Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/aT7wf9HnCHUeCgqhrE93Ew23BHc.roa
File: aT7wf9HnCHUeCgqhrE93Ew23BHc.roa (raw, json)
Hash identifier: YyuMIUyqU1K1gnjeIC1ncsNjzZc8FAd1t7IE4U01pa4=
Subject key identifier: 69:3E:F0:7F:D1:E7:08:75:1E:0A:0A:A1:AC:4F:77:13:0D:B7:04:77
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018571D7DB2396F2A634DBBB8441280A3804
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/aT7wf9HnCHUeCgqhrE93Ew23BHc.roa
Signing time: Mon 02 Jan 2023 09:37:29 +0000
ROA not before: Mon 02 Jan 2023 09:37:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136173
IP address blocks: 109.233.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Jan 2023 10:19:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:db:23:96:f2:a6:34:db:bb:84:41:28:0a:38:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 2 09:37:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=693ef07fd1e708751e0a0aa1ac4f77130db70477
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:db:b0:65:a6:75:d1:1d:3a:3f:b1:ff:d6:d9:
f9:2b:ec:b4:ae:4e:f0:08:82:5f:10:55:94:19:df:
ae:d0:a2:cc:c0:fb:53:78:9a:5e:7b:10:5d:e7:e1:
f8:7a:30:bd:fe:77:c4:47:b2:3e:d3:b2:c2:92:fb:
6d:31:d7:e2:c5:80:ea:fd:8d:c6:c0:2e:ba:07:42:
ea:c8:e6:2c:4e:b2:8e:5c:28:18:df:71:46:e9:21:
29:16:46:87:e4:02:9e:17:4a:98:7d:87:39:60:dc:
ce:9f:cd:77:04:3a:bf:0f:93:f7:5e:82:9e:05:68:
3e:28:5a:36:45:48:c8:e9:65:f3:9e:39:eb:ab:16:
23:6e:f9:23:75:0c:03:48:ff:f9:d5:40:9e:86:6e:
39:39:f1:55:ff:7e:de:3a:e9:6d:38:68:d4:52:c5:
c5:c4:c0:2c:0f:5e:30:bc:78:da:3d:12:0f:15:86:
d5:82:2b:42:65:a5:3d:61:52:c6:63:e1:be:01:fc:
fd:9f:3f:66:05:31:a8:f0:d4:f3:82:50:b6:9d:6b:
a6:45:28:49:bb:96:d4:ea:3a:35:bd:b1:80:d6:94:
36:3c:a3:c4:73:7a:23:85:62:7b:03:16:1e:25:34:
65:2d:75:99:1e:13:8d:55:aa:a2:a0:9a:9a:ce:bd:
62:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:3E:F0:7F:D1:E7:08:75:1E:0A:0A:A1:AC:4F:77:13:0D:B7:04:77
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/aT7wf9HnCHUeCgqhrE93Ew23BHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.233.185.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:b5:40:2d:41:57:c9:74:c4:b6:ff:d1:9f:2a:eb:ca:42:9b:
aa:c2:69:b1:20:b0:18:40:35:4f:73:c4:95:79:9a:2c:30:f4:
ee:54:3c:b7:3f:1f:2e:56:f9:eb:6e:c2:ef:fc:16:7a:37:c9:
43:9d:e4:f0:46:20:f8:d6:a1:01:e6:8b:10:b5:f0:b1:4b:ee:
b0:2a:dc:f8:df:51:86:de:54:db:c9:e6:ab:e8:19:39:db:66:
03:71:4b:2c:61:0e:3d:a9:b8:d2:81:36:30:6e:72:e7:36:b0:
92:79:0e:ce:d2:d3:9b:d0:ff:81:c8:c6:55:a0:a5:8b:ce:d8:
bb:a6:b6:9d:24:1a:82:bf:ff:24:cf:b0:8c:1e:3f:c9:db:1a:
a2:85:88:6e:0f:cd:cf:10:78:05:9a:4e:be:80:b0:4f:3e:fd:
27:4c:30:0a:41:26:a8:e2:68:8c:b2:1a:12:94:89:c1:92:ff:
f2:57:b6:e6:7c:ac:63:05:cb:ac:34:45:17:76:73:c2:29:c8:
a3:84:45:a0:b8:e2:b9:4f:47:e2:a5:71:2d:72:f1:f9:84:8e:
c2:c1:43:06:ea:16:24:c2:af:4a:6b:34:35:be:39:e3:64:e0:
fb:d4:c6:24:a1:86:b6:bd:f8:56:cd:a4:7f:7a:96:3f:3f:11:
6d:b6:24:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:04 2024 by rpki-client on console-ams.rpki-client.org