Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/Yjetk6V5YC1BSxWS1wslh5Zv8YU.roa
File: Yjetk6V5YC1BSxWS1wslh5Zv8YU.roa (raw, json)
Hash identifier: K8/TAF0TyTCBNVdf2Uzm+MmidJqnw7r7harxTTixLjo=
Subject key identifier: 62:37:AD:93:A5:79:60:2D:41:4B:15:92:D7:0B:25:87:96:6F:F1:85
Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Certificate serial: 01856BA59BEEAE1A08D274F6E7316FBB8167
Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/Yjetk6V5YC1BSxWS1wslh5Zv8YU.roa
Signing time: Sun 01 Jan 2023 04:44:53 +0000
ROA not before: Sun 01 Jan 2023 04:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44259
IP address blocks: 109.235.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 09 Jul 2023 15:58:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:a5:9b:ee:ae:1a:08:d2:74:f6:e7:31:6f:bb:81:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Validity
Not Before: Jan 1 04:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6237ad93a579602d414b1592d70b2587966ff185
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:54:7d:9d:4c:42:11:ae:ec:a3:91:25:4e:23:
d3:97:7e:89:fb:30:1f:f8:7d:71:91:44:f3:b3:40:
60:ed:8e:23:bf:aa:c4:0e:7c:fa:73:0a:1a:84:2d:
b0:c1:eb:7d:42:7f:e4:60:8d:63:9f:c0:8a:e0:3c:
37:7c:57:ac:49:96:f4:93:05:44:fa:14:2b:10:32:
62:60:da:30:ae:23:05:47:db:03:96:65:da:d8:a9:
e5:29:3f:3a:6f:6c:0d:b0:5c:74:ca:a9:a1:a6:79:
94:4c:83:53:dc:be:b1:18:17:64:86:91:6f:3f:c2:
56:8a:41:49:98:af:1c:4f:97:d9:7f:1f:5d:3a:e6:
f3:90:23:09:db:b1:35:b1:94:9d:6a:22:0e:27:5b:
6c:5f:00:a7:45:e7:dd:a0:6e:52:6a:bd:5e:8f:5a:
28:ad:c3:b2:50:bf:c1:55:ad:93:f7:4c:2d:3a:a1:
ac:69:ac:15:42:9e:00:91:46:32:43:cb:ea:31:73:
d6:a2:08:ac:04:0f:87:bf:ae:51:8a:c7:f1:35:3b:
bb:10:4f:43:9a:9e:fc:71:e9:f0:75:af:5a:80:ec:
17:ff:29:d8:f1:33:e4:91:90:b2:6d:6c:f8:83:59:
a0:26:2a:e9:6b:8a:5b:f3:2d:af:a1:d4:d7:eb:37:
ca:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:37:AD:93:A5:79:60:2D:41:4B:15:92:D7:0B:25:87:96:6F:F1:85
X509v3 Authority Key Identifier:
keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/Yjetk6V5YC1BSxWS1wslh5Zv8YU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.235.55.0/24
Signature Algorithm: sha256WithRSAEncryption
08:86:2c:bc:59:42:f0:6a:3d:1d:4e:79:bb:02:b5:9e:da:e5:
ee:6d:c6:ed:60:59:a4:fb:e0:f6:ad:44:71:98:39:bc:77:d6:
db:f5:a3:a7:1c:05:28:74:d7:fe:3e:2c:d4:6a:00:fd:31:89:
9f:76:53:5d:7e:ea:4d:58:5a:36:57:3c:70:d0:92:c3:cc:22:
2a:d2:d6:96:f4:f3:d1:95:d9:20:51:37:61:82:a0:6e:fc:03:
36:b8:44:34:31:4f:9d:4e:d0:28:7b:e5:5d:e6:78:b2:34:cb:
fd:00:d3:c0:de:34:fb:88:92:f1:bf:5f:1b:0b:fd:ca:f5:3a:
c1:54:0f:a4:5b:72:58:58:29:60:3e:18:e1:64:f0:68:91:f6:
cd:21:93:58:8a:16:b8:bc:a5:a7:7c:06:d0:c8:2e:43:f5:52:
81:26:df:ad:57:f1:0d:ab:b2:b5:62:3e:c9:8c:13:97:6a:db:
1c:3d:14:a3:d2:3d:ae:ed:ca:6d:84:e6:06:d7:1a:ce:0c:d2:
39:7e:18:38:7e:62:ee:58:9a:39:4d:48:47:97:ba:2d:3a:09:
f6:3c:c9:26:1d:ab:6b:55:0e:e5:44:03:7a:eb:1b:02:e8:e9:
9d:d2:95:38:88:50:68:b8:a4:9b:0c:55:86:85:88:ce:98:1a:
f9:02:d8:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:40 2024 by rpki-client on console-fra.rpki-client.org