Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/fb1a6d-4138-4c4f-aed9-4544c6109729/1/9j1P6O8nfp0mdv3rgiHqatetVPQ.roa
File: 9j1P6O8nfp0mdv3rgiHqatetVPQ.roa (raw, json)
Hash identifier: epe7N53yIoqjrYkxcwFyGQYurh5lINzeh6p1/Oeaq+w=
Subject key identifier: F6:3D:4F:E8:EF:27:7E:9D:26:76:FD:EB:82:21:EA:6A:D7:AD:54:F4
Certificate issuer: /CN=9241ad0e7fc22bfbab567be89f63d9805e5eb9aa
Certificate serial: 01856E6670E22981C9805D99A4975B3C7D74
Authority key identifier: 92:41:AD:0E:7F:C2:2B:FB:AB:56:7B:E8:9F:63:D9:80:5E:5E:B9:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kkGtDn_CK_urVnvon2PZgF5euao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/fb1a6d-4138-4c4f-aed9-4544c6109729/1/9j1P6O8nfp0mdv3rgiHqatetVPQ.roa
Signing time: Sun 01 Jan 2023 17:34:45 +0000
ROA not before: Sun 01 Jan 2023 17:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202477
IP address blocks: 109.205.199.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:66:70:e2:29:81:c9:80:5d:99:a4:97:5b:3c:7d:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9241ad0e7fc22bfbab567be89f63d9805e5eb9aa
Validity
Not Before: Jan 1 17:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f63d4fe8ef277e9d2676fdeb8221ea6ad7ad54f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:db:4d:62:d4:ed:22:8f:7e:53:e0:dc:27:7a:
4f:f8:c8:cc:2a:bd:0f:d7:88:3d:52:66:c0:4d:89:
92:fa:9e:fd:b3:a7:bc:62:2e:b1:4e:d6:4f:e0:19:
ec:54:86:84:3c:83:af:5a:e1:e0:e5:e6:08:a5:6f:
eb:c2:bb:56:21:19:84:44:d7:c0:92:e2:d5:d0:5f:
6d:74:74:cf:41:43:9d:d8:ab:e3:d5:83:53:a4:32:
8d:64:74:7a:fd:eb:49:0a:54:67:f4:b0:24:92:96:
f3:1a:a9:dd:80:9b:8f:48:b1:b6:e7:2b:2d:72:0d:
fc:d0:94:7b:bb:a8:00:bd:88:ca:cb:7e:dc:e2:92:
9b:35:11:69:14:7f:04:b0:b3:71:eb:68:37:31:1b:
30:dc:ac:dc:06:11:01:8f:6d:01:42:38:94:e4:64:
14:9f:b4:d4:f4:f2:87:96:fa:63:da:33:28:61:ec:
5f:62:2d:88:51:d2:c3:a5:b1:6d:06:a2:c6:68:23:
38:98:9f:0c:b3:d7:b1:10:72:2d:63:94:ae:a9:85:
cc:bc:84:3c:1d:6d:34:ce:25:1d:01:d6:00:c5:82:
e1:96:17:50:e0:15:fb:87:5e:10:f8:13:c7:96:c9:
f9:18:5f:98:7c:7d:de:35:62:d8:1d:b3:5a:a8:37:
32:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:3D:4F:E8:EF:27:7E:9D:26:76:FD:EB:82:21:EA:6A:D7:AD:54:F4
X509v3 Authority Key Identifier:
keyid:92:41:AD:0E:7F:C2:2B:FB:AB:56:7B:E8:9F:63:D9:80:5E:5E:B9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kkGtDn_CK_urVnvon2PZgF5euao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/fb1a6d-4138-4c4f-aed9-4544c6109729/1/9j1P6O8nfp0mdv3rgiHqatetVPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/fb1a6d-4138-4c4f-aed9-4544c6109729/1/kkGtDn_CK_urVnvon2PZgF5euao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.199.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:58:ad:8b:7a:c0:39:d9:b3:9f:a1:53:b4:53:6f:05:10:da:
f2:bd:9e:59:89:4a:05:96:2e:96:c7:c9:41:4e:fd:e8:46:1a:
4e:81:3b:50:4c:64:34:b8:0a:9e:6d:eb:8c:c7:c6:60:41:0d:
f6:7a:d1:0e:25:0c:d0:71:7b:e5:7e:0a:0f:62:0b:35:3e:de:
fe:94:ee:38:3c:3f:12:05:27:a0:4d:48:43:dc:20:a4:87:8a:
18:ed:d7:fb:17:bf:eb:3e:52:ad:a8:14:5a:e9:16:ab:83:73:
6a:25:e7:57:8e:1e:2a:f4:a8:07:30:5a:d7:c9:70:5d:cc:f1:
09:70:a0:25:d6:a3:11:8d:61:51:47:60:93:c0:6e:e3:0e:dc:
93:c4:b2:de:07:12:8e:80:34:62:ea:16:1c:36:13:e1:e4:bc:
0e:87:77:1b:ee:b7:06:24:ea:0f:75:b7:0e:af:23:89:2b:f1:
a9:f6:66:18:3a:41:43:b0:84:a3:f3:72:40:7a:e6:0b:84:e0:
d3:cd:27:ae:db:4a:9f:21:6f:ce:92:d1:92:73:92:c4:76:2e:
59:95:a6:2f:4b:43:3d:6e:d1:b7:84:a8:90:71:e2:c2:10:71:
68:0f:7a:94:72:e3:dc:0e:2a:a0:f7:ac:8a:55:a8:0c:bb:e9:
4a:bc:ee:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:30:58 2024 by rpki-client on console-fra.rpki-client.org