Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/_ISGyicT0EZYWE5XTJSET3nvSlI.roa
File: _ISGyicT0EZYWE5XTJSET3nvSlI.roa (raw, json)
Hash identifier: q7/jXU5kF7l6Vdu4KcD5CK+bafQ0DkHmsojmly3XSEc=
Subject key identifier: FC:84:86:CA:27:13:D0:46:58:58:4E:57:4C:94:84:4F:79:EF:4A:52
Certificate issuer: /CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2
Certificate serial: 01856E0B0EFACD59D3434310309C5CC1FF69
Authority key identifier: 22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/_ISGyicT0EZYWE5XTJSET3nvSlI.roa
Signing time: Sun 01 Jan 2023 15:54:56 +0000
ROA not before: Sun 01 Jan 2023 15:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32875
IP address blocks: 109.166.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0b:0e:fa:cd:59:d3:43:43:10:30:9c:5c:c1:ff:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2
Validity
Not Before: Jan 1 15:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc8486ca2713d04658584e574c94844f79ef4a52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:3b:64:9e:37:2a:86:7e:0a:32:91:ad:eb:6d:
6b:4b:f4:4d:6a:da:d3:bf:18:81:1a:7c:b1:5a:bf:
35:6e:b9:3a:11:f7:25:df:47:f4:b1:99:fe:29:bd:
73:fa:5d:06:7b:2e:da:a9:20:79:2a:fd:a3:6d:c1:
a1:3a:39:47:30:fa:2b:d9:7b:02:91:87:1a:46:0a:
3b:2c:cb:d9:e7:ce:2e:07:58:71:d7:c6:38:ba:d3:
69:a7:fa:b1:2b:11:fb:de:2b:d0:d1:d5:ad:3f:b1:
44:c0:53:50:0c:f7:c1:0a:61:9d:6f:11:63:20:2b:
8c:a0:27:53:8c:c5:5b:7e:6d:bf:0c:a1:24:b3:62:
f0:0d:9f:2c:74:74:5c:80:9d:8f:8d:5c:b2:6c:e4:
c1:51:c7:65:09:97:dc:28:41:a3:fa:73:67:c4:42:
14:de:17:dd:82:57:ca:90:83:9d:8c:a7:86:42:8f:
72:c5:61:fe:77:5f:ad:4d:2e:e6:bc:8b:4e:a2:f2:
ef:aa:61:c7:67:af:1f:f9:ff:82:90:ea:4e:bb:05:
f6:f3:54:94:60:6a:8f:77:f5:f2:cb:74:da:51:94:
96:36:49:a5:62:8d:8f:79:5d:9d:04:fc:7b:55:3d:
07:43:84:ec:89:d1:10:75:ef:ea:0a:1f:43:8e:cf:
06:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:84:86:CA:27:13:D0:46:58:58:4E:57:4C:94:84:4F:79:EF:4A:52
X509v3 Authority Key Identifier:
keyid:22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/_ISGyicT0EZYWE5XTJSET3nvSlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.166.39.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:b6:1e:b6:db:b8:b0:48:b0:96:e9:6d:ff:9d:e0:fd:12:e3:
d9:32:c9:25:78:02:e1:b7:8e:a3:cd:1a:22:0a:67:1b:b6:e6:
53:81:73:bf:5b:4c:f0:89:7a:1d:0b:4b:5b:f8:12:49:95:de:
ff:dc:85:e1:dd:66:55:85:9d:e2:5b:4e:e0:18:51:5c:f8:c2:
ae:11:04:75:e3:6b:51:b2:01:0f:8f:6f:ab:54:76:37:9c:d6:
52:4d:8d:5d:68:14:20:64:c7:33:47:64:a9:23:82:64:5c:fe:
d8:09:0f:52:ab:4f:b5:0b:f8:b4:2c:2f:f3:0c:95:88:b7:c5:
b9:a6:bd:b4:a5:3d:70:19:93:9e:5a:b0:bf:be:58:f9:02:45:
fe:d8:e4:5e:4b:45:53:92:b0:48:8c:20:c6:15:b0:ad:b1:9f:
12:91:52:b9:79:8e:30:12:b8:ad:42:70:56:f7:88:5f:10:2c:
ee:ee:02:99:d0:f5:51:f9:e0:a6:8f:2e:82:9b:e6:2d:bf:9c:
b5:61:0f:49:59:25:75:15:48:ca:b8:60:03:76:09:85:14:03:
12:6b:9f:a4:13:96:dc:c6:ba:4e:f0:7b:f9:f1:70:96:0b:6c:
68:f4:1b:6a:12:18:75:93:d9:3f:88:96:63:b0:1c:90:d1:e5:
3e:88:b6:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:29 2024 by rpki-client on console-ams.rpki-client.org