Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/ZGcDINZDcW8DR91OljKL_ymdrlw.roa
File: ZGcDINZDcW8DR91OljKL_ymdrlw.roa (raw, json)
Hash identifier: 4j84jKX2VUgRgnTAwhZozrld99UgsTXEApG66LdRSt8=
Subject key identifier: 64:67:03:20:D6:43:71:6F:03:47:DD:4E:96:32:8B:FF:29:9D:AE:5C
Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Certificate serial: 01893BEE75491DF3306D45D4A376216223FE
Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/ZGcDINZDcW8DR91OljKL_ymdrlw.roa
Signing time: Sun 09 Jul 2023 18:33:50 +0000
ROA not before: Sun 09 Jul 2023 18:33:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44259
IP address blocks: 109.235.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3b:ee:75:49:1d:f3:30:6d:45:d4:a3:76:21:62:23:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Validity
Not Before: Jul 9 18:33:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64670320d643716f0347dd4e96328bff299dae5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9a:b6:a8:2f:f5:c9:63:3e:e2:64:24:2a:7c:
52:d2:e0:f0:98:48:7d:92:a0:eb:2d:27:5e:34:66:
b7:c9:bb:ee:32:1e:cc:d2:b5:79:1e:c1:bc:90:04:
bb:f4:ef:bd:d5:f2:e3:4b:51:db:88:92:0e:21:5a:
85:25:46:31:ce:a0:cf:65:9c:8a:47:56:f6:f8:78:
38:7e:0e:e2:90:37:f2:95:3d:34:f9:48:84:3c:df:
9f:46:36:d4:8d:99:35:90:e6:7f:a5:a1:7a:c4:42:
3c:5f:eb:4e:08:d2:61:35:64:f0:d9:d9:eb:3f:04:
02:7e:6b:6d:0c:1d:12:13:fc:75:f1:e7:16:5a:b6:
a3:49:0e:c9:89:a5:b8:b0:38:66:fb:89:b4:22:c1:
8c:22:55:c6:42:c0:0e:1a:38:3f:c6:2a:62:9d:3d:
ea:e4:04:9e:8f:33:61:a0:06:24:9d:c3:a3:78:82:
d8:64:65:0d:40:fd:6a:a9:03:c3:7f:c4:8d:92:b5:
89:a5:94:68:00:e4:97:f3:1d:7f:de:00:e7:d6:27:
03:c4:28:c4:54:3f:33:f1:ce:90:30:78:8a:5a:9c:
80:ba:f3:dd:08:92:8e:e8:f0:69:92:12:ea:c8:ff:
d7:40:22:76:96:20:7a:1d:f6:e7:04:2e:86:76:b3:
3d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:67:03:20:D6:43:71:6F:03:47:DD:4E:96:32:8B:FF:29:9D:AE:5C
X509v3 Authority Key Identifier:
keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/ZGcDINZDcW8DR91OljKL_ymdrlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.235.55.0/24
Signature Algorithm: sha256WithRSAEncryption
41:e3:82:3f:d0:4e:0f:c8:70:bf:34:46:a7:9a:1e:29:44:5f:
40:f5:a6:a7:f7:d0:63:29:91:1f:c1:ef:aa:f7:95:6c:f5:24:
44:dd:02:e9:b1:22:9e:bb:5e:25:78:52:00:b8:5d:64:bc:37:
aa:d4:8f:aa:ae:13:d1:0e:98:7d:c0:8a:58:bd:65:dd:1f:b9:
b6:d3:2d:cf:11:89:ba:90:0a:ea:51:bb:c0:40:ce:a3:b6:ff:
e0:4c:a5:29:ab:c4:20:f5:77:44:12:d4:0e:5d:e5:30:bc:f3:
53:a8:65:0e:e4:c4:ed:d7:52:f4:9f:d2:b0:bb:62:9e:de:c0:
18:f2:a1:32:21:a8:02:74:34:fa:c5:8e:7a:1a:90:89:4c:7c:
e5:5b:2f:38:98:94:73:a2:37:b8:97:48:fb:83:80:6e:0e:c2:
6c:42:df:6c:dc:16:84:53:e0:42:63:e2:20:90:e0:4c:cc:4f:
0a:da:fc:58:9d:06:0e:01:cc:43:de:af:f8:0e:36:77:91:75:
27:a9:9f:05:a6:73:58:4e:34:07:f1:79:8f:b1:e1:20:ec:37:
b3:d3:de:b3:18:66:c6:b7:99:b4:a7:c6:bd:bb:a8:df:9b:42:
25:74:10:20:c1:04:13:23:c0:c0:cd:c3:61:ed:8e:a7:27:d0:
fd:ca:e5:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:40 2024 by rpki-client on console-fra.rpki-client.org