Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/jyGhft7ItK78c92q1iyeptL2Uhg.roa
File: jyGhft7ItK78c92q1iyeptL2Uhg.roa (raw, json)
Hash identifier: lPRArogJ4i7PXczs1GhYQ0AdRj07+1Mn12B/6KBdfLs=
Subject key identifier: 8F:21:A1:7E:DE:C8:B4:AE:FC:73:DD:AA:D6:2C:9E:A6:D2:F6:52:18
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018833682B5F2B9409FB58CF8305745A1B66
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/jyGhft7ItK78c92q1iyeptL2Uhg.roa
Signing time: Fri 19 May 2023 09:47:24 +0000
ROA not before: Fri 19 May 2023 09:47:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398395
IP address blocks: 109.122.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:33:68:2b:5f:2b:94:09:fb:58:cf:83:05:74:5a:1b:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: May 19 09:47:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f21a17edec8b4aefc73ddaad62c9ea6d2f65218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ff:64:b7:72:bf:5c:f0:9a:17:fd:67:b5:40:
e5:c5:d7:12:29:a5:30:9e:df:df:04:de:a9:80:3f:
15:7b:57:fd:50:8a:8d:a1:0b:a0:89:4d:fa:cd:b5:
34:27:5a:c3:b3:6c:63:dd:9d:82:29:d1:96:69:29:
23:84:7b:2a:7e:33:03:bb:d5:bd:48:0a:eb:af:fa:
52:2c:d5:a2:ec:9f:f5:67:cc:70:84:a4:1b:f8:a4:
32:c3:5d:b1:33:a6:67:3c:7b:2e:25:b7:8a:b0:82:
82:f6:69:dd:f3:48:1c:45:77:7a:2c:7e:8b:43:e5:
ae:c8:39:30:e1:18:f9:c0:2a:3d:6a:77:72:9b:d4:
5b:47:cf:77:fb:8b:59:a5:95:97:fd:88:f5:02:f0:
0c:2f:0c:4c:63:4a:b7:2e:08:12:11:27:e5:f8:87:
83:00:e1:39:f4:87:e7:35:1d:b9:fb:b2:ec:69:60:
98:d1:22:b8:6c:33:dc:ff:f8:bf:cf:b3:ac:24:76:
0e:39:98:19:91:75:0e:38:12:f2:66:f6:d0:75:26:
b8:3d:76:5b:d6:20:97:da:5c:13:be:c7:a3:d1:fa:
c2:9c:8a:46:f9:e5:df:1a:ee:8c:7e:68:bb:11:84:
a1:62:af:7e:10:23:79:61:c4:5b:fc:a2:f1:e1:03:
f2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:21:A1:7E:DE:C8:B4:AE:FC:73:DD:AA:D6:2C:9E:A6:D2:F6:52:18
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/jyGhft7ItK78c92q1iyeptL2Uhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.46.0/24
Signature Algorithm: sha256WithRSAEncryption
13:51:83:02:4a:b6:6f:9a:23:5a:d4:f3:97:91:d2:6a:cc:c7:
00:d9:a7:ec:8e:23:84:f4:76:5e:a4:39:9c:4b:dd:72:33:c3:
15:52:1a:57:62:28:0c:58:0f:ea:01:ed:be:36:a5:4c:6b:d0:
c8:51:6a:ac:14:53:f0:b1:87:06:64:f0:29:aa:63:e7:18:98:
a9:bb:ab:67:63:9e:eb:50:5a:6a:93:d4:e3:92:22:4f:cb:9b:
d9:30:86:4b:e7:6a:e7:37:19:f4:d7:9c:f8:82:b8:90:5f:77:
5f:e3:a4:a6:47:e0:86:65:3e:fa:35:91:8e:37:88:84:fb:fe:
cd:39:7c:73:ee:f0:1b:7c:10:c6:57:01:4a:54:11:f0:31:72:
52:be:a8:a2:6c:15:e0:49:4e:54:0a:10:24:0c:11:66:20:a4:
20:cc:a1:f9:20:36:48:eb:a8:77:b6:12:2a:f5:01:6a:02:99:
97:77:f9:0f:28:89:a9:21:57:95:08:f0:16:67:95:a0:a2:3f:
f6:a4:69:e7:a3:23:3d:af:01:5f:18:4d:75:78:01:b8:4e:95:
44:3a:72:06:fc:d4:36:60:0b:7b:ae:40:cd:25:f2:5e:f4:f9:
4f:1d:88:cd:3c:45:05:47:6d:74:7e:a9:a1:6d:b9:c4:0d:b5:
a3:c1:5b:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:37 2024 by rpki-client on console-fra.rpki-client.org