Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Tv4NybAVrz4x4VHEf1bcelpqZ9w.roa
File: Tv4NybAVrz4x4VHEf1bcelpqZ9w.roa (raw, json)
Hash identifier: BrbR+JF2TM9BjBCVTT1rMhlL+rl6YKKCcSBwNoigB+k=
Subject key identifier: 4E:FE:0D:C9:B0:15:AF:3E:31:E1:51:C4:7F:56:DC:7A:5A:6A:67:DC
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 01871939BCC7235D14C5AD682403690782FE
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Tv4NybAVrz4x4VHEf1bcelpqZ9w.roa
Signing time: Sat 25 Mar 2023 14:43:46 +0000
ROA not before: Sat 25 Mar 2023 14:43:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30823
IP address blocks: 109.105.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Aug 2023 16:09:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:19:39:bc:c7:23:5d:14:c5:ad:68:24:03:69:07:82:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Mar 25 14:43:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4efe0dc9b015af3e31e151c47f56dc7a5a6a67dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:bf:cf:85:35:c2:a4:a4:a1:61:f7:30:21:bc:
76:c6:70:cb:3c:d2:8a:6e:15:a0:88:51:59:a5:33:
88:20:06:bb:01:b1:6c:a1:1f:db:52:ad:16:1b:9b:
24:37:73:07:a2:64:09:90:23:05:13:8d:ff:b3:8c:
a9:aa:bb:31:f6:7c:d6:b9:79:cb:94:be:58:1e:36:
39:8b:8e:a8:d5:02:b0:3d:c2:82:c5:93:59:39:e4:
16:09:56:18:88:be:ef:fd:c5:bf:bb:73:81:eb:55:
6f:c8:e0:15:70:37:bd:9e:e0:ff:74:95:45:4f:90:
21:5d:6f:40:42:04:36:96:78:3c:94:69:19:da:c7:
a8:10:94:de:03:87:06:63:04:78:bb:45:6e:da:c7:
27:aa:63:39:17:e9:71:ad:ac:fe:22:4d:0e:f3:fb:
c0:75:39:95:a8:8d:eb:94:79:bd:04:78:76:13:b9:
a9:db:7f:ba:ba:c8:dd:c7:dc:4a:dc:5a:fa:a7:c8:
d2:20:a1:17:a4:0c:11:bf:6d:e2:d0:5e:74:75:f4:
a6:5f:e1:f6:1a:11:32:bb:57:9d:b8:fa:1c:a4:6e:
ae:d8:6c:60:fd:cf:05:4e:5e:50:67:c2:a9:25:c6:
47:c9:b4:6c:26:8e:09:9c:67:de:d3:6d:36:40:69:
c3:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:FE:0D:C9:B0:15:AF:3E:31:E1:51:C4:7F:56:DC:7A:5A:6A:67:DC
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Tv4NybAVrz4x4VHEf1bcelpqZ9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.198.0/24
Signature Algorithm: sha256WithRSAEncryption
09:06:e0:73:94:4b:42:2e:0a:92:18:34:c5:ad:78:4d:f3:ec:
32:60:7a:ce:8e:1d:33:fd:29:cc:7b:9f:21:68:86:22:80:e7:
23:27:49:0d:ee:19:65:55:bb:a1:19:b8:16:db:3d:81:2f:0d:
88:de:e6:ca:31:4f:f0:e5:ab:65:02:c2:d9:2b:0e:bf:31:0a:
88:a5:9b:07:cf:f6:d7:1d:43:c3:68:4b:71:ce:63:ff:ad:94:
53:f0:1f:6a:b4:dc:66:f4:d3:b2:fe:0c:62:2a:c0:b6:4f:b2:
ac:d8:0b:43:3b:1f:df:cd:4b:8f:8e:a4:8e:ad:cb:b9:f2:8f:
3e:21:2a:a8:23:fe:be:1f:eb:90:9e:93:56:c4:df:99:6b:5d:
cf:86:a3:af:01:d9:f3:66:6b:33:8c:a0:a9:b4:a8:52:09:30:
2c:a4:5b:3b:10:53:6c:26:de:1e:6e:61:9b:f2:05:1b:9d:dd:
e3:0b:4a:8c:5a:98:2f:b8:07:1b:c0:5b:ac:41:cd:5b:bb:3c:
26:5c:b6:b0:c2:fd:87:5f:fd:eb:95:5c:ad:50:a9:07:50:a3:
c6:c3:23:7b:07:a4:aa:e7:ba:50:dc:62:42:80:cf:51:ca:b2:
ac:7b:81:d7:69:2f:cb:14:35:36:50:a2:a2:92:3e:c3:78:f0:
25:92:a1:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org