Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/jlSwGIbrgJ3bjW6hjh7SfpAKLQk.roa
File: jlSwGIbrgJ3bjW6hjh7SfpAKLQk.roa (raw, json)
Hash identifier: b30wiUd37fPEgs+m1EZ3geQsNT78qYmeZe/h1z4svz0=
Subject key identifier: 8E:54:B0:18:86:EB:80:9D:DB:8D:6E:A1:8E:1E:D2:7E:90:0A:2D:09
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 019018391CF406064BE7D156F02FF0751B71
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/jlSwGIbrgJ3bjW6hjh7SfpAKLQk.roa
Signing time: Fri 14 Jun 2024 19:28:34 +0000
ROA not before: Fri 14 Jun 2024 19:28:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 53356
IP address blocks: 109.105.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 16:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:18:39:1c:f4:06:06:4b:e7:d1:56:f0:2f:f0:75:1b:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jun 14 19:28:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8e54b01886eb809ddb8d6ea18e1ed27e900a2d09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:77:8b:df:a8:2f:5f:77:a1:b5:35:bb:03:0a:
d3:ca:fe:73:bb:64:12:60:45:f7:d4:15:eb:14:26:
57:82:04:1b:b4:57:4f:83:fc:28:b8:0a:d2:c2:00:
e1:da:5a:57:91:89:d4:8e:3b:91:b0:75:f0:54:95:
8d:a6:f9:78:8a:b3:4c:2e:fa:ad:a1:4b:e8:98:dc:
b6:04:d8:e5:2b:fc:e8:d2:66:dd:3e:d1:f4:8e:30:
23:1d:93:f8:93:93:34:93:9a:4b:34:20:7c:6e:d6:
21:a4:f6:20:ec:ba:09:be:69:2f:e3:2d:8b:a8:ec:
12:d1:e9:75:0f:8e:53:49:f9:3e:4d:8a:d5:4a:cb:
be:d8:31:44:cf:96:8f:cf:28:79:37:9e:a3:77:86:
a4:d8:23:3a:2e:af:9d:b0:ac:30:c4:78:c3:16:e5:
32:e4:21:49:63:ac:ae:12:3d:fc:78:47:05:4e:94:
81:40:08:7b:36:13:03:d3:2e:57:67:6b:49:8f:f0:
fa:24:8d:3f:11:cd:f8:e5:87:37:f4:4e:2c:74:b7:
44:de:9c:0c:e1:43:40:44:c2:b5:4f:7e:0c:03:c4:
88:1a:d9:23:fd:0a:7b:dc:e1:e9:ec:b8:61:49:12:
05:d9:58:ce:ff:b7:b1:45:6b:17:e2:fe:1d:01:c1:
d3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:54:B0:18:86:EB:80:9D:DB:8D:6E:A1:8E:1E:D2:7E:90:0A:2D:09
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/jlSwGIbrgJ3bjW6hjh7SfpAKLQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.194.0/24
Signature Algorithm: sha256WithRSAEncryption
00:9a:9a:b8:7e:05:78:12:4d:8a:b0:5e:d6:e7:87:c2:04:14:
e3:f7:8b:1b:58:51:5d:6f:51:e5:18:34:e8:6d:df:5c:c1:c3:
9b:62:96:66:de:91:d0:2b:d8:a7:f0:68:f4:19:8d:50:93:62:
a5:69:b6:f8:13:8b:93:ce:30:20:8d:7f:12:36:a4:4f:25:ff:
8a:a2:10:4d:52:8f:21:1e:c4:af:23:07:70:ca:48:d1:76:93:
0e:1d:4d:a0:50:8a:d7:f1:6c:81:8a:ac:23:33:36:e8:e4:30:
91:b8:67:7d:85:14:68:6f:4f:c0:fb:9c:6f:0c:73:37:f6:bb:
44:5e:33:77:9e:2e:0a:86:eb:f4:ad:47:c0:b3:9b:fe:f9:11:
86:3c:39:35:db:e6:a5:ae:ac:99:bd:6c:7b:03:12:f6:1b:5f:
ed:d2:79:1e:93:54:90:c4:e7:e6:09:91:2c:20:14:82:80:6a:
d8:b5:21:90:65:81:7e:54:d4:9f:5e:f4:dd:ee:63:4d:1e:70:
65:b8:6f:65:f5:b7:f0:d4:94:e3:52:f1:1a:2b:3f:6c:6e:86:
90:da:4c:b0:44:91:3d:05:8c:13:d5:15:e7:d7:ca:30:09:75:
85:76:b8:03:39:fa:3b:61:3b:3d:e5:ce:96:7e:02:73:86:06:
1f:c6:9b:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 18:30:09 2024 by rpki-client on console-fra.rpki-client.org