Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/JxQN6Ix0an27Cy8mE16QGMmAfig.roa
File: JxQN6Ix0an27Cy8mE16QGMmAfig.roa (raw, json)
Hash identifier: K1OB9KSWjWhjhdRvNO9HA0ycqujBDwXf+MrNArWsf+I=
Subject key identifier: 27:14:0D:E8:8C:74:6A:7D:BB:0B:2F:26:13:5E:90:18:C9:80:7E:28
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 01925AFE9D82CC6DC76290B56C3C4282C976
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/JxQN6Ix0an27Cy8mE16QGMmAfig.roa
Signing time: Sat 05 Oct 2024 04:44:48 +0000
ROA not before: Sat 05 Oct 2024 04:44:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60808
IP address blocks: 109.122.246.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 11 Oct 2024 12:22:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:5a:fe:9d:82:cc:6d:c7:62:90:b5:6c:3c:42:82:c9:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Oct 5 04:44:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27140de88c746a7dbb0b2f26135e9018c9807e28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:cd:96:d2:0d:04:17:20:fb:3f:cd:e0:2e:ff:
7e:83:6b:d5:5a:b5:6e:47:4a:f4:d8:2e:5b:94:03:
e6:58:ea:7e:3c:52:da:ca:71:5a:c9:46:d5:5c:9b:
a3:06:85:04:b2:83:c9:0a:f7:6e:60:eb:60:b2:ab:
8d:78:86:19:fd:29:4f:18:6c:5f:c4:6c:82:9c:67:
e5:cc:40:86:28:e5:41:a4:c0:67:c9:4e:5c:a0:8f:
23:c8:e9:4f:f4:30:b4:70:90:74:68:81:9f:92:b5:
c4:0b:99:79:ef:b2:6b:e3:f7:6c:80:0a:9e:20:32:
2c:fc:6b:8a:11:5c:82:e1:6d:a9:50:a3:3e:b1:52:
ea:1d:bb:f3:00:00:69:40:13:14:7c:a4:ec:1d:35:
39:e1:02:e0:56:0d:62:92:eb:36:77:9e:ca:08:54:
a7:ec:b0:53:ec:33:7a:0b:86:35:63:72:8f:9e:d0:
68:0c:19:14:ca:5c:c5:9b:96:d4:fb:9d:32:6b:33:
ac:91:ff:fb:6b:94:54:da:d8:ca:a2:65:27:ab:c1:
f4:13:00:63:4f:bf:aa:b6:9b:30:6a:a9:a5:c8:ae:
67:0e:49:b6:2c:af:66:a8:81:28:2f:07:9d:3b:60:
0f:5e:e4:2f:b7:45:81:1b:1c:11:8b:8f:26:e9:a3:
34:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:14:0D:E8:8C:74:6A:7D:BB:0B:2F:26:13:5E:90:18:C9:80:7E:28
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/JxQN6Ix0an27Cy8mE16QGMmAfig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.246.0/23
Signature Algorithm: sha256WithRSAEncryption
39:a7:41:ad:9f:ea:ca:65:3d:3b:18:6d:cc:b8:66:18:89:91:
7a:02:95:d8:b8:18:64:c5:35:d0:ed:d4:cc:45:a1:bd:92:c6:
e5:01:af:6f:8a:d4:49:0f:e3:0a:88:b4:2c:3e:c8:34:02:4c:
53:e2:35:da:c8:05:04:c4:e9:07:da:8d:5b:4a:7d:46:d4:04:
93:1a:fd:1c:e2:cc:a9:a0:e4:ed:24:27:fe:bb:e3:b7:bb:de:
41:7e:c8:40:42:52:44:83:26:87:50:86:51:b9:a3:64:48:f6:
e4:cb:e1:4f:07:6d:65:e1:99:02:38:00:68:91:c0:f8:0b:bc:
67:07:83:82:5f:86:71:9b:fd:46:19:9a:41:d2:d9:11:1b:77:
e7:dc:e6:77:74:dc:eb:b3:55:bd:9e:d5:65:fe:3e:ba:ba:0f:
5a:64:ac:73:d8:04:3d:99:b4:a2:a3:30:91:63:ff:f6:45:fb:
7f:89:df:00:dc:58:ff:d3:85:ff:5e:a3:df:6b:ee:ea:8e:ca:
f8:83:95:ae:10:c7:2d:84:4f:0d:a3:e2:da:a5:43:93:dc:5e:
e8:a8:de:e8:61:75:f1:11:8d:08:3b:55:ea:b0:5b:dc:e6:69:
99:b1:ed:d3:2b:ae:80:bf:0b:54:43:f6:b1:37:c2:e4:61:a2:
38:25:04:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 17:42:55 2024 by rpki-client on console-ams.rpki-client.org