Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/3debfc-df2e-49d4-bdc6-6d54bf44995e/1/U7IUhW00KjH_x1RCnaPXSJctAng.roa
File: U7IUhW00KjH_x1RCnaPXSJctAng.roa (raw, json)
Hash identifier: VC1r9GHogIBJBs9IMwo6LLqxmTZ12r6eDxiZei0bcMY=
Subject key identifier: 53:B2:14:85:6D:34:2A:31:FF:C7:54:42:9D:A3:D7:48:97:2D:02:78
Certificate issuer: /CN=f4e2e9b5fb967a7d3d78d0fbb930c080ec9d91e5
Certificate serial: 018BA9B38AAF4CF32AC3E619E2862CEF6E9D
Authority key identifier: F4:E2:E9:B5:FB:96:7A:7D:3D:78:D0:FB:B9:30:C0:80:EC:9D:91:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OLptfuWen09eND7uTDAgOydkeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/3debfc-df2e-49d4-bdc6-6d54bf44995e/1/U7IUhW00KjH_x1RCnaPXSJctAng.roa
Signing time: Tue 07 Nov 2023 12:13:17 +0000
ROA not before: Tue 07 Nov 2023 12:13:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15596
IP address blocks: 109.122.56.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a9:b3:8a:af:4c:f3:2a:c3:e6:19:e2:86:2c:ef:6e:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e2e9b5fb967a7d3d78d0fbb930c080ec9d91e5
Validity
Not Before: Nov 7 12:13:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53b214856d342a31ffc754429da3d748972d0278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:72:82:2a:61:e2:5c:f4:3e:eb:b6:f0:fd:a6:
8e:13:94:6b:20:ae:ff:b4:d8:e6:55:34:ad:73:9c:
a5:96:53:7a:98:f2:77:de:c6:d4:18:3a:56:43:31:
8f:0f:f5:37:65:b3:b5:d5:ff:81:e5:2c:4c:03:ce:
6a:40:2c:ad:ae:ee:3c:6d:5d:90:92:74:90:a9:7c:
8c:6f:e6:47:f7:9a:e1:7f:0f:39:5b:45:f0:7a:d0:
10:ab:4d:53:29:09:61:a2:cd:cd:b3:9c:03:d0:aa:
9b:04:93:24:64:e9:2d:30:fc:fa:eb:b6:36:e4:67:
86:fe:9b:c1:1e:45:9c:7f:2f:c7:b0:0c:74:d4:a0:
7e:bd:e2:a2:70:4e:43:1f:88:1b:d1:21:99:ff:3e:
45:c9:57:c7:ea:96:dc:55:5b:96:f2:99:15:e7:b5:
a1:39:55:95:7f:5d:18:11:12:4d:7f:02:52:46:30:
8e:f7:60:05:9b:c8:3c:a2:44:07:25:7c:34:f4:db:
8b:e6:08:58:5b:d3:12:f0:9c:a1:a5:1b:76:f4:0e:
0d:12:86:54:b2:c5:37:cf:e9:52:f0:45:ee:b2:6f:
4f:8f:ca:90:88:fc:2a:cb:d4:ee:20:ec:fb:57:65:
9c:e9:79:59:b9:61:47:a1:da:63:01:57:7c:88:2c:
e3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B2:14:85:6D:34:2A:31:FF:C7:54:42:9D:A3:D7:48:97:2D:02:78
X509v3 Authority Key Identifier:
keyid:F4:E2:E9:B5:FB:96:7A:7D:3D:78:D0:FB:B9:30:C0:80:EC:9D:91:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OLptfuWen09eND7uTDAgOydkeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/3debfc-df2e-49d4-bdc6-6d54bf44995e/1/U7IUhW00KjH_x1RCnaPXSJctAng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/3debfc-df2e-49d4-bdc6-6d54bf44995e/1/9OLptfuWen09eND7uTDAgOydkeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.56.0/22
Signature Algorithm: sha256WithRSAEncryption
39:29:06:f1:33:ef:67:06:6a:9f:80:c0:31:7b:05:d4:33:21:
0d:db:7d:97:08:f5:42:66:6f:e1:8b:15:66:84:91:75:20:6c:
c8:3a:d1:a0:a8:bd:e6:2b:3c:90:eb:7a:62:c6:cf:8d:77:ca:
62:2f:bb:56:5e:be:f4:5e:bb:eb:be:c9:0b:b4:66:bd:04:c0:
06:6a:5f:1e:ca:a6:99:54:c7:06:d8:02:39:5e:3a:94:35:62:
6d:3c:71:2b:95:bc:a1:ca:0f:58:b7:c0:bc:56:16:0d:de:9a:
fc:c4:0d:a1:bc:6e:b4:67:8f:cc:b0:f5:43:43:22:0d:79:17:
42:f2:f9:4e:11:d9:d4:ea:f0:c6:3e:09:7d:50:a9:92:c2:20:
8c:05:df:f7:28:1d:5a:41:8f:bd:b2:e1:c3:6b:f0:cf:08:41:
8d:3d:29:b5:45:70:a5:cd:da:17:06:62:2a:67:18:19:03:20:
11:cc:9d:0d:d1:3e:0a:59:95:46:4e:ef:0e:4b:f0:dc:c7:e6:
d4:1a:71:60:08:9c:b7:42:8f:af:b2:e6:c4:52:17:be:89:b7:
48:c3:ca:98:a7:69:43:5e:ed:c2:a8:b9:25:ee:b9:d8:e0:52:
a4:86:6d:75:f7:5e:74:fb:62:46:97:b1:0c:5e:46:3f:53:38:
15:fb:1c:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 15 10:06:50 2023 by rpki-client on console-ams.rpki-client.org