Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/vV4w5XgP44uPF7gWJY0MWRLLO1w.roa
File: vV4w5XgP44uPF7gWJY0MWRLLO1w.roa (raw, json)
Hash identifier: FJa1UF4PYW/n4WPc/yO3VMB024PbMSdX28sTtSM+SUc=
Subject key identifier: BD:5E:30:E5:78:0F:E3:8B:8F:17:B8:16:25:8D:0C:59:12:CB:3B:5C
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018F5B3E3DDC4550AEDAC032B58A05A7BB3F
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/vV4w5XgP44uPF7gWJY0MWRLLO1w.roa
Signing time: Thu 09 May 2024 02:45:56 +0000
ROA not before: Thu 09 May 2024 02:45:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 109.122.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 May 2024 02:25:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:5b:3e:3d:dc:45:50:ae:da:c0:32:b5:8a:05:a7:bb:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: May 9 02:45:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd5e30e5780fe38b8f17b816258d0c5912cb3b5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3f:9e:fd:20:32:3a:d3:54:40:2f:82:9e:94:
5f:a7:57:de:93:f3:56:1f:4d:51:38:cf:0e:df:66:
93:f9:4f:8e:89:be:87:7d:64:47:aa:68:0d:fc:56:
1c:b2:45:a6:de:88:ed:95:53:26:cf:dc:66:fa:59:
b2:79:a3:a7:ce:08:45:6d:d5:b4:58:df:75:eb:e2:
a7:36:c6:6f:e6:5e:bc:fe:95:5b:8d:eb:86:54:aa:
42:88:a4:17:e5:f6:a6:b2:9a:48:ed:eb:80:fc:b5:
8c:0a:bd:f5:80:63:81:1f:2a:76:8d:4a:c4:d2:d3:
8e:0f:3f:bb:b2:25:3e:75:88:37:fd:ee:0d:30:80:
77:0d:98:62:74:13:ee:df:3b:93:6a:0e:46:ed:53:
09:59:ed:dd:48:92:2b:4f:b4:08:5b:14:88:e4:2f:
84:be:2b:cf:97:d5:76:dd:85:b0:b1:32:46:7a:d1:
87:11:0e:00:99:6a:01:1a:ee:83:40:a0:f9:48:13:
79:ed:7d:91:05:af:76:b2:b4:ea:13:68:66:07:e8:
24:3d:5f:e5:7c:12:9b:ca:13:96:41:71:48:01:5d:
47:bb:bc:25:26:2e:aa:ee:9d:a9:66:6a:c5:9b:24:
21:64:3a:75:81:ce:33:6a:96:3b:74:5d:8d:b3:85:
dd:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:5E:30:E5:78:0F:E3:8B:8F:17:B8:16:25:8D:0C:59:12:CB:3B:5C
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/vV4w5XgP44uPF7gWJY0MWRLLO1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.46.0/24
Signature Algorithm: sha256WithRSAEncryption
16:3d:42:5c:0f:a4:3a:4d:13:e3:50:b6:87:66:16:e0:b8:80:
30:47:a5:00:f1:91:ff:37:b8:3c:3a:23:56:bf:69:5e:97:81:
4a:b6:47:fa:8e:59:3c:79:38:41:18:70:c9:f3:a5:5f:6d:11:
e4:c1:3d:d1:15:b2:6d:d2:d7:be:13:a2:d6:c1:ef:49:c3:76:
bb:39:82:14:d4:61:16:67:26:7a:36:5e:45:35:db:c7:82:07:
c8:ea:d9:be:21:cc:f2:a7:e9:77:0c:8f:7d:74:44:3a:2d:88:
98:87:78:c4:81:a1:9c:79:df:a1:a3:d4:0b:af:2e:1d:c3:d7:
e8:ce:70:47:e1:f4:4d:00:88:20:b1:b1:db:04:fb:b2:22:34:
4d:04:f9:e9:95:61:86:0c:47:69:5c:aa:bf:d8:fc:96:2f:54:
cd:05:89:ba:25:eb:69:08:a4:ce:e2:27:29:05:3e:e3:8f:4c:
e7:af:9f:35:c9:b7:c9:c1:b2:45:74:98:95:36:30:db:85:8a:
91:8d:e6:64:b4:f4:53:53:11:1d:5a:79:5f:ae:88:81:5d:7d:
dd:73:73:2e:a3:3b:29:4c:79:aa:78:34:16:ad:37:a7:e1:a2:
25:64:8c:c3:ab:10:b0:b4:4c:9e:f5:ef:a5:83:0f:55:de:bc:
00:5e:8b:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:37 2024 by rpki-client on console-fra.rpki-client.org