Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/ULZGFk9MWES3K7mQDPZBNLKo5pI.roa
File: ULZGFk9MWES3K7mQDPZBNLKo5pI.roa (raw, json)
Hash identifier: l7s9dHAQvAWotJCRur9+JV7DpPwRrk0V8zhc3NrF09Q=
Subject key identifier: 50:B6:46:16:4F:4C:58:44:B7:2B:B9:90:0C:F6:41:34:B2:A8:E6:92
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 0192FC6944DCA5F61FF0D1B025E975068B02
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/ULZGFk9MWES3K7mQDPZBNLKo5pI.roa
Signing time: Tue 05 Nov 2024 13:00:10 +0000
ROA not before: Tue 05 Nov 2024 13:00:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12697
IP address blocks: 109.122.240.0/20 maxlen: 24
109.122.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Nov 2024 11:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:fc:69:44:dc:a5:f6:1f:f0:d1:b0:25:e9:75:06:8b:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Nov 5 13:00:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=50b646164f4c5844b72bb9900cf64134b2a8e692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b7:bb:9d:26:90:b8:77:fd:15:b5:92:28:8a:
2e:6f:16:cc:96:51:18:87:fd:b9:0f:c8:99:a3:d0:
e7:c7:45:70:31:7c:c9:4a:9d:f5:4a:a6:c8:2a:0a:
3a:95:cf:2e:4b:fc:fc:2c:7a:1a:77:a8:4f:ea:3b:
4f:39:ee:db:f9:c0:12:3c:ca:30:70:37:db:cc:68:
42:76:06:22:4b:0d:e2:82:f7:14:ef:5b:a5:fd:b8:
ac:5a:c9:1f:c7:23:f7:22:f5:79:1f:2f:fa:b8:1a:
f0:99:2a:1e:07:27:ff:b7:b0:7b:d9:6b:6b:07:91:
ba:52:2c:42:66:4b:76:13:f6:df:45:1d:b3:06:c9:
85:fd:bc:a5:72:21:80:fd:c4:7a:11:14:f6:84:73:
42:8f:21:4d:71:0f:41:d8:63:d2:9b:46:6e:a6:57:
ce:76:8a:6f:fc:3b:a2:03:62:8e:8d:7a:c5:46:2a:
2e:69:5a:d8:2d:07:ff:5f:7e:8f:11:14:1c:64:07:
fc:26:5f:d2:31:28:3e:20:a1:2e:d9:97:17:c2:d4:
f8:d2:99:75:7b:06:75:c2:81:01:15:2f:ee:81:0d:
e7:d2:e8:4b:49:3c:01:01:79:32:7e:57:18:dd:0e:
ec:bb:b0:12:6f:5c:26:01:e4:75:41:7e:c5:c1:35:
9c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:B6:46:16:4F:4C:58:44:B7:2B:B9:90:0C:F6:41:34:B2:A8:E6:92
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/ULZGFk9MWES3K7mQDPZBNLKo5pI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.240.0/20
Signature Algorithm: sha256WithRSAEncryption
55:4a:5b:4c:b9:8c:ab:d7:fb:ef:a0:82:64:41:5f:e8:3d:8f:
a4:87:0f:82:f0:c7:9f:01:b2:48:45:3a:ca:fd:10:b1:96:f7:
70:79:bb:e6:14:74:69:f5:86:de:2e:3f:5c:4d:ac:9f:a2:5e:
bc:7d:52:14:3c:01:d2:02:21:32:d4:f8:93:c9:6e:f2:80:68:
71:2f:ad:a3:79:33:d3:fa:a0:62:ee:86:9f:d2:7e:fb:31:ea:
d8:fb:ae:bb:5f:0d:27:4c:7f:2c:89:f9:05:ae:7c:16:fd:b8:
1c:dd:72:0c:02:b3:c2:72:a2:82:69:20:f5:28:dd:fb:99:77:
a3:f0:39:3b:a2:4b:64:7a:9b:c5:62:fc:42:aa:46:d2:f1:fd:
c0:ec:68:6a:b8:24:cc:3f:f6:46:1f:6b:f8:b5:8e:56:da:0a:
a9:d2:b3:00:4f:22:b1:df:d5:0a:79:05:6e:f8:5c:ed:6b:ee:
45:41:2b:c1:45:24:5a:3c:d9:26:3f:a9:c5:46:ed:8a:40:d7:
5a:7c:d8:bb:dd:7f:61:05:e3:2b:51:df:f8:03:0e:ac:35:61:
f1:5d:76:7f:cc:c4:b2:df:ee:fa:f4:48:1f:14:16:9d:8c:d6:
15:66:00:4c:10:66:88:e0:f2:70:c4:24:45:ab:92:5f:25:32:
e5:55:91:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 13 14:06:16 2024 by rpki-client on console-ams.rpki-client.org