Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/SoeCvJc-IcPVfk4GFZTXi8YLFf8.roa
File: SoeCvJc-IcPVfk4GFZTXi8YLFf8.roa (raw, json)
Hash identifier: VPBB5DVIVLRcqj8WTRrNfDzgM92XUv2WJE/P9mcnrb4=
Subject key identifier: 4A:87:82:BC:97:3E:21:C3:D5:7E:4E:06:15:94:D7:8B:C6:0B:15:FF
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 018AA0D555601BFF75971C4440A8AB52E111
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/SoeCvJc-IcPVfk4GFZTXi8YLFf8.roa
Signing time: Sun 17 Sep 2023 01:50:50 +0000
ROA not before: Sun 17 Sep 2023 01:50:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.105.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Sep 2023 04:08:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a0:d5:55:60:1b:ff:75:97:1c:44:40:a8:ab:52:e1:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Sep 17 01:50:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a8782bc973e21c3d57e4e061594d78bc60b15ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:92:fb:ef:bc:91:34:33:dd:6c:86:17:82:44:
6f:49:c3:f2:ea:d5:1c:9b:02:06:40:7b:5a:ef:3d:
a9:c9:93:58:07:63:35:fa:26:80:04:8c:4d:4d:20:
00:83:1b:e0:67:7d:66:e5:d5:22:bc:42:16:aa:5e:
a9:28:b0:dc:a3:46:ce:52:a7:26:30:31:f8:75:de:
3e:42:e2:6f:e3:da:0b:a5:a4:be:10:01:70:99:eb:
72:69:83:18:0b:6b:77:77:42:de:6b:6a:50:a0:8a:
f3:b0:64:06:cd:df:ad:95:99:f3:8b:e1:0c:23:ce:
ed:91:5c:5e:0f:8c:55:cf:55:ae:ea:e2:41:bb:29:
fb:13:1c:4d:eb:d2:c6:fa:9f:fa:29:ea:1a:70:93:
92:21:3d:71:6d:48:06:77:4e:ba:af:fc:b9:c5:c3:
cb:af:3b:42:51:59:78:d8:6e:a2:d4:08:15:c5:9d:
a4:cb:61:de:00:a0:67:71:42:22:cb:57:06:7f:ba:
b0:ec:44:c4:53:47:45:1c:d8:17:8f:a9:50:4b:16:
09:c7:83:6f:58:fc:32:30:83:95:c2:8b:bc:24:53:
d6:ac:c8:72:bf:8f:bf:ea:ae:a9:81:51:ac:cc:73:
7c:d8:60:23:17:76:2b:89:49:9f:4b:0f:52:d1:35:
79:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:87:82:BC:97:3E:21:C3:D5:7E:4E:06:15:94:D7:8B:C6:0B:15:FF
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/SoeCvJc-IcPVfk4GFZTXi8YLFf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.193.0/24
Signature Algorithm: sha256WithRSAEncryption
57:68:d1:3a:2e:c1:3a:f6:af:e7:1d:2f:93:ff:9f:4f:cb:88:
c6:16:18:a7:23:eb:c3:a2:f3:b8:56:68:5a:4d:9e:98:36:58:
16:91:e1:7b:16:8c:da:f8:ca:4e:47:38:86:bd:bf:29:86:f5:
d1:cf:95:dd:0c:57:ca:65:81:57:cf:7b:2c:d9:93:1e:90:f0:
0b:fa:02:88:bb:b0:19:65:2d:f1:75:c0:f3:10:96:35:64:d9:
19:01:fe:fd:ac:de:36:a0:47:49:a0:b0:9f:d0:90:b7:d3:4c:
5d:ab:5c:6d:41:71:55:8e:c0:44:a5:25:bf:ab:e9:99:81:70:
cb:04:01:a8:e9:26:a1:e8:f0:22:71:d5:af:5d:e4:e0:fc:ae:
1d:10:ba:bf:ec:bc:ff:72:f8:22:82:53:76:f7:59:a0:42:56:
23:64:a3:6e:21:db:62:c2:a9:cc:d3:54:88:4f:eb:ba:cf:37:
71:1f:3c:42:65:f7:ba:9e:a5:fb:ed:97:ec:ae:63:39:6d:2a:
72:d5:69:1f:d1:dc:70:18:ab:20:17:24:fe:37:7c:75:2e:fb:
90:3b:64:ee:4c:50:c1:57:55:23:a3:2c:3f:e7:00:fd:14:7a:
7d:70:0f:5a:f9:39:91:bd:f7:be:9d:28:2c:ed:5d:fe:7e:2b:
c7:e1:c8:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org