Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/R7EjnnqXlcnPQCuDKuL7rWBe4YE.roa
File: R7EjnnqXlcnPQCuDKuL7rWBe4YE.roa (raw, json)
Hash identifier: 7E/jZfG5IyJ39dwzn4O5TpvAothYK+x5N/ovUHZxGNY=
Subject key identifier: 47:B1:23:9E:7A:97:95:C9:CF:40:2B:83:2A:E2:FB:AD:60:5E:E1:81
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 018E32FF70CC9953033D5AAB0DC0A4A37955
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/R7EjnnqXlcnPQCuDKuL7rWBe4YE.roa
Signing time: Tue 12 Mar 2024 14:09:45 +0000
ROA not before: Tue 12 Mar 2024 14:09:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15340
IP address blocks: 109.236.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 14:39:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:32:ff:70:cc:99:53:03:3d:5a:ab:0d:c0:a4:a3:79:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Mar 12 14:09:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47b1239e7a9795c9cf402b832ae2fbad605ee181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:de:61:7e:d9:07:d0:c8:19:d2:6a:73:05:30:
df:0e:dd:8c:04:e4:28:47:57:c3:e5:8a:57:a3:95:
ba:23:08:15:ac:4d:3c:7b:b1:58:22:22:e0:ac:f4:
ff:47:79:e1:fd:88:d6:db:12:0a:97:fd:5e:ee:f1:
be:a2:30:9b:96:03:ae:83:67:32:83:5d:e2:16:69:
ce:d6:ad:57:d5:97:01:75:89:a7:59:5b:e5:81:2c:
c8:46:0b:ca:ad:e3:89:6e:23:4f:ad:ed:3b:f7:23:
b8:71:bd:a7:ad:f8:d3:5d:4b:f7:9f:2c:6b:8f:00:
bd:3b:63:68:4d:9b:b3:6c:3b:59:c7:9c:12:a5:d6:
0f:8e:b8:11:35:86:11:79:b0:07:c4:b5:34:37:d9:
25:40:a4:91:97:69:8c:18:15:9d:6f:b6:ca:16:d9:
60:32:98:6d:79:b7:93:ae:c0:ea:d3:95:95:f3:3e:
da:e4:b4:2e:00:df:ea:1a:e9:85:5f:a9:6d:cc:da:
bd:58:f5:ac:ca:92:de:2c:fe:19:8e:25:32:43:0b:
33:92:9a:52:ce:e8:8c:fe:01:22:18:c8:8d:69:26:
d1:f6:2e:f6:79:5d:d6:d1:ae:c5:01:54:dc:0c:84:
5d:b0:bd:0a:0d:24:4b:84:4f:0e:25:a4:03:7b:b1:
6f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:B1:23:9E:7A:97:95:C9:CF:40:2B:83:2A:E2:FB:AD:60:5E:E1:81
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/R7EjnnqXlcnPQCuDKuL7rWBe4YE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.236.49.0/24
Signature Algorithm: sha256WithRSAEncryption
07:7d:04:13:57:72:f2:1d:d1:52:e5:f9:8b:7c:b8:60:30:c3:
c8:69:de:70:fd:8b:ce:e2:f4:50:51:f5:c0:9a:a2:2f:85:c9:
de:70:10:ae:2b:f8:0b:c6:da:5c:89:79:c5:50:bf:93:49:79:
fa:30:60:18:e7:e9:72:8f:39:ee:2c:c0:51:49:95:b6:9d:1c:
f8:0c:22:be:fe:b2:6e:b3:57:91:27:be:03:1f:56:46:ff:9a:
b6:9c:4a:a4:83:d7:b9:94:98:f7:54:c7:17:7a:6c:24:96:7f:
09:da:4b:5c:d3:7e:9e:e8:33:9d:0a:3e:5f:d8:f1:93:83:da:
6d:b0:0b:c8:21:c3:6c:19:65:9b:8d:54:67:0f:1b:5f:9b:88:
b8:7d:9f:5f:bc:bc:00:63:cd:d3:9e:97:a8:cd:ea:af:c9:6f:
0d:fb:02:f5:2f:44:8c:0b:f0:0d:a5:8e:3d:1b:f7:b3:12:cf:
63:6f:61:07:5a:62:e7:af:52:73:bc:a9:f8:bd:ef:e6:cc:40:
84:f9:75:70:37:92:0a:20:05:f7:24:a0:dc:7d:78:da:40:9e:
ef:72:cd:3c:c0:b8:5d:03:a2:f9:5b:8c:71:1a:2e:f4:1a:75:
13:58:99:ea:5d:24:26:97:8d:6e:d3:cc:d7:49:67:0c:16:d4:
98:fd:5f:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:49 2024 by rpki-client on console-fra.rpki-client.org