Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/hIytRbSDRMt2jgJTH2oZzNtVwm4.roa
File: hIytRbSDRMt2jgJTH2oZzNtVwm4.roa (raw, json)
Hash identifier: azmZqak+uUVTXCHk+FYocJns2/mKboogewLBg1mZ9yo=
Subject key identifier: 84:8C:AD:45:B4:83:44:CB:76:8E:02:53:1F:6A:19:CC:DB:55:C2:6E
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 01856C53DAF00E50760715188200ED50E1D4
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/hIytRbSDRMt2jgJTH2oZzNtVwm4.roa
Signing time: Sun 01 Jan 2023 07:55:12 +0000
ROA not before: Sun 01 Jan 2023 07:55:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213257
IP address blocks: 109.236.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:da:f0:0e:50:76:07:15:18:82:00:ed:50:e1:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jan 1 07:55:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=848cad45b48344cb768e02531f6a19ccdb55c26e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:81:18:d5:13:f6:5c:59:94:5f:c5:ab:77:44:
bb:5c:dc:39:9c:e1:9a:f9:9c:8e:1b:1e:3f:52:29:
2e:be:80:ad:21:6c:fc:bd:7b:16:bc:b3:6c:8c:21:
d7:c4:d2:c8:d1:7d:0f:5c:9c:80:10:9c:09:c9:65:
cf:9f:ff:2d:42:07:f1:a4:34:f2:cb:40:e5:00:27:
c2:dc:7f:49:b5:de:ba:19:42:d3:86:50:87:b3:e0:
00:73:64:bf:a4:a9:00:c9:4c:2e:08:4f:e8:fc:59:
b2:01:e5:8c:76:c7:9f:fd:48:7c:6c:ae:e4:3c:a9:
15:37:4f:91:98:49:00:db:6d:38:6c:cf:ed:89:22:
99:53:f4:79:1e:87:93:37:f4:7c:6a:bb:68:1c:f3:
df:5a:47:82:17:ea:ae:9e:10:d2:3f:4a:cb:1a:ee:
28:2e:a9:26:35:f6:81:b8:51:06:14:d2:4b:b8:69:
5c:08:61:76:57:f9:87:c1:5e:7b:0c:18:16:69:51:
36:99:66:3d:8e:2d:10:3e:09:df:52:e6:cb:29:47:
74:12:8a:87:55:32:b9:5d:79:f7:f0:dc:a2:87:20:
6c:68:cc:cb:9c:1e:6b:e6:7e:33:ba:c0:94:9d:78:
e5:e6:fe:da:4c:3d:e9:81:eb:71:f6:e5:d3:21:f6:
cf:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:8C:AD:45:B4:83:44:CB:76:8E:02:53:1F:6A:19:CC:DB:55:C2:6E
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/hIytRbSDRMt2jgJTH2oZzNtVwm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.236.49.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:7c:0e:b1:3c:6b:a7:13:14:ac:02:a3:26:a3:92:8c:de:b4:
d7:34:92:c8:08:91:ac:60:1d:b3:83:53:68:f5:5e:46:51:b4:
25:2b:04:06:1d:b9:ce:2a:f9:fb:69:48:09:51:9b:46:7a:47:
41:63:da:d8:46:57:06:63:b2:42:77:9f:52:ca:97:5f:90:2c:
0e:4a:bd:9e:67:26:31:f8:71:6e:68:c9:f5:85:51:6b:0c:02:
d7:b3:0d:2d:72:72:4b:6a:1f:79:10:41:cb:59:17:e6:b0:20:
f8:1f:d5:74:69:81:34:c0:39:01:ab:39:2a:ed:2f:ef:89:d0:
91:e0:0c:98:de:57:ab:2e:3a:a0:63:ea:8b:47:2b:f4:cb:c2:
dc:46:b6:99:e3:56:88:2b:93:c7:8c:e5:2c:d2:4e:5d:bf:4d:
12:9a:35:07:83:54:d3:7e:27:0b:3f:dd:95:bd:64:44:c2:33:
69:68:e0:bd:c6:08:5e:d7:ac:1a:c1:52:ba:08:21:90:81:65:
fc:ed:7f:60:a0:9c:d4:35:7c:3c:f2:6d:cf:79:7c:c4:02:89:
61:44:28:79:41:d8:d0:72:b2:19:c6:c9:dd:00:4b:1a:49:81:
40:6a:50:b0:96:0a:ca:65:b7:1b:c1:8f:a4:3b:57:86:18:b3:
b0:bc:0c:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:24 2024 by rpki-client on console-ams.rpki-client.org