Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/i9zpkmllJRhTROfqEaN7YmrlAQA.roa
File: i9zpkmllJRhTROfqEaN7YmrlAQA.roa (raw, json)
Hash identifier: QzEIfObo2KK2qvw4mwB+C9AsMBK4kC+/MqB6G/nC19w=
Subject key identifier: 8B:DC:E9:92:69:65:25:18:53:44:E7:EA:11:A3:7B:62:6A:E5:01:00
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 01924357511FB2F75F2DBE77EB63B7BA090C
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/i9zpkmllJRhTROfqEaN7YmrlAQA.roa
Signing time: Mon 30 Sep 2024 14:30:48 +0000
ROA not before: Mon 30 Sep 2024 14:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214526
IP address blocks: 109.122.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Nov 2024 10:06:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:43:57:51:1f:b2:f7:5f:2d:be:77:eb:63:b7:ba:09:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Sep 30 14:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8bdce992696525185344e7ea11a37b626ae50100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:21:1e:00:84:9a:0f:55:bc:cc:b8:8b:51:41:
06:88:56:2c:18:5a:56:74:96:6b:34:15:d5:01:ae:
0a:1d:84:1e:22:fc:6e:d3:e0:2a:31:b8:fe:65:8d:
33:f1:25:bb:82:88:63:a7:37:3a:90:34:c3:4c:cb:
8b:ff:e6:6d:17:ff:20:20:1f:13:f3:22:c2:f3:ff:
d4:76:51:d5:d4:2e:6c:a4:4f:99:a6:73:45:21:24:
48:a7:de:c0:ce:4f:5e:05:40:5f:37:f2:a7:3d:7f:
ae:62:ac:9a:b7:aa:d4:ad:21:f6:d9:8e:27:26:43:
ea:0c:ed:4e:21:0e:ff:f5:44:f0:9b:9b:46:af:1a:
87:f5:56:ad:4a:aa:51:60:16:b2:29:ba:bf:4c:e9:
26:cf:78:82:00:c1:cd:fd:10:01:a1:e2:1f:3c:34:
28:b7:2b:86:60:1c:a3:1c:d9:15:c8:ec:a6:97:3a:
e3:67:4b:70:93:f5:54:15:cd:d6:c1:dc:41:33:32:
54:fe:37:30:c8:6e:03:0f:34:e9:be:64:31:c4:d4:
9b:ed:28:30:03:be:c7:f5:49:66:c9:6a:7b:7b:f0:
38:ad:df:56:dd:f4:99:f2:73:11:c1:09:5d:3e:9d:
ea:e7:79:02:77:c1:c4:0e:ae:b5:71:ec:ef:a2:cf:
89:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:DC:E9:92:69:65:25:18:53:44:E7:EA:11:A3:7B:62:6A:E5:01:00
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/i9zpkmllJRhTROfqEaN7YmrlAQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.252.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:75:32:61:d2:aa:c6:73:f0:c0:cc:58:15:93:61:af:72:25:
5e:05:0c:37:64:71:bf:48:8f:1b:0e:79:ba:ed:8d:cf:1d:50:
ca:73:70:20:bd:10:01:2f:76:dd:ce:d0:9f:4e:36:cf:bd:b2:
c4:8f:40:08:31:4f:6f:ee:87:60:4b:da:2a:0f:54:58:f4:cc:
53:29:bc:3a:93:8e:95:c2:7b:b2:31:6b:86:fc:5c:e9:09:00:
a1:b3:c1:e1:24:e9:02:80:35:cc:c7:b6:a8:c5:f0:06:ad:48:
45:59:1b:4d:93:ef:ea:45:bc:a8:33:84:23:90:8e:a3:4f:a9:
df:30:d7:52:1e:29:c6:ea:76:e3:60:c7:3d:4d:1a:e7:d4:51:
7a:a5:54:8a:38:ee:32:c9:67:18:f3:8d:bd:a6:10:ca:9a:09:
e3:e6:d5:f1:59:97:19:0b:61:e2:8f:7d:13:9e:52:6d:cd:c6:
9e:31:87:fb:36:42:cb:4e:ad:92:72:aa:4c:b6:00:e0:ba:a0:
6d:12:d6:76:c5:8c:3f:d4:c6:eb:e0:18:86:05:d7:64:ee:47:
99:2a:27:ff:63:53:dc:bd:fe:16:21:a7:c0:6f:18:0e:c2:06:
a7:6c:48:40:30:30:40:20:57:76:85:30:49:21:91:6c:5f:0d:
d7:d2:bc:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 3 14:28:08 2024 by rpki-client on console-ams.rpki-client.org