Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/bt2zL_7LkVyTlfryi3tDXg-62x8.roa
File: bt2zL_7LkVyTlfryi3tDXg-62x8.roa (raw, json)
Hash identifier: UwTcxeTuFkIoL9hc6KUxk3Y2Au4tTRUCOWwS4r4GAk4=
Subject key identifier: 6E:DD:B3:2F:FE:CB:91:5C:93:95:FA:F2:8B:7B:43:5E:0F:BA:DB:1F
Certificate issuer: /CN=7222c5ab7db3dd3966192faafe07f3115b0c8ee5
Certificate serial: 018F4E2FA6721CA054FD94EE87E23F5A6B2A
Authority key identifier: 72:22:C5:AB:7D:B3:DD:39:66:19:2F:AA:FE:07:F3:11:5B:0C:8E:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciLFq32z3TlmGS-q_gfzEVsMjuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/bt2zL_7LkVyTlfryi3tDXg-62x8.roa
Signing time: Mon 06 May 2024 13:54:56 +0000
ROA not before: Mon 06 May 2024 13:54:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49872
IP address blocks: 109.122.192.0/24 maxlen: 24
109.122.193.0/24 maxlen: 24
109.122.194.0/24 maxlen: 24
109.122.195.0/24 maxlen: 24
109.122.196.0/24 maxlen: 24
109.122.197.0/24 maxlen: 24
109.122.198.0/24 maxlen: 24
109.122.199.0/24 maxlen: 24
109.122.200.0/24 maxlen: 24
109.122.201.0/24 maxlen: 24
109.122.202.0/24 maxlen: 24
109.122.203.0/24 maxlen: 24
109.122.204.0/24 maxlen: 24
109.122.205.0/24 maxlen: 24
109.122.206.0/24 maxlen: 24
109.122.207.0/24 maxlen: 24
109.122.208.0/24 maxlen: 24
109.122.210.0/24 maxlen: 24
109.122.211.0/24 maxlen: 24
109.122.212.0/24 maxlen: 24
109.122.213.0/24 maxlen: 24
109.122.214.0/24 maxlen: 24
109.122.215.0/24 maxlen: 24
109.122.216.0/24 maxlen: 24
109.122.217.0/24 maxlen: 24
109.122.218.0/24 maxlen: 24
109.122.219.0/24 maxlen: 24
109.122.220.0/24 maxlen: 24
109.122.221.0/24 maxlen: 24
109.122.222.0/24 maxlen: 24
109.122.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 May 2024 03:20:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4e:2f:a6:72:1c:a0:54:fd:94:ee:87:e2:3f:5a:6b:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7222c5ab7db3dd3966192faafe07f3115b0c8ee5
Validity
Not Before: May 6 13:54:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6eddb32ffecb915c9395faf28b7b435e0fbadb1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e4:36:6f:53:bd:2b:2c:2d:4e:23:5b:98:0d:
eb:28:1e:48:cc:8e:df:17:fd:45:51:59:33:16:1d:
c0:92:50:14:39:a7:6e:18:6f:f8:be:66:70:bc:ba:
2c:eb:d8:f1:11:7a:2c:88:20:5a:68:73:19:70:bb:
08:eb:a7:d7:36:9b:b5:70:d0:6d:3b:28:d9:ed:b4:
93:f6:b7:6e:5b:4d:16:27:30:88:93:aa:a4:cd:e0:
2a:99:70:08:b3:02:b6:b8:58:32:9e:96:27:c2:8a:
86:37:2b:fd:a3:69:57:2f:2d:89:6a:ae:7a:52:16:
4f:02:1b:2c:8b:88:08:9b:27:83:7c:d2:8e:93:fb:
b5:22:4f:a4:c1:16:c2:c4:83:3a:3f:f9:07:c4:5b:
4d:b0:36:b4:05:ab:12:dd:13:fc:74:fc:78:87:4b:
8e:0d:ed:19:81:27:91:72:4b:3a:96:5b:ea:b6:d2:
2b:26:57:db:e9:1e:1b:07:97:bc:08:d9:ad:70:37:
a5:11:49:d6:4f:6e:3c:23:d2:54:8a:8d:ae:53:f4:
0e:dd:05:ac:08:4a:96:9c:ed:10:18:8c:e6:e6:69:
f2:2a:ca:38:c6:7f:b9:90:3c:ac:11:58:a0:7f:e9:
9d:ea:ed:a5:2f:09:b1:81:fc:7c:e5:86:d9:da:d1:
18:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:DD:B3:2F:FE:CB:91:5C:93:95:FA:F2:8B:7B:43:5E:0F:BA:DB:1F
X509v3 Authority Key Identifier:
keyid:72:22:C5:AB:7D:B3:DD:39:66:19:2F:AA:FE:07:F3:11:5B:0C:8E:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciLFq32z3TlmGS-q_gfzEVsMjuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/bt2zL_7LkVyTlfryi3tDXg-62x8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/ciLFq32z3TlmGS-q_gfzEVsMjuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.192.0-109.122.208.255
109.122.210.0-109.122.223.255
Signature Algorithm: sha256WithRSAEncryption
44:7d:32:fd:d7:d4:cf:a5:bb:9d:6b:d1:22:65:b0:92:0e:e4:
fa:ad:f8:32:e9:b5:2b:19:5b:56:11:ff:61:92:a6:78:45:54:
09:6a:3d:94:03:ec:a3:3b:4d:a9:bb:56:6a:f3:4a:57:85:27:
fc:67:21:63:8e:d3:d6:69:51:01:3f:f8:a5:1e:fa:26:1a:0a:
ac:fe:bb:3f:1f:7c:1e:df:31:58:51:1f:79:6a:34:a4:4b:47:
aa:5f:79:13:f2:30:d5:29:3a:ed:1a:d6:b5:c5:22:1d:be:5f:
b5:54:3d:89:d5:6c:18:24:96:50:e7:ad:01:3d:78:84:df:51:
d6:76:2e:33:09:05:cb:3b:08:8d:1d:13:7c:0e:94:4d:b4:3d:
69:7f:1c:19:23:7a:fc:bd:ec:f4:03:8a:72:16:97:3f:d5:a9:
48:04:79:40:c5:5b:0d:1b:7e:23:1a:c9:67:33:d2:9a:d0:4b:
44:c6:b1:fa:6d:2c:99:4a:9e:39:50:84:13:58:8e:af:36:56:
aa:a4:b1:d5:f7:e2:92:30:b8:70:dc:b9:3e:1d:15:01:81:18:
78:fa:c3:76:dd:8c:81:d0:89:8d:a6:bb:7f:86:b0:ef:88:c3:
6f:e7:b0:62:48:13:8c:f2:37:cb:b9:84:34:41:cf:22:91:52:
b0:65:54:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:27 2024 by rpki-client on console-ams.rpki-client.org