Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/TFk9Kea1SKAFUFxCxUjJSX3-oI4.roa
File: TFk9Kea1SKAFUFxCxUjJSX3-oI4.roa (raw, json)
Hash identifier: 4c5UHdLk01sEpztCYKhYSKRCS9P16buC4MIJFPMi64Q=
Subject key identifier: 4C:59:3D:29:E6:B5:48:A0:05:50:5C:42:C5:48:C9:49:7D:FE:A0:8E
Certificate issuer: /CN=8d842656177b4267ab55e4ba165a5ec00f5084bc
Certificate serial: 01856C25B1DBCB4F44D5A4DF3298F5509207
Authority key identifier: 8D:84:26:56:17:7B:42:67:AB:55:E4:BA:16:5A:5E:C0:0F:50:84:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYQmVhd7QmerVeS6FlpewA9QhLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/TFk9Kea1SKAFUFxCxUjJSX3-oI4.roa
Signing time: Sun 01 Jan 2023 07:04:47 +0000
ROA not before: Sun 01 Jan 2023 07:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198819
IP address blocks: 109.235.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:25:b1:db:cb:4f:44:d5:a4:df:32:98:f5:50:92:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d842656177b4267ab55e4ba165a5ec00f5084bc
Validity
Not Before: Jan 1 07:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c593d29e6b548a005505c42c548c9497dfea08e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a9:b1:4c:5e:45:eb:7c:e0:2a:f2:2b:73:59:
fd:fc:4d:16:0d:2d:45:16:bb:cc:4f:f2:c7:f7:36:
9c:b2:49:b9:f1:64:a0:d9:22:28:3e:b1:1c:d2:3e:
ce:97:4d:3e:4d:17:03:b8:8c:8b:cc:9d:cb:42:69:
ae:f5:ca:d2:9e:2e:a9:d7:c1:ca:48:ce:bb:4a:0a:
63:21:89:c0:44:58:34:45:52:94:29:0b:cf:b6:67:
54:88:97:c7:d9:97:37:3d:e1:5f:aa:a7:0a:0a:38:
38:66:17:b9:0e:00:a1:b1:66:85:3b:8d:27:29:d1:
8c:8b:00:ff:13:b3:b1:94:69:2d:48:2d:9b:19:68:
6a:08:ac:87:3d:ef:6e:19:74:9a:18:d3:f8:f1:60:
71:63:a4:98:8e:78:b4:35:af:32:7c:60:e8:fb:c6:
93:86:b1:f3:c5:b1:4b:aa:0c:a7:69:3e:37:70:3f:
af:76:c5:9c:26:f9:b3:91:36:54:22:77:b9:ae:a4:
43:b0:85:61:71:28:46:7b:57:67:f2:51:c9:60:48:
a0:05:f4:a9:2f:4b:ea:55:9c:09:80:5f:46:a6:d2:
10:d5:a5:53:33:9c:47:1b:a6:61:88:9b:22:27:b1:
e7:93:02:a5:e7:c3:5f:b3:aa:63:db:7c:b8:0a:81:
31:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:59:3D:29:E6:B5:48:A0:05:50:5C:42:C5:48:C9:49:7D:FE:A0:8E
X509v3 Authority Key Identifier:
keyid:8D:84:26:56:17:7B:42:67:AB:55:E4:BA:16:5A:5E:C0:0F:50:84:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYQmVhd7QmerVeS6FlpewA9QhLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/TFk9Kea1SKAFUFxCxUjJSX3-oI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.235.209.0/24
Signature Algorithm: sha256WithRSAEncryption
80:9e:b9:73:b1:c0:e5:d3:9a:0f:a0:3f:17:37:d8:7d:34:f7:
ab:31:20:80:ae:2d:80:08:40:89:57:f4:d6:df:05:9b:78:b4:
c6:dd:9b:8e:3f:a1:d7:7e:64:6d:c1:f5:94:68:de:f9:52:da:
75:20:aa:23:18:fd:37:63:53:69:5a:50:a2:e2:aa:1e:6b:3a:
30:11:c6:49:42:39:b3:7f:e7:7a:c5:1b:5a:b8:d0:61:17:1a:
b0:81:9a:b0:08:fc:6b:82:d8:22:38:5c:cc:8d:1d:4d:7d:c9:
75:da:ca:0b:92:1f:7d:ae:f8:6b:29:6c:e9:86:bc:1a:ea:a7:
17:b5:6d:82:77:de:47:a7:d1:65:bf:72:de:e5:93:92:86:19:
65:b2:04:be:90:0d:d6:8e:df:f3:39:62:c2:64:29:e6:64:46:
34:c9:1c:9f:04:06:1a:81:f0:8d:04:66:a7:f8:3b:15:dc:5e:
ed:75:43:7d:a1:be:e0:b2:52:3d:c2:a0:40:da:fd:d2:77:66:
60:e1:fa:68:20:75:a3:0e:c9:98:a9:a7:95:0b:4d:e8:7d:8c:
09:bb:2d:b3:b4:2f:ac:fd:2a:43:d7:c7:e2:50:b4:c8:17:af:
d8:6d:2d:99:07:c0:92:85:c8:c7:eb:82:c6:42:50:b3:c4:77:
92:2b:60:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:32 2024 by rpki-client on console-ams.rpki-client.org