Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/4fbYL0K0wCKrPC82ko3AzkQBkjA.roa
File: 4fbYL0K0wCKrPC82ko3AzkQBkjA.roa (raw, json)
Hash identifier: EsaBh6QSWjYfJL+PtQlpEwGcLx+23AJYr6E0fryclxY=
Subject key identifier: E1:F6:D8:2F:42:B4:C0:22:AB:3C:2F:36:92:8D:C0:CE:44:01:92:30
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 0190CEFA76B45AF8FE7CDDAD3332778F521E
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/4fbYL0K0wCKrPC82ko3AzkQBkjA.roa
Signing time: Sat 20 Jul 2024 07:10:39 +0000
ROA not before: Sat 20 Jul 2024 07:10:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50591
IP address blocks: 109.230.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 Jul 2024 08:44:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ce:fa:76:b4:5a:f8:fe:7c:dd:ad:33:32:77:8f:52:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jul 20 07:10:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e1f6d82f42b4c022ab3c2f36928dc0ce44019230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4e:af:71:dd:54:01:30:20:21:ee:ae:ca:4e:
18:19:2a:a2:d2:8c:4b:33:5e:35:64:52:13:7d:5f:
52:23:23:3b:1b:bf:53:ed:5a:ab:d9:8f:59:13:28:
da:b5:18:f1:d4:2d:63:95:0f:cb:00:5e:48:57:bc:
76:1d:30:5a:13:0a:37:b7:c5:13:92:72:f7:b0:e1:
44:04:be:04:6a:7e:81:ed:25:94:1d:4b:31:f4:5c:
85:3e:79:56:26:ad:57:98:dc:cc:a7:02:1f:53:b2:
87:18:6b:f8:f4:fb:6d:97:96:0f:9f:74:2f:99:fb:
1e:8f:52:3f:22:4f:17:01:99:49:bd:4d:5a:4c:43:
84:db:da:51:85:62:ca:4c:b4:73:52:26:c3:e5:8c:
90:13:41:72:ae:f9:10:ea:69:90:da:51:40:45:f0:
cc:6e:e6:e8:3b:be:2a:4b:c1:19:b3:ef:14:8c:e7:
9f:53:97:c6:a4:60:71:77:f3:38:cf:c3:29:28:16:
96:88:98:99:28:8e:7f:84:b6:89:93:59:31:26:1c:
56:39:b7:2c:f2:a8:6b:69:a4:91:3a:6b:ae:67:6f:
ea:11:45:2a:42:35:91:fd:c0:f8:34:c0:9a:70:bf:
00:c0:cc:5a:ba:06:22:0a:6f:7d:12:fe:da:f4:a2:
3e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F6:D8:2F:42:B4:C0:22:AB:3C:2F:36:92:8D:C0:CE:44:01:92:30
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/4fbYL0K0wCKrPC82ko3AzkQBkjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.230.72.0/21
Signature Algorithm: sha256WithRSAEncryption
3f:61:4c:89:14:ba:34:87:a5:60:67:a2:84:30:82:2f:13:81:
9f:a9:cc:30:e2:af:12:79:b1:31:b9:27:5e:8e:08:57:eb:a1:
1a:86:c7:7e:b0:e5:c3:ee:90:90:3c:cc:a4:2a:69:78:5e:a2:
29:5d:45:42:0b:3b:08:05:58:68:84:6e:fc:4f:18:22:34:69:
b0:60:ed:7f:e4:de:50:8a:ba:85:d3:88:52:80:4c:89:06:bc:
ae:fb:76:5a:a7:94:09:67:64:fc:9d:20:84:bd:b9:2c:fb:08:
76:c3:46:c9:0d:24:46:1a:35:32:d1:08:0e:5a:95:dc:7b:be:
3e:f8:d0:a5:d7:06:b3:4a:4c:3e:42:e7:c5:60:22:4c:75:6d:
42:c5:33:56:77:41:32:ef:45:bf:71:73:be:b9:71:5f:2f:df:
a2:fc:8a:67:b0:7b:33:12:f7:11:11:e9:8c:a6:21:94:5d:8e:
6c:53:30:63:16:08:22:e1:9a:d9:5c:07:91:b2:67:66:cc:d9:
35:4d:30:bc:1b:c1:9c:9a:cc:a2:71:ad:57:e3:f5:9f:d7:c4:
fd:3e:ab:d0:18:e3:b3:5d:1d:c0:f9:f2:16:ea:4f:a4:17:e0:
6b:3d:b7:2f:43:b4:e6:ea:8a:d1:41:72:4a:29:3b:15:af:9f:
90:59:0b:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 21 12:09:16 2024 by rpki-client on console-ams.rpki-client.org