Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/qyrHWdsohT2tYAA6HKXk1ZiNj-U.roa
File: qyrHWdsohT2tYAA6HKXk1ZiNj-U.roa (raw, json)
Hash identifier: Ak16EaJOMTal2MzuerjJlqUjPtDpVFGL5ec7kBh6XAo=
Subject key identifier: AB:2A:C7:59:DB:28:85:3D:AD:60:00:3A:1C:A5:E4:D5:98:8D:8F:E5
Certificate issuer: /CN=7222c5ab7db3dd3966192faafe07f3115b0c8ee5
Certificate serial: 018DF09712A5991832A4DD3B751D675FE6DA
Authority key identifier: 72:22:C5:AB:7D:B3:DD:39:66:19:2F:AA:FE:07:F3:11:5B:0C:8E:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciLFq32z3TlmGS-q_gfzEVsMjuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/qyrHWdsohT2tYAA6HKXk1ZiNj-U.roa
Signing time: Wed 28 Feb 2024 16:40:48 +0000
ROA not before: Wed 28 Feb 2024 16:40:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49981
IP address blocks: 109.122.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 14:32:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f0:97:12:a5:99:18:32:a4:dd:3b:75:1d:67:5f:e6:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7222c5ab7db3dd3966192faafe07f3115b0c8ee5
Validity
Not Before: Feb 28 16:40:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab2ac759db28853dad60003a1ca5e4d5988d8fe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0d:d8:0e:2c:b1:65:66:bf:73:63:0c:f5:ed:
18:48:df:a5:dc:f2:b5:87:ec:d4:0c:38:55:fd:84:
af:89:ae:eb:1b:87:cf:9b:9b:bd:63:61:29:13:94:
72:a7:91:d4:52:01:5e:27:07:1e:e0:7f:f4:b2:08:
17:5c:af:8f:50:0a:b5:8e:28:0b:a4:fa:14:18:9a:
6a:30:cb:33:7d:ce:bc:c4:fa:30:6d:68:be:46:2c:
38:71:b0:28:31:6b:30:23:ef:73:6a:81:db:ec:9f:
2d:8d:ac:ec:cb:45:ec:26:2d:62:00:fc:ae:5b:0f:
31:74:b7:48:46:3c:0b:85:fa:9e:0f:ae:31:bd:b1:
5d:87:da:1d:d1:f5:85:67:36:d7:84:51:26:c8:b3:
48:ce:ba:3b:85:31:b5:c0:c3:18:5d:08:83:db:7c:
f9:c3:d1:74:8b:d7:90:1a:51:f6:63:11:0e:57:bd:
22:9b:98:ef:79:f9:aa:ca:f1:8e:a0:69:33:3b:e5:
a2:08:17:66:c1:b8:3f:0a:fa:fa:17:ff:e8:9e:d8:
3b:fa:e1:3a:4d:f2:52:8e:ab:e2:19:1d:20:2d:72:
9d:5a:61:4b:04:70:8f:56:74:a2:b4:67:2c:a2:b0:
47:c8:95:ce:30:64:b2:df:d9:f8:a8:05:a2:57:9f:
bc:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:2A:C7:59:DB:28:85:3D:AD:60:00:3A:1C:A5:E4:D5:98:8D:8F:E5
X509v3 Authority Key Identifier:
keyid:72:22:C5:AB:7D:B3:DD:39:66:19:2F:AA:FE:07:F3:11:5B:0C:8E:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciLFq32z3TlmGS-q_gfzEVsMjuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/qyrHWdsohT2tYAA6HKXk1ZiNj-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/ciLFq32z3TlmGS-q_gfzEVsMjuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.208.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:ce:57:4a:be:a7:30:15:7a:7a:df:94:eb:31:ac:b3:b9:22:
49:eb:e4:0d:b4:1b:4a:b1:25:c8:10:f7:a0:e6:11:bd:ae:16:
12:e8:f0:51:ea:a6:f3:16:f1:e1:a5:58:89:a4:1b:cd:b0:13:
60:9a:9f:2c:46:71:58:17:bd:e6:13:d1:e2:2c:e2:81:6e:52:
ac:74:7f:c8:cf:ab:b8:63:a6:d0:64:a7:e4:ca:f3:eb:4c:e8:
23:25:1e:c1:90:62:df:56:22:c8:64:51:68:4b:72:60:ae:5a:
07:1c:94:ff:b3:a4:9a:c0:04:48:07:77:79:c8:ef:c4:37:36:
7a:ea:7f:27:ca:4f:dc:59:cf:49:ce:fe:d4:b1:34:fa:5a:3b:
8d:49:68:bb:55:a4:81:6c:08:35:c9:13:e7:bf:76:0e:90:13:
11:1e:48:c9:c4:da:be:91:ba:65:28:b4:c6:2f:81:73:9a:bb:
34:f3:3a:fc:66:4e:b0:ab:c2:a7:51:64:ba:4d:1a:6c:c4:85:
19:ac:bd:ea:6b:cf:94:3d:11:3e:1c:92:b5:2e:96:33:71:a7:
d3:ec:b2:f7:73:a0:d0:74:4c:5d:b5:d1:f9:85:47:81:c0:37:
a9:42:bf:f2:f3:29:79:8a:08:22:86:40:d9:8c:f5:14:16:cb:
3b:81:d0:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:57 2024 by rpki-client on console-fra.rpki-client.org