Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/6hQ_0XPAkL-_DfddA_YP98N0pck.roa
File: 6hQ_0XPAkL-_DfddA_YP98N0pck.roa (raw, json)
Hash identifier: +PjwD/AuWxkgks+kMA/Gy3YCTWMM5SLCW50NcMCqv3E=
Subject key identifier: EA:14:3F:D1:73:C0:90:BF:BF:0D:F7:5D:03:F6:0F:F7:C3:74:A5:C9
Certificate issuer: /CN=7222c5ab7db3dd3966192faafe07f3115b0c8ee5
Certificate serial: 018F304FD10980C90C3A3C2C0F687D063E27
Authority key identifier: 72:22:C5:AB:7D:B3:DD:39:66:19:2F:AA:FE:07:F3:11:5B:0C:8E:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciLFq32z3TlmGS-q_gfzEVsMjuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/6hQ_0XPAkL-_DfddA_YP98N0pck.roa
Signing time: Tue 30 Apr 2024 18:41:28 +0000
ROA not before: Tue 30 Apr 2024 18:41:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49872
IP address blocks: 109.122.192.0/24 maxlen: 24
109.122.193.0/24 maxlen: 24
109.122.194.0/24 maxlen: 24
109.122.195.0/24 maxlen: 24
109.122.196.0/24 maxlen: 24
109.122.197.0/24 maxlen: 24
109.122.198.0/24 maxlen: 24
109.122.199.0/24 maxlen: 24
109.122.201.0/24 maxlen: 24
109.122.203.0/24 maxlen: 24
109.122.205.0/24 maxlen: 24
109.122.207.0/24 maxlen: 24
109.122.208.0/24 maxlen: 24
109.122.210.0/24 maxlen: 24
109.122.211.0/24 maxlen: 24
109.122.212.0/24 maxlen: 24
109.122.213.0/24 maxlen: 24
109.122.214.0/24 maxlen: 24
109.122.215.0/24 maxlen: 24
109.122.216.0/24 maxlen: 24
109.122.217.0/24 maxlen: 24
109.122.218.0/24 maxlen: 24
109.122.219.0/24 maxlen: 24
109.122.220.0/24 maxlen: 24
109.122.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 05 May 2024 03:48:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:30:4f:d1:09:80:c9:0c:3a:3c:2c:0f:68:7d:06:3e:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7222c5ab7db3dd3966192faafe07f3115b0c8ee5
Validity
Not Before: Apr 30 18:41:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea143fd173c090bfbf0df75d03f60ff7c374a5c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ec:45:0f:fa:fa:6b:f3:95:0e:57:79:55:0a:
4e:98:00:c5:a3:9b:96:01:1e:f3:c4:2b:53:02:64:
af:c9:30:53:05:50:03:b6:e1:0b:52:34:ce:af:04:
29:43:98:1a:02:79:ad:8e:e5:15:f7:33:ab:96:39:
df:09:2a:e4:c5:ec:7a:7e:40:94:ce:67:f9:54:9f:
c1:c6:fb:02:e6:0c:37:a0:9c:bd:70:58:f5:b8:aa:
21:41:ea:e0:9a:de:64:6e:96:ed:17:ee:f6:5e:84:
08:e6:45:3e:02:5e:36:89:81:b9:b4:17:d9:9c:46:
f8:54:25:24:0d:67:cb:6d:62:5e:81:c6:df:33:a7:
5d:43:05:94:bb:7b:98:36:a4:3b:cd:91:f0:de:6a:
39:be:3e:37:90:f6:8c:46:eb:d7:50:76:71:42:21:
58:01:2a:6e:79:6e:b8:7c:cc:ff:4d:3c:e0:35:3d:
fa:21:fb:83:e1:8c:95:13:1d:1b:5e:a6:f1:a9:f9:
d6:44:e4:e1:eb:2a:1f:5f:fa:a5:b3:ca:07:82:89:
d9:fb:a4:06:36:06:cc:4e:c8:8c:18:8a:c2:91:86:
80:d5:56:8a:65:41:ed:c8:a1:61:a8:ba:68:02:df:
37:8d:df:b9:75:72:f5:32:2d:d9:6b:42:90:17:c0:
e5:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:14:3F:D1:73:C0:90:BF:BF:0D:F7:5D:03:F6:0F:F7:C3:74:A5:C9
X509v3 Authority Key Identifier:
keyid:72:22:C5:AB:7D:B3:DD:39:66:19:2F:AA:FE:07:F3:11:5B:0C:8E:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciLFq32z3TlmGS-q_gfzEVsMjuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/6hQ_0XPAkL-_DfddA_YP98N0pck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/ciLFq32z3TlmGS-q_gfzEVsMjuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.192.0/21
109.122.201.0/24
109.122.203.0/24
109.122.205.0/24
109.122.207.0-109.122.208.255
109.122.210.0-109.122.221.255
Signature Algorithm: sha256WithRSAEncryption
04:f6:3d:c6:fe:e1:da:74:9f:34:4d:55:d1:91:dd:fe:e9:97:
22:75:e6:05:d7:01:d2:e1:df:64:4a:bf:60:26:d2:b8:a0:d1:
d1:13:b1:c5:3f:b5:e6:5b:e8:5b:53:06:f7:9c:6c:35:c4:08:
aa:cc:d2:09:cc:70:fa:d4:e2:7f:24:a3:3f:ef:0f:50:e6:24:
06:b8:ce:15:ab:9c:06:6e:fe:a1:ca:31:c7:68:9a:07:12:8b:
4d:0b:56:3c:f8:89:d8:38:a3:f3:b5:80:0d:8d:85:e1:f1:e2:
ee:44:d7:8e:db:b2:9c:b0:2e:aa:a0:eb:67:9c:3c:26:43:c3:
16:df:b0:25:cc:d3:bc:0e:b8:16:d6:e3:02:72:2a:26:b6:4c:
b3:c6:c9:0a:09:64:6b:af:41:e8:bd:69:7b:c3:f1:50:02:ae:
a4:72:eb:a8:2b:bf:ea:23:10:e7:58:a6:82:2b:89:ab:51:22:
5f:9d:3e:e7:3b:26:5b:42:eb:1d:c1:5c:ce:cc:51:80:e6:e6:
69:1b:b4:a0:17:84:ec:a6:f2:27:96:11:14:f2:c0:4c:45:23:
eb:d7:52:b1:69:2c:8a:3d:7d:fd:16:0a:23:08:e2:8a:56:5e:
9f:1c:d9:4a:15:01:1d:04:81:2a:a9:dc:9b:a8:d6:19:51:93:
69:e8:2d:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 04:45:09 2024 by rpki-client on console-ams.rpki-client.org