Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/yzdq_hupPAZzcoW4ybd3PFkBoRc.roa
File: yzdq_hupPAZzcoW4ybd3PFkBoRc.roa (raw, json)
Hash identifier: A2m5MoP0CvPa/DNarR2RML6WRqgT0/HksTbny/zqKEg=
Subject key identifier: CB:37:6A:FE:1B:A9:3C:06:73:72:85:B8:C9:B7:77:3C:59:01:A1:17
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 01882EBC063A9DA24BBE236A04A1F3390660
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/yzdq_hupPAZzcoW4ybd3PFkBoRc.roa
Signing time: Thu 18 May 2023 12:00:54 +0000
ROA not before: Thu 18 May 2023 12:00:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.122.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 May 2023 04:02:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2e:bc:06:3a:9d:a2:4b:be:23:6a:04:a1:f3:39:06:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: May 18 12:00:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb376afe1ba93c06737285b8c9b7773c5901a117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3b:d4:ba:ae:81:0b:9c:19:6c:eb:9b:10:5f:
88:6f:76:c4:b4:54:e5:5d:b7:fe:79:c5:fc:0f:07:
c3:cb:6a:a0:10:07:8e:d5:ed:55:db:29:3a:48:27:
1c:b9:15:f5:1d:13:21:50:ac:98:81:5d:d1:61:bb:
de:a3:f6:8b:c4:a6:8c:be:c3:7d:6f:83:2b:63:35:
90:23:a2:92:08:b2:b1:47:1e:07:a2:34:16:3e:ca:
05:66:fd:46:73:30:a6:72:de:09:59:4b:5a:15:56:
cc:5f:a4:41:a5:0c:36:a8:b0:66:26:0a:c4:41:d5:
9d:c0:23:2b:5d:85:c8:f2:89:ca:39:ae:6d:60:7a:
60:2e:e2:11:5c:16:a8:d4:76:2b:a4:f9:7b:f1:ee:
46:e6:ab:0e:fe:b9:73:c5:3a:0c:70:23:76:6f:ac:
0d:dc:92:69:b9:fd:48:0a:c9:94:fd:07:69:33:d8:
91:80:26:d9:52:ff:cc:62:da:b3:4a:36:ec:3c:2b:
89:35:6f:d2:86:a6:c1:36:94:6f:47:d4:20:ed:8c:
df:32:1f:f5:1b:e3:47:d3:65:20:b7:e3:bf:95:92:
4a:df:0a:c6:0b:13:21:16:be:5c:b5:e4:c5:05:84:
cf:d7:f5:82:18:32:b3:0d:5b:30:d1:34:b3:52:2d:
9c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:37:6A:FE:1B:A9:3C:06:73:72:85:B8:C9:B7:77:3C:59:01:A1:17
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/yzdq_hupPAZzcoW4ybd3PFkBoRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.46.0/24
Signature Algorithm: sha256WithRSAEncryption
16:06:d1:4b:63:39:19:d3:cc:7a:8d:b9:37:a8:b1:59:11:43:
32:49:0b:16:3d:e4:7c:93:a0:e7:89:56:5d:42:6c:e0:73:53:
ce:6c:52:c0:7a:a7:84:cf:54:93:5e:0b:b5:c8:50:a6:54:8a:
f7:c1:be:70:7b:9a:62:69:50:6b:69:61:8b:e0:5e:a7:c3:d6:
4f:96:a7:10:09:4a:e0:31:d0:d8:bd:e7:21:97:93:d9:fb:07:
e9:3f:3f:60:e8:e9:d7:40:99:d1:c4:9c:09:6e:12:1a:54:a1:
ff:27:ac:0f:68:9e:0d:6d:89:10:45:42:28:5f:0c:26:98:a8:
55:b4:f5:ee:9d:cd:ad:da:78:9d:7c:54:39:10:02:d2:6e:c2:
96:f6:25:09:a9:7f:d4:b5:a8:f9:2d:c2:15:05:42:2e:54:7d:
ca:85:2f:54:bb:09:a4:ab:1d:b7:34:b5:de:e9:1b:25:8e:b4:
72:6e:13:df:a9:f5:74:9b:d5:8a:46:d5:f9:f8:08:95:c8:64:
72:04:8d:c6:86:c6:7a:05:a7:14:04:65:23:4e:1c:ff:29:5c:
14:4a:1d:c4:0c:b4:4b:2b:9d:23:69:78:e5:ed:0e:0e:1b:26:
c6:79:ce:fd:39:2f:f2:28:67:96:63:fc:36:03:9d:23:a0:3a:
9a:44:25:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:37 2024 by rpki-client on console-fra.rpki-client.org