Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/85HEfkfxst3FXKtZ9UDMA0fmfF4.roa
File: 85HEfkfxst3FXKtZ9UDMA0fmfF4.roa (raw, json)
Hash identifier: IPnmUvG25nJOAaqPEm0VhXmiL9QuOsvU7Fc7zSigzEE=
Subject key identifier: F3:91:C4:7E:47:F1:B2:DD:C5:5C:AB:59:F5:40:CC:03:47:E6:7C:5E
Certificate issuer: /CN=3aba1172472ea80265d12982967de0a8b0bc5901
Certificate serial: 018CC4924680AC87570FF1DB88FF31CCA36A
Authority key identifier: 3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/85HEfkfxst3FXKtZ9UDMA0fmfF4.roa
Signing time: Mon 01 Jan 2024 10:29:29 +0000
ROA not before: Mon 01 Jan 2024 10:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204286
IP address blocks: 109.205.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Mar 2024 15:23:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:46:80:ac:87:57:0f:f1:db:88:ff:31:cc:a3:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aba1172472ea80265d12982967de0a8b0bc5901
Validity
Not Before: Jan 1 10:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f391c47e47f1b2ddc55cab59f540cc0347e67c5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d4:28:93:02:6d:bb:2b:54:e9:f8:c4:d5:53:
66:58:f1:4c:02:ff:49:b4:26:5b:e5:69:21:cc:fd:
da:ae:6a:41:07:8a:15:df:62:d1:9c:cd:16:3a:24:
0a:8a:cd:b2:38:6a:09:c5:e0:8d:e5:dc:bd:d5:1e:
3d:b0:33:04:65:15:04:f4:a4:67:d4:04:d6:70:b1:
bc:83:94:03:0a:c4:01:bc:cb:8d:b0:db:fc:4c:39:
46:1e:4d:0a:ca:9b:de:24:e3:5f:f7:d8:6a:d1:8e:
c7:b9:ee:2c:1f:8f:25:d0:31:fd:fb:14:ee:01:ef:
d1:9f:cc:3b:6f:6c:38:d6:d6:d4:a9:47:5b:af:41:
d6:c4:b4:49:b9:71:b9:ca:be:1c:af:a1:e2:00:11:
b8:86:6a:df:7f:17:0d:0b:23:9b:a3:13:6f:d9:fc:
ab:67:b0:78:8b:e4:67:41:27:2d:cc:cf:ac:cf:c5:
23:48:2e:46:7d:74:9d:4d:eb:4a:b8:4c:d7:0c:d9:
5b:a1:c0:49:5a:a1:85:cf:41:9d:d4:93:98:66:90:
17:22:b0:e0:40:c7:f0:49:e6:10:1d:be:2a:dd:39:
9b:98:3e:9c:b7:a3:d9:18:b8:1d:3d:0c:55:62:5a:
8e:59:4b:ac:6c:43:ca:3d:7c:15:95:c0:14:29:84:
4d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:91:C4:7E:47:F1:B2:DD:C5:5C:AB:59:F5:40:CC:03:47:E6:7C:5E
X509v3 Authority Key Identifier:
keyid:3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/85HEfkfxst3FXKtZ9UDMA0fmfF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.60.0/24
Signature Algorithm: sha256WithRSAEncryption
38:35:75:0b:e5:c6:35:01:e0:78:4f:65:5b:02:c9:be:86:fd:
6b:ee:13:e9:12:5a:d9:13:07:50:07:51:f1:d8:2b:69:97:50:
77:af:6b:f7:9b:e8:ff:b9:6d:ed:3d:9c:2e:ef:33:22:67:7b:
cc:40:e2:55:31:f2:6f:56:90:c9:c2:5c:a2:09:fb:3a:d4:d1:
10:f9:b2:4f:53:16:18:60:41:84:d7:13:50:93:18:d3:19:8a:
48:0c:8c:9a:2d:a3:b1:88:56:be:ef:85:e8:50:ec:4b:d7:53:
ff:e7:c8:af:0a:9d:07:28:5f:c1:db:0b:6f:d3:79:c8:ac:7b:
66:43:b6:ba:1e:c5:8f:04:bc:03:26:5a:1e:5d:fa:e3:a0:7a:
b2:ce:40:01:67:8a:2b:bb:03:55:96:23:bc:14:76:22:c8:96:
62:c5:d3:ac:29:7c:3e:bb:9a:67:75:53:2d:7d:42:27:49:3e:
ec:cb:ac:20:45:90:89:60:68:f3:4d:88:73:26:45:20:c9:ac:
68:d8:87:ac:92:94:db:cb:df:f1:f8:ba:a7:fb:3e:ae:b6:fd:
d2:28:d2:c8:f6:21:40:83:20:57:18:49:2e:1e:d2:d6:9a:4b:
b5:e7:7f:2b:98:54:e9:c2:02:f5:93:b3:2a:93:d4:f1:0b:d7:
0d:99:7b:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:04 2024 by rpki-client on console-ams.rpki-client.org