Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/ZZu9LWfjizuvDNALknTPPR92wUg.roa
File: ZZu9LWfjizuvDNALknTPPR92wUg.roa (raw, json)
Hash identifier: uWZRYhX5+Ax08bMQ/gCW7GN0oTTH+RD1C/aUVvQ8SBU=
Subject key identifier: 65:9B:BD:2D:67:E3:8B:3B:AF:0C:D0:0B:92:74:CF:3D:1F:76:C1:48
Certificate issuer: /CN=7222c5ab7db3dd3966192faafe07f3115b0c8ee5
Certificate serial: 018DBA4FB2BF6BE7E6009CA049C69FB3C197
Authority key identifier: 72:22:C5:AB:7D:B3:DD:39:66:19:2F:AA:FE:07:F3:11:5B:0C:8E:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciLFq32z3TlmGS-q_gfzEVsMjuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/ZZu9LWfjizuvDNALknTPPR92wUg.roa
Signing time: Sun 18 Feb 2024 03:43:21 +0000
ROA not before: Sun 18 Feb 2024 03:43:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49872
IP address blocks: 109.122.192.0/24 maxlen: 24
109.122.193.0/24 maxlen: 24
109.122.195.0/24 maxlen: 24
109.122.197.0/24 maxlen: 24
109.122.201.0/24 maxlen: 24
109.122.203.0/24 maxlen: 24
109.122.205.0/24 maxlen: 24
109.122.207.0/24 maxlen: 24
109.122.210.0/24 maxlen: 24
109.122.211.0/24 maxlen: 24
109.122.212.0/24 maxlen: 24
109.122.213.0/24 maxlen: 24
109.122.215.0/24 maxlen: 24
109.122.216.0/24 maxlen: 24
109.122.217.0/24 maxlen: 24
109.122.219.0/24 maxlen: 24
109.122.220.0/24 maxlen: 24
109.122.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Apr 2024 18:07:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ba:4f:b2:bf:6b:e7:e6:00:9c:a0:49:c6:9f:b3:c1:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7222c5ab7db3dd3966192faafe07f3115b0c8ee5
Validity
Not Before: Feb 18 03:43:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=659bbd2d67e38b3baf0cd00b9274cf3d1f76c148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:73:fb:bc:a7:85:88:a5:66:63:ac:de:f4:1c:
10:5d:ac:c2:ca:86:07:47:d6:cb:2e:97:58:63:a7:
6a:a2:ea:5e:09:01:cf:87:ec:86:4d:fd:09:fe:62:
da:5d:3e:45:59:2f:71:39:6a:18:00:1a:0e:7c:50:
60:d7:dd:e2:47:f5:72:05:d6:99:b8:0c:c6:53:99:
50:a7:b9:c6:86:e1:ca:62:95:f0:3b:a0:68:b7:88:
bd:2d:f4:d6:d3:1d:c1:3f:36:60:37:8a:81:08:33:
42:9b:a2:42:89:ef:07:f6:22:82:3d:6c:2b:e4:e8:
32:52:0d:e1:d7:7a:64:8d:56:18:65:1d:0a:47:5d:
55:5c:d6:8c:2c:ff:0c:3b:e4:33:f6:16:da:3d:37:
ff:74:55:ab:14:d0:eb:63:af:17:38:95:34:8a:7e:
09:9b:e6:76:56:b8:70:b0:fd:a4:1e:2d:40:29:7e:
63:42:bd:5f:df:29:91:42:d8:58:f8:57:db:6b:0d:
60:a2:bb:d6:79:56:7d:88:a1:28:01:2b:15:ac:eb:
27:bd:26:18:79:b2:97:cd:25:fa:4c:c0:5f:d0:df:
2d:76:18:5c:d7:c2:45:cb:53:b7:72:c5:e4:55:01:
34:67:dc:e4:24:91:74:25:6b:26:0a:bc:88:0a:b4:
89:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:9B:BD:2D:67:E3:8B:3B:AF:0C:D0:0B:92:74:CF:3D:1F:76:C1:48
X509v3 Authority Key Identifier:
keyid:72:22:C5:AB:7D:B3:DD:39:66:19:2F:AA:FE:07:F3:11:5B:0C:8E:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciLFq32z3TlmGS-q_gfzEVsMjuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/ZZu9LWfjizuvDNALknTPPR92wUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/ciLFq32z3TlmGS-q_gfzEVsMjuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.192.0/23
109.122.195.0/24
109.122.197.0/24
109.122.201.0/24
109.122.203.0/24
109.122.205.0/24
109.122.207.0/24
109.122.210.0-109.122.213.255
109.122.215.0-109.122.217.255
109.122.219.0-109.122.221.255
Signature Algorithm: sha256WithRSAEncryption
8f:7d:92:68:d3:30:d1:b3:50:d5:30:f3:00:33:d3:57:d5:df:
96:b6:1f:c7:73:f4:32:35:2e:4d:ee:00:e7:b7:ba:46:f0:9f:
d5:97:ce:4d:5d:c1:5c:1f:69:a5:13:ec:93:2b:8a:63:1b:e1:
05:be:1e:5f:05:c1:55:53:a2:2c:5f:c6:5b:e1:f0:78:25:cc:
9b:a7:e2:b0:6d:fc:1d:39:38:fb:aa:28:6e:25:55:81:3b:46:
d0:e2:07:e4:4d:95:ab:e2:5c:5c:35:90:26:a9:58:ec:6e:f5:
57:85:30:d5:d6:6f:ec:c1:7e:6a:2f:bc:57:0a:b1:db:0d:56:
45:b9:5b:29:1c:a7:52:92:03:07:e4:b5:b7:50:89:01:b6:4a:
11:81:b1:03:65:a3:ae:ee:5b:22:d7:2e:76:00:85:15:79:88:
4a:83:a8:fc:b2:26:37:c8:92:27:d7:2e:1e:7b:19:c2:f5:35:
84:1b:73:3b:5d:b0:b3:60:04:8b:3a:3c:c0:07:87:99:56:41:
b5:e2:51:c9:8a:4c:df:2a:63:c9:9a:ff:50:2d:70:ac:a5:69:
31:50:f2:68:a7:fa:29:68:29:42:fb:7e:bd:aa:d3:39:e1:3f:
1f:57:23:03:49:4c:71:37:88:89:2a:ac:6d:dd:13:18:35:32:
5c:fa:2e:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:27 2024 by rpki-client on console-ams.rpki-client.org