Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/EhAJIN1ExV366vWfWsQQUZl0djs.roa
File: EhAJIN1ExV366vWfWsQQUZl0djs.roa (raw, json)
Hash identifier: meIZtur5Yv2ykk32DkStEm5DCYRVH3z368cKoQ1Az40=
Subject key identifier: 12:10:09:20:DD:44:C5:5D:FA:EA:F5:9F:5A:C4:10:51:99:74:76:3B
Certificate issuer: /CN=37949ac84d0b86910f4fd3cf5962927d83450aeb
Certificate serial: 018A8EC06E54CD91A9DAE57B3E320417C5B4
Authority key identifier: 37:94:9A:C8:4D:0B:86:91:0F:4F:D3:CF:59:62:92:7D:83:45:0A:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5SayE0LhpEPT9PPWWKSfYNFCus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/EhAJIN1ExV366vWfWsQQUZl0djs.roa
Signing time: Wed 13 Sep 2023 13:34:50 +0000
ROA not before: Wed 13 Sep 2023 13:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 185.148.224.0/23 maxlen: 24
109.234.0.0/24 maxlen: 24
109.234.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Sep 2023 09:26:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8e:c0:6e:54:cd:91:a9:da:e5:7b:3e:32:04:17:c5:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37949ac84d0b86910f4fd3cf5962927d83450aeb
Validity
Not Before: Sep 13 13:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12100920dd44c55dfaeaf59f5ac410519974763b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:08:43:84:17:16:62:f9:6a:17:ea:fb:42:eb:
13:57:f9:aa:aa:5a:8d:40:46:61:d8:4f:86:70:1a:
cc:06:47:78:12:d2:8c:f2:d8:d4:cd:fc:69:f4:80:
60:07:2f:51:2c:47:80:17:0d:a6:b8:cd:5c:ba:08:
23:f5:ba:69:ee:86:04:07:15:65:72:92:54:4f:0f:
a8:b4:70:8f:b6:1d:be:83:3a:c7:52:0b:56:2f:0e:
50:6c:fe:2d:78:ec:65:5f:d5:48:16:b6:42:48:7d:
11:b5:e8:d2:bb:10:fd:72:b7:d8:db:20:f0:ae:7c:
0d:45:8a:81:f1:65:53:9a:e4:c1:49:16:a5:81:41:
e3:8d:2c:16:d8:cc:7a:4f:e5:15:9a:51:b7:21:fe:
f6:39:94:a1:cd:35:a8:d9:23:49:e8:d1:94:41:36:
40:3f:bc:ad:e2:25:83:0f:3d:ae:67:00:fe:ea:8d:
05:51:e8:ba:96:51:88:55:28:ab:d9:9c:cf:fc:f0:
15:83:1f:57:86:72:0f:51:96:81:3d:e2:3d:af:0e:
d0:f3:8a:5a:66:50:1e:e4:51:76:81:bf:75:52:53:
22:0d:24:e8:20:66:af:67:48:20:df:53:f8:3d:be:
32:47:66:7b:52:d9:2a:a5:8b:02:4c:d9:83:3d:83:
3a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:10:09:20:DD:44:C5:5D:FA:EA:F5:9F:5A:C4:10:51:99:74:76:3B
X509v3 Authority Key Identifier:
keyid:37:94:9A:C8:4D:0B:86:91:0F:4F:D3:CF:59:62:92:7D:83:45:0A:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5SayE0LhpEPT9PPWWKSfYNFCus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/EhAJIN1ExV366vWfWsQQUZl0djs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/N5SayE0LhpEPT9PPWWKSfYNFCus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.0.0/23
185.148.224.0/23
Signature Algorithm: sha256WithRSAEncryption
cc:4c:77:8d:0e:2a:96:ae:f8:91:12:d5:31:77:8b:d2:19:51:
33:da:ed:08:78:9a:1c:3d:46:16:43:29:94:47:70:0d:0b:b4:
a8:42:bf:1b:d0:1b:64:29:78:3b:69:28:30:81:d8:9d:a6:12:
98:df:2a:eb:6e:8e:d7:dd:4a:3c:4b:15:f1:89:10:f9:f8:ef:
b6:72:f5:ae:27:46:87:78:2d:66:4a:70:73:dc:ce:18:d8:e3:
f5:63:f1:c3:6a:2e:63:f3:ae:89:62:03:13:eb:09:25:e5:e5:
2f:ee:03:e8:62:58:a1:56:3a:d5:98:79:72:37:f3:4c:dc:fc:
03:29:a4:22:bb:58:25:88:7f:d5:0b:1f:cb:f6:e8:b5:1f:df:
4d:ea:0e:39:30:de:cf:6d:de:bf:34:b7:5f:4a:d2:2c:b1:03:
49:31:01:fa:0d:93:2a:26:30:ef:02:bf:5a:61:3e:13:f6:86:
f3:8f:45:c1:36:78:d1:ca:05:8a:6b:c4:ad:33:89:45:9f:e3:
6b:fe:59:44:7d:24:34:36:5b:90:c9:f1:21:8a:be:a0:c7:df:
9f:74:7e:09:1d:2d:8f:d0:f8:90:86:87:57:30:68:dc:60:b8:
00:24:44:c2:64:0c:ea:82:97:0b:1d:f3:a6:b1:9e:0c:df:06:
fe:ee:3f:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:51 2024 by rpki-client on console-ams.rpki-client.org