Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/4e_5ezEovQaCvFeTuTzUoQinj2Y.roa
File: 4e_5ezEovQaCvFeTuTzUoQinj2Y.roa (raw, json)
Hash identifier: VLn9ktS/QyVMTmnyXM1u164W0GpvKFBKNGwVDMnsmUA=
Subject key identifier: E1:EF:F9:7B:31:28:BD:06:82:BC:57:93:B9:3C:D4:A1:08:A7:8F:66
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 019006E64C984285604DD18F87BD0A540889
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/4e_5ezEovQaCvFeTuTzUoQinj2Y.roa
Signing time: Tue 11 Jun 2024 10:44:34 +0000
ROA not before: Tue 11 Jun 2024 10:44:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 109.105.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Jun 2024 19:28:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:06:e6:4c:98:42:85:60:4d:d1:8f:87:bd:0a:54:08:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jun 11 10:44:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e1eff97b3128bd0682bc5793b93cd4a108a78f66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1b:39:1a:23:04:d4:49:e1:05:f7:c3:37:fd:
3e:32:50:81:90:cd:d6:3e:6b:53:c3:e5:5c:96:68:
64:ff:98:c3:e0:80:fb:c2:08:ba:9c:2c:13:d9:8c:
32:8b:41:89:d1:b2:56:30:29:86:e1:6e:93:ed:35:
cd:90:cf:b8:51:01:12:3a:f9:9d:86:73:03:ef:1f:
79:c8:e6:26:7c:a8:9c:40:2c:59:33:c0:98:25:b3:
66:54:e8:df:83:59:fb:ad:39:43:1d:3f:0d:72:dd:
fc:25:02:b8:32:6f:8e:63:f5:de:a8:89:6f:ff:f0:
37:61:ed:4d:d5:94:ff:7f:11:43:21:18:ff:b8:d5:
5e:7c:02:87:c1:99:85:f5:82:67:4b:b5:4c:d5:ea:
b9:b3:82:17:7b:8f:28:54:8a:1f:96:9f:67:28:54:
b8:01:83:36:2b:09:35:5a:2f:be:d2:70:36:db:72:
d8:8c:f3:0d:7d:73:23:28:1a:de:28:d0:5e:67:65:
27:17:8e:d7:80:37:91:99:11:db:3c:55:4d:6f:99:
42:ab:5e:c7:57:d4:82:ed:fd:a6:af:fc:aa:b8:89:
3b:70:b6:e3:47:27:08:05:4d:2c:b4:83:c7:d5:ec:
58:0f:b6:6e:d8:fa:ea:88:94:dc:de:26:98:be:f3:
db:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:EF:F9:7B:31:28:BD:06:82:BC:57:93:B9:3C:D4:A1:08:A7:8F:66
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/4e_5ezEovQaCvFeTuTzUoQinj2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.194.0/24
Signature Algorithm: sha256WithRSAEncryption
82:4a:ac:df:1f:91:77:27:0b:f5:c5:e7:b8:14:a1:a0:08:4b:
4f:d8:29:8f:61:10:56:60:97:7a:cb:f8:79:8a:b7:1f:05:07:
c0:03:e4:54:ca:51:02:33:03:f7:34:1a:eb:87:05:22:87:78:
a2:88:1b:fe:85:7d:13:dd:c0:8a:57:10:66:7c:e3:a6:fb:4b:
e1:85:b4:ad:7f:67:ee:71:cc:bd:30:46:c9:ae:d2:70:05:15:
01:3e:17:1d:a4:fb:9a:a5:0a:e6:4a:a2:f9:47:5d:29:ea:8b:
f2:4d:ea:64:a8:d2:ff:a6:b5:92:ce:6e:fd:c6:b2:78:ca:17:
11:f8:4e:8b:0e:c4:44:25:3a:17:2b:6e:dd:c0:75:84:0a:9f:
97:d0:60:82:7d:4f:90:a6:92:3a:da:b4:a4:13:aa:68:e4:5f:
56:50:40:cf:54:3e:e2:7c:9f:d8:71:01:06:9d:ec:6e:98:34:
d2:2d:0b:ca:6f:41:e5:1e:98:26:77:8c:0a:a8:8f:b6:4e:e0:
fc:35:f5:c4:ba:6c:c7:1c:e4:a0:83:69:21:e1:28:c5:0e:65:
16:e8:24:8b:00:84:55:a2:f6:62:7b:ad:68:4e:af:e4:3b:d9:
66:ce:6f:a9:16:2c:fc:0a:b5:00:4d:d5:05:95:a4:73:88:5d:
16:c8:c4:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 14 20:36:13 2024 by rpki-client on console-fra.rpki-client.org