Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/suEl4XKYVkd5PMdBDDBHm0kHt_g.roa
File: suEl4XKYVkd5PMdBDDBHm0kHt_g.roa (raw, json)
Hash identifier: bXFLoCbHPYzS8yt5b+WzP/vhLcPpTx0gar4dqpiSYx0=
Subject key identifier: B2:E1:25:E1:72:98:56:47:79:3C:C7:41:0C:30:47:9B:49:07:B7:F8
Certificate issuer: /CN=84abf0c981701aba97e4fcd0bed4e4cdb8692047
Certificate serial: 01857169D66AB46ECAC7FBCF68472DD0B80D
Authority key identifier: 84:AB:F0:C9:81:70:1A:BA:97:E4:FC:D0:BE:D4:E4:CD:B8:69:20:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKvwyYFwGrqX5PzQvtTkzbhpIEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/suEl4XKYVkd5PMdBDDBHm0kHt_g.roa
Signing time: Mon 02 Jan 2023 07:37:19 +0000
ROA not before: Mon 02 Jan 2023 07:37:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208855
IP address blocks: 109.71.152.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:d6:6a:b4:6e:ca:c7:fb:cf:68:47:2d:d0:b8:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84abf0c981701aba97e4fcd0bed4e4cdb8692047
Validity
Not Before: Jan 2 07:37:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2e125e172985647793cc7410c30479b4907b7f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:84:5d:89:e7:ca:66:f2:19:b0:6d:b8:5c:99:
0a:43:2e:36:dc:48:d1:74:4d:72:42:a8:b3:19:22:
41:6a:a6:24:97:90:4f:55:8b:68:a9:28:74:ef:f3:
ed:1b:29:9f:d7:75:80:e7:3c:d2:f1:78:36:71:19:
6a:3c:f7:2c:0a:26:c6:a9:ec:00:48:78:6a:8f:7c:
cd:fd:f8:c0:4f:b0:e8:de:0d:7f:0c:b2:e1:81:a1:
2c:d6:ec:0c:53:5e:eb:07:91:36:03:90:6e:25:f0:
a5:1c:09:6b:00:22:c6:e0:3d:d3:19:b5:62:5d:f8:
b0:7c:3b:cc:eb:a6:5a:12:86:ac:08:5f:fb:09:cd:
f8:56:b0:0d:29:69:84:c6:e0:82:bf:f2:48:d3:38:
a8:ea:9e:93:4c:e3:a1:f6:ec:d4:ce:90:40:1c:18:
f2:c7:4d:08:0c:41:fe:de:c7:8b:dd:69:88:59:48:
8c:bc:ad:6d:67:41:b5:7e:86:af:8f:4d:0d:13:04:
a6:8e:45:51:78:e4:a7:79:10:60:0c:05:ec:ba:3f:
51:d1:81:36:3c:c7:35:8f:5f:ec:2c:f8:dd:2b:fc:
89:54:1c:4b:d2:fb:94:c4:3b:5f:04:2e:75:74:32:
0f:62:e2:3e:be:3a:c5:b5:08:d7:ce:8d:9d:a8:5c:
e2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E1:25:E1:72:98:56:47:79:3C:C7:41:0C:30:47:9B:49:07:B7:F8
X509v3 Authority Key Identifier:
keyid:84:AB:F0:C9:81:70:1A:BA:97:E4:FC:D0:BE:D4:E4:CD:B8:69:20:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKvwyYFwGrqX5PzQvtTkzbhpIEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/suEl4XKYVkd5PMdBDDBHm0kHt_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/hKvwyYFwGrqX5PzQvtTkzbhpIEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.71.152.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:f0:30:9e:56:58:19:b9:07:5b:8b:a4:a4:fc:c7:47:3b:86:
c8:20:b2:27:ef:11:15:e6:cb:c6:1d:70:12:24:38:b2:b0:c7:
58:c6:ab:8f:a0:9b:cd:43:35:86:99:2c:c6:1f:3b:67:f5:7a:
1a:0a:bb:d9:f1:b3:ce:cb:81:1c:69:e3:1a:d2:fe:23:bd:4c:
10:78:80:7e:2b:be:a4:b7:f1:ad:b8:7e:bb:14:55:1c:43:35:
e8:a8:71:b2:10:74:34:cd:84:d9:51:50:cc:ec:e1:c4:cd:0c:
88:51:d6:80:86:71:a7:92:8a:42:94:e3:d3:88:be:d3:7c:dd:
07:13:86:69:d5:4d:83:ec:2d:4e:f9:92:5d:ba:84:c6:8d:07:
e7:20:cd:f9:66:82:09:4a:b4:e3:8e:d3:c4:e1:2c:04:7e:14:
81:47:19:3f:6c:3c:03:9a:7c:61:85:88:6e:fa:23:07:73:30:
35:ad:d8:a7:b4:79:6a:5f:1f:e4:e2:bc:b3:43:09:d9:ea:ff:
ba:bf:38:80:40:f8:4f:28:ff:fd:1a:3b:53:8a:cc:83:5b:db:
bc:85:54:37:59:d1:05:32:df:0b:a5:15:1a:65:2b:97:c2:ff:
bc:ae:cc:86:0e:eb:c5:aa:1a:e8:82:c6:89:47:de:12:d1:00:
a8:4f:96:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:07 2024 by rpki-client on console-ams.rpki-client.org