Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/7yGEiO-65wKxv7eU2mAZSmaM0IY.roa
File: 7yGEiO-65wKxv7eU2mAZSmaM0IY.roa (raw, json)
Hash identifier: N52k2Ui5ORaT06xucq0JD0kenGn0gEF6mGM8W9QKMMo=
Subject key identifier: EF:21:84:88:EF:BA:E7:02:B1:BF:B7:94:DA:60:19:4A:66:8C:D0:86
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 018AA67A0948EC739B13A17E1C954D17E9F9
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/7yGEiO-65wKxv7eU2mAZSmaM0IY.roa
Signing time: Mon 18 Sep 2023 04:08:50 +0000
ROA not before: Mon 18 Sep 2023 04:08:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197860
IP address blocks: 109.105.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a6:7a:09:48:ec:73:9b:13:a1:7e:1c:95:4d:17:e9:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Sep 18 04:08:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef218488efbae702b1bfb794da60194a668cd086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9a:6c:f4:09:d5:2b:bd:09:6a:63:46:38:f2:
f7:4f:6d:94:10:a1:9e:eb:44:c7:e8:62:28:4d:3d:
5a:9d:60:86:00:a1:70:59:db:fb:ad:21:f3:c9:4c:
5d:23:e8:8b:2d:d2:49:07:47:89:77:9d:23:fb:7c:
7b:8a:46:6a:d8:60:0f:87:bd:0b:a0:fc:95:47:a1:
b3:a3:c1:c4:30:56:7e:04:3f:47:6f:15:54:87:3b:
16:7a:08:4c:a0:87:a9:5b:c7:51:16:36:40:0a:de:
d9:1d:8a:95:fa:85:16:3e:65:be:89:e1:74:18:f6:
51:05:37:e8:39:46:5a:e6:20:09:0c:95:bc:f3:84:
a3:0f:42:9e:0f:c5:ec:94:9e:9b:19:75:46:e3:9a:
72:47:f8:6f:36:d3:a1:74:a0:8f:19:99:22:27:a8:
e7:4d:61:d8:4f:05:22:42:84:ea:c4:1b:a8:a7:c6:
19:ec:ee:86:e4:5d:80:35:9a:52:60:36:66:d7:f2:
73:61:98:ba:ad:cc:69:a7:d5:5d:2e:49:f8:d0:97:
3c:cf:0a:32:56:ed:c3:07:60:46:92:8c:64:ad:9b:
ac:2d:02:c7:e4:68:e4:58:61:7c:7b:89:25:40:ce:
3e:1b:7c:53:d9:3e:41:de:93:10:18:b4:4f:04:e6:
8f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:21:84:88:EF:BA:E7:02:B1:BF:B7:94:DA:60:19:4A:66:8C:D0:86
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/7yGEiO-65wKxv7eU2mAZSmaM0IY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.193.0/24
Signature Algorithm: sha256WithRSAEncryption
37:01:b3:1f:15:2d:b5:0a:87:7a:dd:0a:60:ea:13:cc:8d:fa:
09:ec:73:03:7e:ec:16:37:b7:31:10:98:69:73:e5:92:46:40:
d3:96:60:4f:36:35:73:10:a8:35:d7:d9:9a:96:62:b3:1b:1d:
6d:27:33:47:fc:c4:84:4c:ca:fb:36:b3:7c:1b:6c:6c:c9:ec:
43:10:a6:77:42:a4:5c:ff:15:df:d9:7f:d6:0e:f7:74:c9:96:
0f:6a:87:79:55:e6:ab:44:47:8f:b1:e1:ee:a4:d0:a2:a6:54:
e8:b8:ab:bb:c7:90:45:0f:4e:84:87:cb:08:10:89:ca:ee:21:
eb:8e:96:5b:51:7b:0c:0c:d9:bb:2c:fa:58:64:6e:8d:62:c2:
d2:78:ef:d0:7f:8e:55:b2:da:38:bd:ae:da:14:2a:cc:33:a2:
a3:b8:a2:d8:c3:28:ff:6e:72:10:c6:75:80:3b:aa:38:8a:2f:
2a:ea:6b:db:51:d0:a1:5f:08:dd:dd:39:d8:25:18:4e:ac:49:
b0:21:7a:d3:00:e2:30:b6:d6:03:80:a6:65:33:47:6e:b8:a4:
c6:50:38:ea:86:b3:b5:78:ea:44:8b:4b:d9:be:c4:e0:07:5d:
36:fc:90:b2:2c:b3:29:59:b5:8b:5f:5e:e5:02:42:27:3c:8f:
9f:c8:a7:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org