Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/1CRlF_5cx6sGG-nSkbTK74lJH0U.roa
File: 1CRlF_5cx6sGG-nSkbTK74lJH0U.roa (raw, json)
Hash identifier: 5Nf1KR/3LIxCkbD++sHT0mzH+xrPvyBmyk2+t+wEph8=
Subject key identifier: D4:24:65:17:FE:5C:C7:AB:06:1B:E9:D2:91:B4:CA:EF:89:49:1F:45
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 018764608F8A71D94A557F3814F222C07588
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/1CRlF_5cx6sGG-nSkbTK74lJH0U.roa
Signing time: Sun 09 Apr 2023 04:57:42 +0000
ROA not before: Sun 09 Apr 2023 04:57:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.105.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Apr 2023 08:45:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:64:60:8f:8a:71:d9:4a:55:7f:38:14:f2:22:c0:75:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Apr 9 04:57:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4246517fe5cc7ab061be9d291b4caef89491f45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:16:34:db:58:15:b3:1d:6e:3b:c5:44:9d:a9:
2a:78:2d:66:96:66:b3:fa:76:b9:28:0f:b4:ab:0b:
86:d3:a2:cf:c8:18:24:dc:07:0a:ff:e5:76:f2:86:
82:52:2c:90:4e:9d:7e:86:e7:e4:d2:f2:be:25:77:
0a:b5:51:b1:fd:3a:68:dc:aa:12:39:04:d2:32:e7:
61:d0:16:f4:72:b1:35:81:dc:59:8e:c7:b6:76:0e:
1d:d8:23:a8:c7:a9:08:63:b6:c6:21:7b:b7:76:ce:
c8:b7:7f:50:46:b3:9c:4a:e9:64:75:0c:54:e3:1b:
86:d9:fa:2d:fb:97:6e:05:45:e3:3b:75:48:ca:f8:
bb:13:92:de:fc:61:ae:72:6d:82:6f:5d:c3:27:c4:
3b:70:4d:fd:ad:7d:52:ee:bb:87:c9:c0:ca:c1:d2:
85:f8:ae:c6:a8:01:6f:11:56:5b:d1:8d:4e:97:5b:
6e:09:46:e3:ef:17:7d:4c:ba:7e:63:94:be:ba:8d:
a1:3d:d3:39:6e:af:07:c1:89:ae:b1:d4:0b:ed:58:
4f:66:cb:3c:b6:d8:74:7e:8f:87:56:c4:14:9a:14:
5e:81:61:aa:a7:cc:00:48:82:cb:2d:3b:84:ff:3a:
8d:69:91:8c:1e:ee:12:14:20:69:a7:b2:e2:98:0b:
fe:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:24:65:17:FE:5C:C7:AB:06:1B:E9:D2:91:B4:CA:EF:89:49:1F:45
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/1CRlF_5cx6sGG-nSkbTK74lJH0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.193.0/24
Signature Algorithm: sha256WithRSAEncryption
62:75:bd:4c:c0:5e:bd:bb:16:ee:41:75:5d:f5:fd:25:2d:40:
d6:2b:db:fc:b1:b0:a2:ae:1e:2e:41:81:e4:ac:5a:0d:d7:2b:
66:bb:08:c6:01:1b:28:2c:e6:4c:ba:a4:3a:10:b7:30:c8:c8:
14:78:73:2b:ca:d4:2b:fd:3a:0d:0e:5c:34:a3:87:48:c2:0a:
02:ed:ac:f1:ac:04:ea:94:8a:ea:c1:3a:28:a7:57:76:2a:39:
50:cf:16:4f:2c:f6:da:d1:bd:b8:10:7a:86:9a:2e:1a:c3:78:
0e:fc:8a:f1:28:40:11:3c:ca:88:cc:df:10:7b:38:c8:3e:51:
3a:b0:9a:6f:93:c6:d9:a1:ea:e5:3d:ab:b5:41:46:33:00:44:
74:6b:fb:6c:e3:f1:1b:5c:19:e0:78:02:9c:90:5f:4e:9f:da:
94:da:2a:9e:f4:2a:c6:ae:94:cf:b1:00:8e:4e:85:7c:f7:e4:
d0:f4:c1:5a:7c:ae:d1:8d:b1:e0:f7:08:1d:3b:47:da:17:d7:
d8:79:10:c0:32:f5:60:bc:12:67:32:83:52:13:ac:4c:63:7e:
bc:e2:b8:10:cc:e2:cb:1f:07:11:21:39:35:30:b0:2c:d8:87:
f3:fe:ee:9d:5f:19:95:fc:98:35:5d:3c:98:21:fc:ea:58:36:
9b:bd:a5:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org