Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/IvCsZQomyiqSPr0aUUSKR10aXDs.roa
File: IvCsZQomyiqSPr0aUUSKR10aXDs.roa (raw, json)
Hash identifier: zGtY/EPXBCh9mnPF5eFnrNer30apFl1mVHTK+PqAg9k=
Subject key identifier: 22:F0:AC:65:0A:26:CA:2A:92:3E:BD:1A:51:44:8A:47:5D:1A:5C:3B
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018571D7D842B226C385AAA1F2B3BC0CC430
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/IvCsZQomyiqSPr0aUUSKR10aXDs.roa
Signing time: Mon 02 Jan 2023 09:37:28 +0000
ROA not before: Mon 02 Jan 2023 09:37:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 109.121.38.0/24 maxlen: 24
79.175.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Feb 2023 08:29:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:d8:42:b2:26:c3:85:aa:a1:f2:b3:bc:0c:c4:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 2 09:37:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22f0ac650a26ca2a923ebd1a51448a475d1a5c3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4a:ad:16:82:68:fb:30:75:6a:94:5c:29:f1:
d6:e3:16:a0:18:3c:32:16:34:cf:9e:44:22:64:a0:
e7:df:ff:65:81:de:e5:a5:02:3e:c0:dd:05:42:9b:
1d:fc:bc:cc:39:6c:b0:c5:09:0c:59:99:96:59:92:
b4:12:88:d6:33:ad:a8:c2:55:8e:aa:18:2b:29:29:
1d:b7:5f:a3:1f:43:af:88:98:39:b8:11:fc:80:d5:
32:1f:c2:68:b1:cf:24:83:05:8a:16:61:30:db:a7:
71:3a:5b:bb:56:fb:7e:12:ce:c4:da:75:58:21:28:
9f:16:28:24:50:70:06:e4:a7:bd:fc:39:c0:78:e8:
fa:c2:6f:29:28:4e:10:5c:78:3f:c1:ac:56:99:9e:
de:87:fc:4d:ff:3f:18:ba:ae:c8:ab:78:c6:b7:fb:
97:8b:ac:24:cf:1c:cb:9d:56:1f:0e:03:1f:77:e7:
45:7a:dd:40:93:24:94:87:32:1f:76:9b:b1:31:29:
54:4b:6f:e1:0e:24:fa:83:18:83:c5:9f:9b:0e:84:
03:7a:e9:74:17:cc:b4:c2:45:2a:4b:bf:66:d7:04:
48:63:07:9a:38:3a:78:37:dc:16:1b:3d:31:c7:6a:
50:33:9c:b3:87:66:98:46:84:d4:91:72:11:2f:ac:
d4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:F0:AC:65:0A:26:CA:2A:92:3E:BD:1A:51:44:8A:47:5D:1A:5C:3B
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/IvCsZQomyiqSPr0aUUSKR10aXDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.175.66.0/24
109.121.38.0/24
Signature Algorithm: sha256WithRSAEncryption
37:4c:c2:56:ef:3d:56:4e:db:9a:13:56:7a:1f:5f:dd:b9:86:
03:34:4e:a7:34:14:9a:81:6d:cb:4c:5e:c4:49:04:37:29:da:
77:73:be:31:dd:77:30:ae:88:4d:72:66:7a:6c:4e:90:ab:cf:
21:ca:26:53:ed:78:8c:fd:55:83:d5:ba:84:3c:55:39:bf:fe:
b8:5c:49:6b:26:55:c9:f9:60:ec:b2:7f:f8:56:1a:5c:14:12:
51:2a:1e:bb:71:23:e8:b2:d7:49:4a:fe:6d:f1:4d:9a:dc:f5:
40:11:ca:e7:fa:b2:a7:07:03:ce:43:65:b1:cb:24:5f:ba:e4:
69:d6:73:a1:a5:42:db:ef:6e:06:e9:2a:75:05:6d:79:ed:c5:
46:a8:3e:44:92:a2:07:73:d4:01:0e:fd:ea:28:30:9f:5e:df:
dd:10:1f:2b:1f:39:d1:b8:48:f5:13:21:19:48:45:1e:1f:25:
4d:9b:b9:06:32:0a:26:db:d7:d9:4d:b9:bb:88:90:75:cc:e2:
41:0b:21:0d:b4:5f:7f:03:ea:f3:f7:16:4c:62:af:16:47:b9:
d2:a1:e0:e5:1e:31:0b:ec:f8:21:c1:71:0d:20:ce:7d:23:48:
bc:81:3d:4f:6f:30:52:88:03:b8:85:90:84:7b:93:3d:3e:f6:
b3:33:b7:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:26 2024 by rpki-client on console-fra.rpki-client.org