Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/kCoJciAjWehlogjE2jlaPW9G1Ik.roa
File: kCoJciAjWehlogjE2jlaPW9G1Ik.roa (raw, json)
Hash identifier: pjDGRjXxuyggXDb+OiVznJVvK6Go0CgsfOhNl1IssFQ=
Subject key identifier: 90:2A:09:72:20:23:59:E8:65:A2:08:C4:DA:39:5A:3D:6F:46:D4:89
Certificate issuer: /CN=22a44566764ebb511683cb6228fa91997b559379
Certificate serial: 01856BCA356293DE4F1B2F562DB6629888F5
Authority key identifier: 22:A4:45:66:76:4E:BB:51:16:83:CB:62:28:FA:91:99:7B:55:93:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqRFZnZOu1EWg8tiKPqRmXtVk3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/kCoJciAjWehlogjE2jlaPW9G1Ik.roa
Signing time: Sun 01 Jan 2023 05:24:52 +0000
ROA not before: Sun 01 Jan 2023 05:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57093
IP address blocks: 109.237.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ca:35:62:93:de:4f:1b:2f:56:2d:b6:62:98:88:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a44566764ebb511683cb6228fa91997b559379
Validity
Not Before: Jan 1 05:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=902a0972202359e865a208c4da395a3d6f46d489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9d:87:96:9f:98:1e:ca:20:52:d3:2a:f3:f0:
36:ff:eb:57:86:fe:ad:a4:a3:3b:cb:bf:ea:ee:78:
ce:71:08:fc:e3:22:30:02:ca:2b:e5:87:74:df:30:
b2:55:e2:32:ee:e4:f3:11:7a:e6:17:ca:02:26:94:
b6:60:11:52:01:45:cf:4c:51:ae:01:52:76:1c:7c:
bb:e6:f0:2a:3c:0a:50:d6:ed:66:be:70:ec:54:69:
28:cf:bc:16:84:17:67:24:82:24:2a:17:9a:5a:4d:
56:9b:93:7a:2d:71:32:35:9e:59:05:f2:6c:22:cc:
ca:3a:ef:21:bc:d4:f8:8b:3b:06:a9:c9:0f:91:0a:
ea:28:a4:f7:f3:f0:c0:73:70:c7:c6:c5:0e:d2:27:
f4:8c:43:26:f0:4d:c5:8b:de:8e:cb:f6:1e:83:4b:
44:d1:d7:a0:46:c5:da:84:b3:59:c7:d9:c5:19:56:
3d:9c:ed:7d:ea:0b:04:2e:20:5c:e9:d6:46:1f:1d:
06:cd:9e:22:a6:54:01:4c:d0:96:0d:fd:eb:ef:72:
bb:d7:ae:a7:9e:dd:24:f3:d7:ba:6e:68:97:5f:2a:
02:e1:5e:a4:fc:d3:2b:04:8e:6c:96:ba:da:34:e6:
1a:de:89:a1:5b:f4:20:1d:58:f8:67:30:5d:df:9a:
08:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:2A:09:72:20:23:59:E8:65:A2:08:C4:DA:39:5A:3D:6F:46:D4:89
X509v3 Authority Key Identifier:
keyid:22:A4:45:66:76:4E:BB:51:16:83:CB:62:28:FA:91:99:7B:55:93:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqRFZnZOu1EWg8tiKPqRmXtVk3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/kCoJciAjWehlogjE2jlaPW9G1Ik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/IqRFZnZOu1EWg8tiKPqRmXtVk3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.237.100.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:f5:5e:70:30:9d:10:3d:d8:b5:85:d8:70:bc:e9:c3:70:d4:
12:f9:2b:08:3e:52:d5:e2:d1:a9:29:ca:ea:ed:bb:ea:ef:02:
cd:d6:f4:3b:b4:25:64:0e:c5:79:d5:a3:6b:df:e2:4c:0f:04:
fe:94:31:e2:94:4c:c5:0f:a8:e3:6d:c0:56:ed:04:66:6d:c7:
fb:31:97:68:08:af:2f:e1:eb:e0:b9:97:bf:bf:3f:69:56:9b:
d1:9c:49:68:ed:6e:cd:9e:50:a5:76:5c:1d:9a:59:bc:c7:13:
5f:ee:db:74:9a:61:cd:f8:e7:44:4d:d2:00:7c:7f:8c:39:5b:
ea:43:42:30:43:f7:91:a9:69:b1:81:02:74:5c:eb:d5:de:66:
1e:77:d1:1e:d0:25:f7:6a:28:90:92:ea:33:ec:ce:85:34:37:
b8:3d:3f:8f:8e:b8:a9:fc:76:01:a8:51:08:46:be:21:17:64:
fb:f0:bd:b1:18:c3:b2:1f:01:95:a5:9b:1d:f0:4f:85:a6:2c:
2d:49:0a:f2:00:07:68:b5:04:bf:ec:81:7d:d9:ab:e1:9d:b2:
ef:f5:a7:10:16:03:ba:75:66:c4:84:26:2d:06:be:85:0c:bd:
07:02:c4:7e:e3:c0:8c:83:e4:99:f5:1a:56:80:c2:50:22:41:
2a:8d:77:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:51 2024 by rpki-client on console-ams.rpki-client.org