Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/vWDKyQBIrq3C-Es2HWWXu7ABqjA.roa
File: vWDKyQBIrq3C-Es2HWWXu7ABqjA.roa (raw, json)
Hash identifier: yBYOvGBYuVSBUuFMNrWJtMJk/j8u3AYTSWKMjjLOfcI=
Subject key identifier: BD:60:CA:C9:00:48:AE:AD:C2:F8:4B:36:1D:65:97:BB:B0:01:AA:30
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018CB075C8E70711D5D8EB28D4801AF5A85E
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/vWDKyQBIrq3C-Es2HWWXu7ABqjA.roa
Signing time: Thu 28 Dec 2023 12:45:58 +0000
ROA not before: Thu 28 Dec 2023 12:45:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.121.32.0/24 maxlen: 24
109.121.41.0/24 maxlen: 24
109.121.43.0/24 maxlen: 24
109.121.46.0/24 maxlen: 24
185.47.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b0:75:c8:e7:07:11:d5:d8:eb:28:d4:80:1a:f5:a8:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Dec 28 12:45:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd60cac90048aeadc2f84b361d6597bbb001aa30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d1:a7:0b:75:8c:c2:87:5c:55:17:8a:7f:13:
5c:83:fd:ba:21:56:10:77:12:94:2a:39:09:9b:0e:
2e:27:24:ae:da:3c:e2:c3:65:51:63:4f:ca:96:00:
52:b4:7a:77:4e:0b:72:e1:63:32:2b:12:16:e3:dd:
b3:3f:01:bd:01:65:d9:2f:ab:bc:d3:74:3f:5c:d1:
dc:79:4c:2a:e7:c5:cf:3c:6c:2c:39:b0:ee:87:54:
6f:b2:99:14:93:c7:19:fa:69:22:65:6e:e8:13:5f:
7a:77:82:99:20:23:cd:a3:e8:65:74:42:cb:71:fc:
d2:bd:f2:14:4a:97:3a:d8:7c:3b:f4:38:00:3e:42:
7a:ad:12:50:3b:88:36:cf:38:67:37:eb:ee:1f:56:
6a:c8:c7:f2:b3:56:62:21:f5:60:42:47:54:1b:0b:
39:ad:43:89:d6:bc:a5:68:5f:59:a0:b3:86:be:64:
c8:24:b0:b2:82:06:d6:84:82:4b:50:d3:0d:82:9e:
05:70:e0:1b:ac:b3:5b:93:f8:de:27:c0:39:bd:fe:
be:03:21:73:f9:75:ed:10:6f:04:12:de:4d:02:46:
bb:17:54:12:94:76:79:ce:1f:d5:b6:57:fb:de:90:
2a:6f:49:1a:99:1b:ad:90:67:34:31:23:9b:3d:86:
6b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:60:CA:C9:00:48:AE:AD:C2:F8:4B:36:1D:65:97:BB:B0:01:AA:30
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/vWDKyQBIrq3C-Es2HWWXu7ABqjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.121.32.0/24
109.121.41.0/24
109.121.43.0/24
109.121.46.0/24
185.47.91.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:6f:b4:b6:a3:64:25:4e:a0:79:9c:b2:0f:4d:e9:3c:05:b5:
8f:33:ce:be:25:1e:81:dc:c1:c5:1a:44:08:55:05:d7:2e:d2:
1c:d1:fd:c1:80:45:41:c5:29:a7:ab:f0:63:42:f9:4b:b7:63:
9f:f0:af:a3:3e:63:9d:be:82:14:0c:70:82:36:b7:8b:a6:fb:
03:32:ed:80:81:79:30:18:03:83:37:2d:90:0f:94:1b:e6:fe:
a3:bd:75:30:6b:e0:fe:a8:1e:07:07:ed:e2:00:09:38:7e:be:
07:6e:92:0f:67:f9:3e:e4:9c:51:ff:02:9c:2a:0d:15:df:03:
aa:57:0c:ee:d3:c4:6b:88:55:10:c2:8e:c5:32:ee:4a:9f:94:
b9:0c:a2:25:ef:fd:1c:f9:9b:1f:5c:69:c6:9b:76:0e:8a:1e:
e8:07:54:95:a5:b2:dd:62:b9:11:30:7f:9e:69:e9:4e:3c:df:
36:43:b5:8e:21:38:bb:38:80:56:81:b1:e0:26:93:58:66:63:
c5:42:60:fd:6c:41:7b:47:fa:b1:91:9c:a2:3c:a3:3c:1a:ac:
90:ce:d7:70:ae:c3:a7:34:6c:76:09:33:dc:de:a4:ff:3d:cb:
71:7f:47:e9:16:4e:bd:08:3c:4a:b9:79:21:cc:b6:f9:c4:16:
a5:a1:f7:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:27 2024 by rpki-client on console-fra.rpki-client.org