Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/Dn3eBuacsQPaX6qvFoAnUukgkkg.roa
File: Dn3eBuacsQPaX6qvFoAnUukgkkg.roa (raw, json)
Hash identifier: FpGaFHwB6p55cB3pyYNj6WW6UZhU1AL5TD8yaOBDJo0=
Subject key identifier: 0E:7D:DE:06:E6:9C:B1:03:DA:5F:AA:AF:16:80:27:52:E9:20:92:48
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 01936E948F6C66C25EC19D37200EB4739D12
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/Dn3eBuacsQPaX6qvFoAnUukgkkg.roa
Signing time: Wed 27 Nov 2024 17:04:10 +0000
ROA not before: Wed 27 Nov 2024 17:04:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207252
IP address blocks: 109.111.60.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:48:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6e:94:8f:6c:66:c2:5e:c1:9d:37:20:0e:b4:73:9d:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Nov 27 17:04:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e7dde06e69cb103da5faaaf16802752e9209248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7d:97:f4:61:4e:42:72:7a:6e:b9:68:4c:51:
95:76:67:5c:7a:da:53:b8:97:17:4b:72:f2:5b:f7:
4e:1f:1f:23:e3:13:2a:89:40:18:07:71:4a:24:5c:
29:16:30:74:4c:fc:b8:69:20:6f:3d:8c:a3:05:7a:
c6:d0:6c:75:c2:f2:aa:41:fc:a0:7e:aa:3b:c5:11:
c7:8b:56:c3:67:1e:93:04:e9:cd:30:0b:ec:2a:de:
1b:49:6d:ca:25:f6:c3:7c:5d:96:3f:3e:b8:87:88:
a0:7c:17:de:04:b3:2b:3a:22:d7:0d:ca:ce:97:86:
8b:9a:4f:19:b0:cf:50:26:f2:f4:e0:54:a7:f9:b0:
52:67:25:7d:cd:8e:62:f5:fd:cd:c1:75:8a:f7:22:
d9:81:e5:d3:19:a7:d5:76:5b:66:7e:97:c9:51:f0:
bf:2b:91:07:e7:3e:11:18:96:9e:b3:fc:17:e7:71:
f5:ca:0e:8c:6f:71:b0:0c:3a:0d:59:d4:c1:cd:17:
43:d8:2d:2f:bb:8e:a4:c0:81:fb:c3:24:99:97:d6:
bf:f0:86:69:91:ab:1c:99:fd:65:9e:7b:6b:0f:3b:
f3:d9:71:90:40:6c:70:e2:ac:84:20:38:3b:34:92:
58:62:75:be:cb:b2:c9:f3:fe:e5:21:5b:6b:a0:e2:
1c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:7D:DE:06:E6:9C:B1:03:DA:5F:AA:AF:16:80:27:52:E9:20:92:48
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/Dn3eBuacsQPaX6qvFoAnUukgkkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.111.60.0/22
Signature Algorithm: sha256WithRSAEncryption
74:a6:6b:49:8c:0c:c7:f1:7d:a7:bf:46:22:81:02:5f:d0:51:
25:e9:84:e9:55:e3:3d:cb:84:89:94:d0:9b:e9:3a:29:7a:50:
de:14:ec:c6:5a:ae:4b:02:32:e9:d9:43:ac:82:6c:8b:a9:fa:
4e:a8:98:80:48:02:64:fb:6b:81:73:e7:ff:4e:1e:08:c1:65:
84:4d:5e:5b:79:1c:69:75:35:42:ea:46:e3:68:8f:65:cd:a4:
cd:89:b5:84:36:42:78:77:25:ff:98:2d:f1:be:27:43:70:5c:
ba:c0:f4:5a:72:26:22:ad:cc:61:62:cb:7e:03:6d:3e:d8:eb:
38:08:93:d8:6e:66:db:dc:d0:c9:44:db:11:25:4d:d9:b4:d2:
d9:fb:7d:be:f9:12:5f:2d:b3:0b:9d:e8:cb:f1:6a:e9:ac:79:
38:59:dd:64:e5:92:5b:a3:c7:3c:ae:5e:8f:86:69:f8:90:3b:
2a:e8:9f:ad:51:4b:b3:63:d9:f7:4d:e6:67:2a:e0:1e:27:07:
2d:f6:79:b6:fd:be:33:54:d1:1a:79:55:46:2e:e9:38:74:1e:
41:e8:38:82:09:53:11:1c:d4:87:b1:bf:2c:c7:21:f5:76:47:
74:e7:c7:73:f4:55:8a:41:36:7a:26:63:f6:b5:34:c4:ab:15:
e6:4b:56:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:16:36 2025 by rpki-client