Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/giBtQIb1mYvd55PBoa1ep-LW4Pc.roa
File: giBtQIb1mYvd55PBoa1ep-LW4Pc.roa (raw, json)
Hash identifier: 3/IMT7zGvLhB6YPJIr+ipeD4Cyh43lAiueNULGqwSck=
Subject key identifier: 82:20:6D:40:86:F5:99:8B:DD:E7:93:C1:A1:AD:5E:A7:E2:D6:E0:F7
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 01899787824051E662E02045CBBF04871668
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/giBtQIb1mYvd55PBoa1ep-LW4Pc.roa
Signing time: Thu 27 Jul 2023 13:26:27 +0000
ROA not before: Thu 27 Jul 2023 13:26:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212335
IP address blocks: 109.105.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:97:87:82:40:51:e6:62:e0:20:45:cb:bf:04:87:16:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jul 27 13:26:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82206d4086f5998bdde793c1a1ad5ea7e2d6e0f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4f:3b:00:78:19:11:11:13:db:b0:c9:98:4f:
63:6a:e0:82:7b:7f:98:1c:15:de:a4:04:9c:1b:61:
e9:ae:31:da:8d:55:67:da:bd:e9:e1:7b:b4:08:05:
71:3f:5e:c5:97:4c:2b:5b:58:cf:0f:ca:db:a6:bc:
0e:3d:20:9d:6e:42:dc:1d:b9:4f:29:51:b4:69:58:
50:60:9d:91:e3:44:60:68:b6:4b:60:13:fa:f6:7b:
1a:8c:ab:ff:75:89:01:a1:df:f3:b6:50:c5:0b:37:
34:65:99:68:ae:ea:7c:60:ac:4a:32:29:8b:5e:b8:
0c:5e:aa:05:28:61:46:df:92:4c:6c:86:fb:03:c6:
80:73:58:85:83:11:6f:b4:92:84:1e:a7:40:f5:62:
49:71:bb:f9:84:f9:94:63:37:3a:f4:24:0a:e7:6b:
e9:9a:eb:cd:30:6e:64:2e:cd:af:19:1b:8b:d7:16:
ac:40:94:45:d1:9c:03:05:ad:6c:98:8f:ab:d3:93:
f5:73:2f:55:8a:82:f9:22:c4:7c:a2:51:4f:ef:fe:
cb:8e:9c:7c:18:5e:a5:23:f4:b7:44:82:a7:ab:90:
b5:5f:07:b1:47:25:b6:8e:ae:d0:6a:17:32:64:c4:
8a:fa:79:43:cf:aa:8b:a2:df:9e:d5:cf:5a:f5:b4:
cb:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:20:6D:40:86:F5:99:8B:DD:E7:93:C1:A1:AD:5E:A7:E2:D6:E0:F7
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/giBtQIb1mYvd55PBoa1ep-LW4Pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.192.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:28:39:b7:24:00:f3:01:d2:9b:86:6b:2e:02:2c:93:5b:76:
f1:4d:0a:a0:6c:b0:34:24:bf:56:ca:a0:e3:9b:41:3b:19:03:
44:c1:db:66:11:b2:be:87:31:f0:58:37:65:75:d8:bc:31:2c:
ca:5b:92:4d:c6:5c:ef:ab:8f:02:50:f3:91:77:e0:e9:90:d6:
9c:7f:c4:4b:24:b0:f3:12:58:36:0b:e4:05:97:74:7a:7c:a1:
45:b7:1d:b5:db:ac:27:c6:a1:eb:ab:9a:bb:29:af:13:8e:17:
2a:1d:dd:92:46:dc:38:6d:dd:53:9d:12:5f:73:3f:a3:d1:74:
34:47:d2:1c:07:9e:5c:e0:e0:c5:89:fb:f1:bf:7f:57:80:10:
c6:f6:dd:8d:6f:12:d3:90:61:f5:d5:bb:30:f1:d9:0d:4a:4e:
74:e1:4e:d4:b7:d9:b2:85:0e:26:86:23:37:ec:1b:74:0b:cf:
e0:2f:e6:a4:5e:27:25:83:17:6f:fe:33:14:7e:2e:54:27:05:
f3:13:20:98:fa:8f:76:9f:40:49:da:26:b6:2a:c9:ef:95:0b:
ab:aa:c5:06:c3:ba:0f:dc:07:55:db:42:33:39:a7:6d:48:d3:
5e:d8:fe:46:21:ee:5d:77:62:4f:8d:f0:a5:06:2a:15:ea:25:
ff:99:2b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org