Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/da81cb-1972-4c9b-9dab-e8f3a66ef558/1/u8sDDP8GR6naExWB0IEMuL40gm4.roa
File: u8sDDP8GR6naExWB0IEMuL40gm4.roa (raw, json)
Hash identifier: +vDKq26zIWAwUxacqEgBv12E/S0npBRNBpDLSj8I4N0=
Subject key identifier: BB:CB:03:0C:FF:06:47:A9:DA:13:15:81:D0:81:0C:B8:BE:34:82:6E
Certificate issuer: /CN=0c037dd22b7aabe282225afb256b8d9dcbeba353
Certificate serial: 018DEF8467F71173D633307D45D30464E346
Authority key identifier: 0C:03:7D:D2:2B:7A:AB:E2:82:22:5A:FB:25:6B:8D:9D:CB:EB:A3:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DAN90it6q-KCIlr7JWuNncvro1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/da81cb-1972-4c9b-9dab-e8f3a66ef558/1/u8sDDP8GR6naExWB0IEMuL40gm4.roa
Signing time: Wed 28 Feb 2024 11:40:48 +0000
ROA not before: Wed 28 Feb 2024 11:40:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50023
IP address blocks: 109.68.12.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 01 Mar 2024 11:16:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ef:84:67:f7:11:73:d6:33:30:7d:45:d3:04:64:e3:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c037dd22b7aabe282225afb256b8d9dcbeba353
Validity
Not Before: Feb 28 11:40:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bbcb030cff0647a9da131581d0810cb8be34826e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:94:bd:54:49:42:01:68:aa:4a:2a:c3:17:20:
6f:9a:5a:f5:de:0e:a2:48:12:bf:43:ee:ae:47:b6:
2c:4d:a4:48:c2:03:4a:ab:eb:19:69:b2:35:9f:77:
61:3b:08:aa:96:16:18:66:99:f2:41:f5:b1:e7:b7:
26:67:e5:6c:37:b9:f2:bb:98:68:d9:72:0f:93:61:
7c:7b:54:c6:58:dc:46:c5:43:0c:ae:2b:6f:57:94:
d6:5c:b9:ec:e3:e9:0c:ed:0f:2d:8e:86:01:2e:c7:
c1:c7:e3:e4:e9:6a:bb:31:08:d9:07:bf:e8:2a:28:
55:42:e9:f8:13:9c:05:40:ee:ad:0c:c2:f5:7b:cc:
76:bb:95:6b:9e:90:1f:3a:77:72:4e:3f:03:7b:a9:
8d:ae:90:b1:d1:0b:de:ed:04:db:cf:7f:9d:55:6b:
36:f6:40:2e:c5:85:a6:65:f0:d3:e5:dd:12:e9:96:
c8:46:bd:5c:38:da:84:2d:9c:fa:cf:ff:1e:27:bb:
f8:af:ae:1d:39:74:32:e7:d1:97:0f:b3:b3:88:05:
de:6a:0a:da:df:00:83:c8:bb:42:3d:54:e3:5c:49:
21:3e:70:5f:a8:fb:25:9b:54:60:cd:73:14:64:07:
77:40:30:71:6c:18:dc:7d:f3:05:94:27:61:f5:ba:
22:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:CB:03:0C:FF:06:47:A9:DA:13:15:81:D0:81:0C:B8:BE:34:82:6E
X509v3 Authority Key Identifier:
keyid:0C:03:7D:D2:2B:7A:AB:E2:82:22:5A:FB:25:6B:8D:9D:CB:EB:A3:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DAN90it6q-KCIlr7JWuNncvro1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/da81cb-1972-4c9b-9dab-e8f3a66ef558/1/u8sDDP8GR6naExWB0IEMuL40gm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/da81cb-1972-4c9b-9dab-e8f3a66ef558/1/DAN90it6q-KCIlr7JWuNncvro1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.68.12.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:3f:60:f3:31:c4:73:2d:43:88:ce:74:4a:fb:9b:15:a1:f6:
66:24:83:da:fd:e1:f4:2a:07:45:c3:47:b8:19:35:e1:a0:a5:
41:06:87:ad:d1:be:69:45:d0:15:79:9d:d9:99:84:21:06:c7:
92:5f:c6:93:11:d3:cd:64:17:b4:24:55:c4:22:11:8c:9c:f0:
26:b6:bf:70:7f:46:d4:81:34:54:a1:3b:cc:30:94:33:35:ef:
c4:10:a3:6e:1f:6c:a8:16:aa:3e:f7:98:bb:e3:5b:b0:1a:70:
85:8d:49:89:cd:14:50:6e:a5:4a:f2:67:d3:12:7b:c3:88:d2:
94:31:26:44:5c:7e:8d:fd:49:09:02:bb:f8:fd:dd:a1:2a:61:
5a:54:2e:b4:ef:43:ff:79:2a:1c:35:2c:bf:dc:18:46:fa:ca:
37:7e:f6:a6:26:3e:86:be:d6:61:9a:c2:44:8e:61:8e:8a:c5:
64:ad:a8:87:bb:1d:cd:be:dd:ef:a5:f8:3c:52:c7:3d:af:bd:
ed:ac:ad:31:2d:09:0b:93:cb:c2:20:0d:dd:54:21:a7:12:98:
be:50:73:f6:05:18:a1:c7:f5:ea:a9:4f:cd:32:33:de:03:1e:
4f:16:64:d8:08:d4:1e:2b:97:3f:ba:c3:3b:87:13:bd:94:67:
05:fb:57:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:37 2024 by rpki-client on console-fra.rpki-client.org