Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/YABN7jMNdvt8BLrsQng9Lj81MDo.roa
File: YABN7jMNdvt8BLrsQng9Lj81MDo.roa (raw, json)
Hash identifier: DUlj79/RuoxWW2aZ2vpD3zgDzlmchHUUF30idkz1lS0=
Subject key identifier: 60:00:4D:EE:33:0D:76:FB:7C:04:BA:EC:42:78:3D:2E:3F:35:30:3A
Certificate issuer: /CN=22a44566764ebb511683cb6228fa91997b559379
Certificate serial: 01915AA536D30C3017EDB956056785C51D72
Authority key identifier: 22:A4:45:66:76:4E:BB:51:16:83:CB:62:28:FA:91:99:7B:55:93:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqRFZnZOu1EWg8tiKPqRmXtVk3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/YABN7jMNdvt8BLrsQng9Lj81MDo.roa
Signing time: Fri 16 Aug 2024 10:04:22 +0000
ROA not before: Fri 16 Aug 2024 10:04:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210644
IP address blocks: 109.237.98.0/24 maxlen: 24
109.237.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Sep 2024 08:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5a:a5:36:d3:0c:30:17:ed:b9:56:05:67:85:c5:1d:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a44566764ebb511683cb6228fa91997b559379
Validity
Not Before: Aug 16 10:04:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60004dee330d76fb7c04baec42783d2e3f35303a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:bd:95:92:58:38:4c:87:c0:12:1d:29:1d:84:
09:80:8a:a0:f0:0d:4a:65:5b:b4:96:74:b1:f0:a9:
4e:a5:c2:aa:3f:ca:8f:b8:65:92:d0:a2:78:cb:98:
60:3b:43:1e:12:f0:94:5e:1b:1f:cd:4e:d8:6a:cd:
96:8a:97:9c:14:8a:f6:52:2e:b0:0b:25:50:84:90:
ac:92:40:98:2c:d8:7c:c1:42:2a:2f:27:b2:a1:b3:
aa:f1:61:30:e9:d4:a6:6a:2e:be:2f:11:84:f1:88:
78:6b:c1:9d:f8:93:03:55:96:27:69:60:61:3b:a4:
43:99:ca:19:8c:51:59:27:7f:93:b6:16:4e:83:2d:
18:bd:98:1b:bd:e6:bb:a9:f0:26:59:b9:e3:e4:8e:
ab:b3:e2:08:c4:d3:20:82:cb:58:df:33:fd:57:33:
9a:ea:84:f3:a5:4b:ca:41:10:b4:27:a9:fb:3c:d5:
7b:97:ff:b2:11:c4:e6:d3:cf:87:20:74:77:db:c0:
c1:68:7c:c3:a6:9e:0a:fd:c1:ea:d0:e8:c4:30:87:
46:9f:b0:7e:5f:e0:2f:d1:87:2a:25:b7:f8:48:04:
71:e9:f1:a2:58:69:b8:7f:8d:11:ca:cc:91:1d:06:
1b:45:5f:8d:c4:33:ce:5e:d9:25:9d:05:52:e9:7f:
ac:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:00:4D:EE:33:0D:76:FB:7C:04:BA:EC:42:78:3D:2E:3F:35:30:3A
X509v3 Authority Key Identifier:
keyid:22:A4:45:66:76:4E:BB:51:16:83:CB:62:28:FA:91:99:7B:55:93:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqRFZnZOu1EWg8tiKPqRmXtVk3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/YABN7jMNdvt8BLrsQng9Lj81MDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/IqRFZnZOu1EWg8tiKPqRmXtVk3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.237.98.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:47:fa:dc:95:ad:6e:b0:71:c7:d5:26:3b:f3:69:af:fe:3b:
32:b0:44:e2:9d:18:c0:8c:ef:2c:22:b9:7e:9c:c6:71:ce:bf:
f7:c9:27:a7:d6:6f:b6:b7:ff:94:1c:08:11:94:76:5f:33:4c:
ce:78:60:d6:c9:ab:12:ef:78:f2:51:e8:55:53:ea:e5:65:56:
e0:73:57:66:95:15:4f:a7:94:c6:32:bf:ab:b0:5b:51:56:f2:
5b:72:bc:2c:2e:a0:8c:69:2c:f0:cf:00:c4:a8:21:02:94:75:
70:0c:1b:cb:4c:87:c1:89:4f:31:37:62:08:83:7e:aa:03:16:
5c:20:fc:1e:64:7d:29:76:b4:59:34:7a:b9:21:5d:49:67:e6:
7c:fe:a0:27:12:20:80:88:c3:61:16:54:46:a7:b6:0f:b8:90:
4a:6b:e8:01:65:e6:bb:70:b0:64:d4:56:a2:b3:af:1e:76:8c:
d6:70:5d:9c:9e:7d:4a:72:f1:36:8b:73:a0:21:58:0f:27:51:
7d:81:69:5d:c2:b3:49:52:8d:88:2c:10:cd:cb:50:da:bf:45:
00:8c:bb:2a:76:fc:3a:6e:5e:b1:3f:b7:bc:08:02:d9:91:52:
02:b2:01:51:61:6a:00:10:64:3c:8d:86:6b:43:6b:81:f4:be:
5d:de:ba:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:21 2025 by rpki-client