Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/i3HMTkmev4MFwP6ACydi7-yI8_s.roa
File: i3HMTkmev4MFwP6ACydi7-yI8_s.roa (raw, json)
Hash identifier: gy1AanHS9Ap2qc8mH25dVGacJklbx4rtXi5GM7aMeeE=
Subject key identifier: 8B:71:CC:4E:49:9E:BF:83:05:C0:FE:80:0B:27:62:EF:EC:88:F3:FB
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0187D8D66A63D5799053ADE42DB82F6175DF
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/i3HMTkmev4MFwP6ACydi7-yI8_s.roa
Signing time: Mon 01 May 2023 19:42:23 +0000
ROA not before: Mon 01 May 2023 19:42:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.122.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 May 2023 10:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d8:d6:6a:63:d5:79:90:53:ad:e4:2d:b8:2f:61:75:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: May 1 19:42:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b71cc4e499ebf8305c0fe800b2762efec88f3fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:87:85:98:b0:9a:72:fc:1c:7f:1c:e9:8d:cd:
a0:e8:7a:11:91:01:af:6b:d8:6c:a9:ae:f9:96:33:
36:d7:e4:03:7d:69:5a:ec:51:6d:58:3a:12:e8:fd:
93:83:6a:91:dd:19:da:63:40:31:b7:8c:46:ac:e6:
3d:f2:c9:bb:cc:ae:c0:78:d2:7c:4a:cd:f0:7e:dc:
c5:22:7a:e5:79:b1:37:14:9b:ff:ac:0e:00:5c:a6:
9d:12:53:c3:f6:6a:89:22:6c:a1:56:49:8b:50:44:
e9:b1:5e:50:46:7e:44:ca:30:77:a1:ba:d3:a1:f9:
61:a4:9e:8a:84:03:bd:4a:f2:83:b3:a0:3c:e7:5d:
a4:51:9b:82:36:ff:1b:0f:6b:ef:81:a0:55:1e:06:
2b:4e:69:5d:49:c5:d4:c7:f7:a1:75:1b:da:d9:ac:
66:a0:14:c6:05:dd:ff:a3:a6:ce:d0:17:75:b1:18:
49:84:5e:7e:ff:65:0f:cc:f4:42:f8:2a:8c:8a:40:
82:e1:d3:c7:b4:e9:45:17:be:92:08:d6:ec:4e:3b:
11:a9:0b:bf:c1:48:eb:1e:fe:a7:a0:03:96:84:40:
3e:14:a1:75:b9:15:07:91:d9:cc:47:c8:66:53:66:
96:bb:e0:43:44:2d:77:59:79:ca:18:d7:e4:38:f6:
73:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:71:CC:4E:49:9E:BF:83:05:C0:FE:80:0B:27:62:EF:EC:88:F3:FB
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/i3HMTkmev4MFwP6ACydi7-yI8_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.43.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:81:ec:93:1d:71:d1:a5:94:14:13:ed:a2:1f:ee:ce:4f:b4:
33:3e:1d:9d:1e:57:72:ac:db:c7:07:1a:e1:83:11:86:12:04:
65:d7:e3:f2:f6:b1:4b:f6:68:0b:e2:13:88:09:a7:fd:c9:5a:
dc:e2:3d:29:86:57:14:07:f8:94:fb:6f:de:ef:1d:07:ee:4b:
96:d2:3c:24:80:d5:a6:ce:95:05:2f:d1:84:9d:d4:bf:32:5f:
21:ce:88:f3:64:0b:01:36:f2:0e:e4:95:34:68:b2:ec:c6:f3:
ff:33:0d:dd:b6:85:42:84:c7:8f:9a:32:9f:93:a0:d8:0e:ec:
9a:41:83:61:64:eb:c8:3a:39:40:6c:a6:49:a4:b0:85:f5:b3:
5b:be:e9:61:e2:58:d8:99:2b:78:ac:01:fa:83:c9:bf:55:50:
db:07:2c:9c:1a:bc:d3:b3:8a:5b:0a:6a:6b:3c:d1:1b:d1:75:
b4:50:37:6c:84:a1:5b:0e:58:68:d5:e7:1d:a3:42:d0:f9:ba:
55:51:a0:d4:95:c7:14:e6:5d:93:70:35:57:f4:43:ff:a2:0d:
a1:fb:96:85:f6:75:3c:8f:12:88:d0:2b:24:92:40:71:43:72:
1f:9b:72:28:4e:37:2e:b5:48:cd:e0:af:8b:7f:21:6e:0f:8d:
db:42:e7:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:37 2024 by rpki-client on console-fra.rpki-client.org