:95:20:10:ba:14:52:1d:bf:2e:00:f4:
d6:c4:f6:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org