Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/0Y2427RtNieTvaI1i9QK440niNc.roa
File: 0Y2427RtNieTvaI1i9QK440niNc.roa (raw, json)
Hash identifier: mpD6kemyo+vB2Z0rHwRhMVxSxcUIkdFVPUEWSn1StDY=
Subject key identifier: D1:8D:B8:DB:B4:6D:36:27:93:BD:A2:35:8B:D4:0A:E3:8D:27:88:D7
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 0192712C277ACC973D6E966A7C55237F0DDA
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/0Y2427RtNieTvaI1i9QK440niNc.roa
Signing time: Wed 09 Oct 2024 12:06:12 +0000
ROA not before: Wed 09 Oct 2024 12:06:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35372
IP address blocks: 109.122.249.0/24 maxlen: 24
109.122.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Oct 2024 12:22:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:71:2c:27:7a:cc:97:3d:6e:96:6a:7c:55:23:7f:0d:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Oct 9 12:06:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d18db8dbb46d362793bda2358bd40ae38d2788d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f8:03:a9:18:93:b1:1d:be:b3:8a:8e:39:d0:
51:f9:76:8a:44:a7:27:aa:2a:7c:fe:6b:4d:b7:cb:
c3:2b:f2:89:b6:b6:45:51:e8:c2:d8:32:88:fb:1c:
99:ec:13:5a:2d:1f:75:68:5c:3a:cc:a6:15:eb:56:
32:87:b2:1f:dd:2e:e1:04:f7:97:91:50:56:9e:d3:
c8:69:df:fe:bd:b5:57:6f:4b:de:2c:24:52:92:02:
15:b1:08:60:24:ee:b6:f3:eb:45:98:a8:9d:3a:40:
38:23:52:2e:4d:30:fe:27:4f:12:27:22:86:5a:e9:
b2:ed:24:72:67:4e:33:02:92:55:8c:76:a3:f8:d5:
21:2c:ad:d3:75:f7:d0:dc:59:44:6f:4e:9a:39:24:
fd:3f:90:43:4f:41:f0:40:7c:2f:5c:53:47:31:cd:
1c:1e:86:cf:2e:49:60:e2:5a:8d:9b:f0:fa:cb:db:
51:fd:71:80:72:cf:d4:a5:f7:19:e3:d2:27:e5:90:
db:2d:93:9e:00:ef:3b:02:e3:2e:fc:73:45:de:e1:
24:2f:41:6a:9a:b3:61:1f:de:9f:23:b0:37:de:9d:
2e:a3:b2:9f:35:09:fd:01:ac:06:94:c1:2f:95:91:
0c:e3:81:ff:55:06:38:87:74:07:5e:b5:f1:84:37:
5c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:8D:B8:DB:B4:6D:36:27:93:BD:A2:35:8B:D4:0A:E3:8D:27:88:D7
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/0Y2427RtNieTvaI1i9QK440niNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.249.0-109.122.250.255
Signature Algorithm: sha256WithRSAEncryption
54:fe:92:23:d2:68:cf:3b:a8:36:b7:82:66:ba:9c:dd:3a:89:
90:43:99:83:26:f7:9c:5e:44:87:61:7d:76:7d:4c:e5:d6:8d:
38:23:15:65:46:eb:20:89:fe:80:c2:45:f3:a0:06:64:bf:c8:
9f:be:11:04:4f:ee:92:45:05:d6:1b:50:1f:66:4e:da:a6:3f:
bb:5a:34:f7:b2:24:f5:d8:5e:fb:b8:c2:10:51:81:49:32:69:
b0:1a:ea:80:7c:0e:bc:51:0c:df:a2:1d:8d:97:f5:0e:39:fa:
ed:ac:35:84:e4:d3:75:f7:23:2f:70:f2:b7:2c:1d:4a:24:6e:
0b:91:f9:d2:c7:d6:eb:90:ff:aa:30:73:38:a1:df:b9:1d:a1:
31:79:04:98:d1:cd:3f:e8:77:2c:64:c8:16:8c:67:72:ed:b9:
f4:e2:16:86:bf:cb:06:76:52:17:8e:1e:cb:aa:55:ee:0d:9e:
65:2b:ba:78:86:10:f7:f1:01:98:55:08:88:78:b5:4d:f1:fd:
21:62:e9:7d:ec:33:71:03:2b:83:89:ad:93:7b:54:30:10:8f:
b8:9e:55:5b:71:37:cc:79:d4:ab:1f:d9:55:d8:65:c5:a5:52:
3f:52:29:46:34:ee:06:cd:d5:8c:fe:bf:49:46:a4:c3:04:05:
66:0f:7e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 17:42:55 2024 by rpki-client on console-ams.rpki-client.org