Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/cVkeFyzAKXRN_JykCHXlJZbUcr0.roa
File: cVkeFyzAKXRN_JykCHXlJZbUcr0.roa (raw, json)
Hash identifier: dxgZYrt8M21NKkoPtEd3nXxor9owgPqiXILCJ0Dgw/M=
Subject key identifier: 71:59:1E:17:2C:C0:29:74:4D:FC:9C:A4:08:75:E5:25:96:D4:72:BD
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0185932F802E28AF836E0A3199F5B261D531
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/cVkeFyzAKXRN_JykCHXlJZbUcr0.roa
Signing time: Sun 08 Jan 2023 21:00:41 +0000
ROA not before: Sun 08 Jan 2023 21:00:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 109.122.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Feb 2023 10:37:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:93:2f:80:2e:28:af:83:6e:0a:31:99:f5:b2:61:d5:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jan 8 21:00:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71591e172cc029744dfc9ca40875e52596d472bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:90:c9:7f:b7:8a:75:02:d7:37:c3:9e:b1:0a:
ad:54:e1:71:c9:c1:91:cd:be:ad:7b:74:2a:53:b9:
fb:e6:dd:34:8e:50:85:df:6a:1e:7a:28:8d:36:19:
30:0b:f7:aa:ca:91:28:22:ca:fb:2c:2d:1d:85:1a:
ad:e0:4a:f6:a5:86:2d:68:75:eb:7b:12:c1:95:9b:
b5:5b:40:33:8a:71:92:24:ea:ee:4c:5f:d3:7f:0f:
68:b8:6d:b5:8c:61:a7:2e:e6:37:68:e3:61:04:d4:
c8:35:f8:53:e3:bd:82:1c:59:93:e9:b6:3f:fd:7f:
fa:74:f5:53:d8:88:42:ee:7b:72:84:d5:34:c9:7b:
d3:15:15:d1:e1:16:2b:68:ca:cf:c5:39:7f:a5:0a:
2d:da:82:c4:2c:de:49:98:f1:8a:46:50:09:5c:66:
6d:ae:a4:9b:37:d0:b5:e9:8f:50:ae:2e:fa:d1:34:
ec:97:be:d8:e9:ff:65:f8:5d:0e:62:07:7b:e9:d7:
67:ed:bc:9e:d9:97:71:42:f9:31:92:b1:a7:dc:96:
40:fd:eb:bb:cb:bf:4b:4d:ad:c5:7d:b9:0d:a4:f6:
00:50:2b:26:c2:11:e7:06:51:33:10:b7:63:20:fb:
25:90:b7:d0:73:ca:eb:06:a2:e0:de:18:c3:98:e8:
bd:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:59:1E:17:2C:C0:29:74:4D:FC:9C:A4:08:75:E5:25:96:D4:72:BD
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/cVkeFyzAKXRN_JykCHXlJZbUcr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.42.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:e1:49:71:60:dc:70:25:ed:5f:bb:2f:28:c6:e0:50:2b:9b:
b7:53:a5:9e:bf:04:df:46:5f:bd:87:cf:b4:4c:71:e7:ef:a0:
ba:23:64:43:63:19:89:9d:eb:e1:e2:56:4a:e7:74:ec:a9:3b:
91:11:c5:f4:25:3b:5a:65:d5:97:cd:0d:43:86:19:7e:4b:07:
93:04:77:2a:77:52:37:ba:f4:e1:29:0a:21:4b:84:f0:fa:33:
7c:d3:a8:ba:33:07:49:46:6c:c9:2c:44:c4:7d:f2:c4:7e:2b:
ce:6e:3c:04:61:52:d0:9b:a6:d0:e1:3a:6d:08:a8:2e:59:fc:
cf:8d:c9:45:de:f8:11:f4:82:70:f4:e7:5c:53:60:cd:d0:79:
a0:6d:9b:ff:90:58:08:79:f9:16:57:a7:2b:66:42:a3:92:83:
b6:04:65:cf:b0:db:db:4c:a6:22:dd:ea:1b:b0:29:6a:02:9a:
ce:17:32:e6:eb:51:81:07:ec:f1:3e:3d:b2:b0:b6:1d:54:79:
be:91:2e:00:3c:8a:3d:20:95:10:7b:3e:c4:99:f2:90:86:9f:
5f:5e:49:80:7b:72:a4:f9:6e:fe:ef:0c:7c:f5:ce:66:5b:86:
68:c8:c1:69:9c:b3:ae:a4:40:02:e7:91:d1:c2:44:31:f2:2b:
69:f8:fd:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org