Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/bzIuKMluG_hpqr91XC3d7NxsEo4.roa
File: bzIuKMluG_hpqr91XC3d7NxsEo4.roa (raw, json)
Hash identifier: XTuw+bNmILZM99MDJI7/7ypfHZrdq9cbG5WhN3w6/5o=
Subject key identifier: 6F:32:2E:28:C9:6E:1B:F8:69:AA:BF:75:5C:2D:DD:EC:DC:6C:12:8E
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 018B8B19582508019AE4002055A088BC539A
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/bzIuKMluG_hpqr91XC3d7NxsEo4.roa
Signing time: Wed 01 Nov 2023 13:36:15 +0000
ROA not before: Wed 01 Nov 2023 13:36:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50591
IP address blocks: 109.230.77.0/24 maxlen: 24
109.230.75.0/24 maxlen: 24
109.230.73.0/24 maxlen: 24
109.230.76.0/24 maxlen: 24
109.230.74.0/24 maxlen: 24
109.230.78.0/24 maxlen: 24
109.230.72.0/24 maxlen: 24
109.230.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8b:19:58:25:08:01:9a:e4:00:20:55:a0:88:bc:53:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Nov 1 13:36:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f322e28c96e1bf869aabf755c2dddecdc6c128e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:75:9e:b8:a2:e5:2d:bb:21:19:c3:ff:f9:a0:
ee:cf:12:d4:67:5d:9f:ff:ad:ae:6c:34:92:6e:22:
69:76:1f:61:87:a9:c1:2c:bc:47:af:dd:cb:0a:ca:
e7:ef:4c:5a:b6:f1:43:ea:b3:4c:f0:9d:bb:56:ea:
f5:c3:77:25:e6:03:7a:d8:98:17:45:06:af:82:18:
99:e3:7a:ae:1d:6e:5e:20:66:28:55:95:00:20:b8:
93:fa:e8:62:e5:20:85:8d:fb:c8:8c:c0:41:eb:b6:
28:ad:d4:ef:4d:1a:72:d3:cd:e3:2c:b2:fd:2e:54:
1e:fb:5b:38:09:37:82:87:8d:ed:aa:60:19:dc:fe:
b9:33:bb:f2:4d:55:35:88:a8:4d:93:6b:cc:5a:1b:
45:16:0e:9c:d6:da:2f:98:77:e4:66:06:cb:42:1d:
f9:5f:d0:d9:12:60:b4:0f:79:fb:30:87:5d:75:bf:
a5:7f:57:fc:d9:66:5c:57:f4:55:eb:a5:dc:2c:58:
fc:22:21:4f:f8:72:bb:93:bb:63:f8:08:74:99:83:
8e:1a:9e:57:40:58:b9:91:b5:88:e5:c5:a0:66:80:
5c:7c:c8:90:4b:ee:6a:cf:d5:cb:d2:c8:78:4d:fc:
5d:b0:da:2c:e0:83:4b:cd:4d:3a:dd:e3:6b:e4:dc:
d8:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:32:2E:28:C9:6E:1B:F8:69:AA:BF:75:5C:2D:DD:EC:DC:6C:12:8E
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/bzIuKMluG_hpqr91XC3d7NxsEo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.230.72.0/21
Signature Algorithm: sha256WithRSAEncryption
5b:05:83:8d:e9:52:52:71:6b:cb:88:5b:e8:12:5f:bb:22:57:
3b:ec:15:75:71:c6:9d:91:e2:dd:e3:0a:31:6d:93:45:10:6d:
da:3a:9d:68:ca:70:3c:a7:d1:c6:11:bd:92:18:c3:bd:89:cd:
c0:61:18:90:b2:9c:ff:a9:fc:87:4d:29:12:9d:18:ba:f5:4e:
7b:db:6c:ee:63:a7:30:05:44:52:30:00:2a:0f:f1:8d:2d:8c:
8d:f0:78:59:be:12:5d:6c:a9:5c:f2:5a:b1:ce:99:f8:b0:fd:
b1:24:1c:5a:b8:33:46:71:dc:4b:1a:e7:e3:83:0b:c4:58:ec:
e6:b5:f8:58:6e:a8:12:8b:36:7e:24:93:a9:29:82:22:cf:bc:
cd:8e:37:a1:1b:dc:29:e1:47:48:33:10:8e:c5:25:d7:2d:62:
55:93:33:5f:70:54:93:78:ef:91:e3:ec:0d:a6:a5:72:16:34:
50:97:10:6b:44:ee:ea:37:cf:7b:ce:b7:27:b3:82:48:7e:b5:
5e:47:33:ca:9f:18:ef:fe:ed:67:c4:7f:56:44:37:37:80:de:
a4:b8:43:44:8f:4d:8a:9b:bb:90:dc:92:07:79:1b:9b:f2:2a:
8a:10:53:43:6f:56:49:f5:c9:82:ae:52:f1:3c:98:b3:53:1d:
e5:ab:41:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:06 2024 by rpki-client on console-ams.rpki-client.org