Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/V1iF2dGeIILqtNorNWbkfcSFMlY.roa
File: V1iF2dGeIILqtNorNWbkfcSFMlY.roa (raw, json)
Hash identifier: +zFurv2cI5JMDYDA/0gcI2hKlxMDp1d4NarqDqgS6o4=
Subject key identifier: 57:58:85:D9:D1:9E:20:82:EA:B4:DA:2B:35:66:E4:7D:C4:85:32:56
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018705478A5B8F9B00E5F4FA9AB24FF552B3
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/V1iF2dGeIILqtNorNWbkfcSFMlY.roa
Signing time: Tue 21 Mar 2023 17:46:27 +0000
ROA not before: Tue 21 Mar 2023 17:46:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 109.121.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 May 2023 07:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:05:47:8a:5b:8f:9b:00:e5:f4:fa:9a:b2:4f:f5:52:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Mar 21 17:46:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=575885d9d19e2082eab4da2b3566e47dc4853256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a9:38:d2:f1:4f:08:f4:6a:37:75:85:2d:81:
46:b8:70:5d:eb:d2:e1:ef:c1:33:68:f0:a8:c7:44:
f4:aa:a2:68:3d:a1:cf:0c:3c:01:75:28:14:02:92:
a6:23:ac:57:a5:26:7a:ef:41:a3:e3:42:ec:9c:50:
74:0e:44:9e:53:f7:35:0d:11:2b:20:10:c1:3c:3b:
76:ae:86:09:a2:7c:3e:5e:12:be:c6:b9:83:31:18:
dc:c1:6a:c6:50:23:72:8b:33:80:96:75:f7:b0:1d:
77:a4:2e:d9:57:be:60:59:7b:ec:6f:92:df:24:36:
3f:97:c5:31:14:11:d0:07:d7:fe:a6:8e:0e:47:c6:
90:91:3f:80:7f:1c:8c:cb:00:6c:e1:08:e7:4b:1a:
d7:bf:08:53:98:34:9f:7e:11:27:55:4a:06:4a:1d:
0c:64:da:9e:7a:72:ae:20:2e:b8:84:ab:e9:ae:f5:
3e:8a:1f:3e:4a:d3:69:f1:57:66:03:ac:9f:e8:34:
c2:9e:8d:2a:3e:d6:9d:b4:af:ec:5f:05:44:a4:27:
f5:00:f9:7d:31:38:10:07:ae:c0:ae:47:15:15:ad:
03:db:fa:e5:8a:12:d0:3c:68:91:78:f0:6b:fe:1f:
ea:f6:a0:18:0d:57:59:33:20:2c:27:f9:b1:f9:e0:
b7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:58:85:D9:D1:9E:20:82:EA:B4:DA:2B:35:66:E4:7D:C4:85:32:56
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/V1iF2dGeIILqtNorNWbkfcSFMlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.121.35.0/24
Signature Algorithm: sha256WithRSAEncryption
39:1f:60:ce:23:2e:ce:8a:fe:89:0e:3f:d0:c6:b6:ee:62:c3:
66:86:5d:9e:5e:1a:fd:6b:9e:4c:4a:28:0f:9a:41:fa:f3:56:
60:4c:a9:ae:d1:fd:27:40:73:84:29:ff:80:e5:29:a8:34:00:
14:87:49:ef:34:7b:3a:48:79:9b:82:d1:88:11:6f:86:33:62:
af:c8:47:40:cc:d1:38:5a:8f:2b:2b:8d:d3:59:69:4f:4d:90:
bb:ab:7f:81:08:9f:e4:87:37:d9:7b:86:29:1f:ae:bc:2d:75:
ae:11:56:3a:70:7a:fd:2b:11:36:d6:c0:d3:f4:da:14:15:a3:
ec:66:55:ac:1c:b3:04:91:66:ef:f1:c8:b7:68:21:aa:21:f5:
20:07:7e:fb:94:08:0d:36:24:f3:51:59:58:9a:92:8d:ec:60:
6d:e8:1b:08:d6:12:c6:dc:c0:6f:ca:52:ed:d9:ad:50:a7:e6:
df:55:f7:a7:1b:56:1e:a1:ea:74:15:b0:0c:bc:78:29:61:4f:
3e:81:97:13:ac:42:9d:b0:ba:0c:3c:e1:67:bf:95:dd:d3:aa:
67:a2:82:a5:b2:ff:6b:ef:f2:71:ca:8d:11:cf:8d:d6:80:f7:
12:eb:33:d7:9e:47:c0:c1:cb:5f:82:b6:68:0f:51:56:5d:0e:
38:b4:d6:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:04 2024 by rpki-client on console-ams.rpki-client.org