Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/5HWVnoz9E8PDY8Xbs5ZmdcYZBEY.roa
File: 5HWVnoz9E8PDY8Xbs5ZmdcYZBEY.roa (raw, json)
Hash identifier: spVigwlRDvRiVAKHR0NU0mzJ++PAEF1ab2gMONq3Fhs=
Subject key identifier: E4:75:95:9E:8C:FD:13:C3:C3:63:C5:DB:B3:96:66:75:C6:19:04:46
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 0189C8728EDF61CC87132F106CD2E8706806
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/5HWVnoz9E8PDY8Xbs5ZmdcYZBEY.roa
Signing time: Sun 06 Aug 2023 01:24:58 +0000
ROA not before: Sun 06 Aug 2023 01:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 109.105.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 17 Sep 2023 01:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c8:72:8e:df:61:cc:87:13:2f:10:6c:d2:e8:70:68:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Aug 6 01:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e475959e8cfd13c3c363c5dbb3966675c6190446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8a:e8:fd:fb:6f:fc:4e:b5:d7:14:80:88:28:
2b:f4:db:c5:65:22:6f:6e:4a:c1:ce:2b:bc:ce:18:
d5:d0:76:99:25:e1:b2:3f:7a:5a:cc:9c:1a:c4:2a:
7e:28:52:92:7e:fa:ac:81:5c:37:20:4f:aa:1e:16:
b4:9c:99:dd:9e:12:93:78:7d:83:74:9e:a0:0a:f1:
5a:4a:f4:6a:c4:ae:88:39:a4:27:74:d2:79:68:b5:
e2:c9:8e:44:98:d8:6a:fe:5e:21:d4:83:82:54:a9:
63:38:ad:2d:36:f9:cf:13:2e:ae:1d:a3:9c:68:3b:
ca:ee:b3:ee:c0:8b:e4:56:7e:55:23:74:78:2c:30:
19:13:4a:1a:2d:ce:59:a3:5b:4d:2a:90:28:48:ff:
60:de:2f:55:4a:7c:f7:20:8e:a6:82:5f:8b:a1:cd:
b1:1d:f7:81:a9:5d:88:e5:09:71:e0:b7:d8:60:c3:
92:fc:96:80:3a:22:40:41:48:da:8f:6f:1d:42:71:
7c:f1:b1:f5:cf:b5:f2:ba:be:47:a4:e2:de:a8:ba:
4d:24:26:f9:e6:6d:f7:81:2b:5e:f4:d8:b1:b0:97:
33:f3:fe:56:60:03:cc:2c:a5:9b:10:ad:d7:e9:b1:
70:0c:d5:96:50:93:76:9e:4d:00:0a:68:c4:5f:57:
8b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:75:95:9E:8C:FD:13:C3:C3:63:C5:DB:B3:96:66:75:C6:19:04:46
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/5HWVnoz9E8PDY8Xbs5ZmdcYZBEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.193.0/24
Signature Algorithm: sha256WithRSAEncryption
55:a0:c0:f3:f8:71:7d:23:bb:fe:c5:ae:61:bb:81:04:0d:4f:
b2:e2:5b:58:ef:cc:43:fa:9f:00:b8:72:25:55:ed:50:ab:4b:
11:bf:7e:0b:74:b4:c0:b9:66:56:06:fc:d7:3d:31:fe:95:1f:
c4:5f:5d:a5:92:16:00:07:5c:b6:fe:da:96:28:00:5e:92:eb:
87:7a:79:0a:41:96:42:ce:f2:3d:88:c3:89:98:2d:84:32:f6:
1f:15:a6:3e:26:69:02:6c:46:b1:43:26:5d:fd:91:d6:f0:f3:
58:4a:a9:1a:99:4b:3e:75:4a:71:92:c4:22:7b:25:6a:41:61:
79:74:6a:8b:c1:0d:6e:a5:04:49:dd:28:7a:a9:10:bc:d3:7c:
67:b9:0e:a8:3e:06:ee:24:75:90:0e:f9:8f:28:fc:29:59:b4:
39:67:46:0c:ae:82:c1:ac:d9:01:09:66:ce:91:27:f9:ec:16:
8f:b2:b8:25:ee:75:81:cf:ec:f7:e9:d8:84:c3:66:cc:73:c1:
12:54:14:9c:c9:27:bc:25:ee:1a:8b:93:dd:9b:c5:80:1d:82:
b0:1d:bd:2d:f5:a8:85:df:ef:62:c2:00:d5:bf:06:61:ce:f7:
73:f8:f1:68:dc:1d:81:0d:8a:dd:8b:f5:99:2d:54:e0:d8:ce:
8c:e6:3f:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org