Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/Vi-psz6XspzNlbm8NOTUIRW4ze0.roa
File: Vi-psz6XspzNlbm8NOTUIRW4ze0.roa (raw, json)
Hash identifier: a43xCjUdw16iX6PRWqKnEzs0I6QrR1ZAP19zQghoYMA=
Subject key identifier: 56:2F:A9:B3:3E:97:B2:9C:CD:95:B9:BC:34:E4:D4:21:15:B8:CD:ED
Certificate issuer: /CN=3aba1172472ea80265d12982967de0a8b0bc5901
Certificate serial: 018B04AFAD3DBB22E8D362713DAEA7E42922
Authority key identifier: 3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/Vi-psz6XspzNlbm8NOTUIRW4ze0.roa
Signing time: Fri 06 Oct 2023 11:11:43 +0000
ROA not before: Fri 06 Oct 2023 11:11:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204286
IP address blocks: 109.205.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:04:af:ad:3d:bb:22:e8:d3:62:71:3d:ae:a7:e4:29:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aba1172472ea80265d12982967de0a8b0bc5901
Validity
Not Before: Oct 6 11:11:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=562fa9b33e97b29ccd95b9bc34e4d42115b8cded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ec:f0:ac:67:9f:63:3d:5e:42:5e:47:6f:44:
f8:09:8b:b6:2a:f9:56:81:3f:e7:9b:c9:59:6c:bc:
31:2d:25:70:1e:00:0d:fd:72:df:0e:6b:84:f1:1b:
1f:6d:97:77:99:f6:4d:47:50:99:85:50:bb:27:fe:
12:8e:92:14:9b:06:34:c2:fe:b6:26:f2:05:d8:ae:
3a:0b:44:11:1e:93:3a:c1:00:ff:3e:45:6d:7c:e2:
a3:5d:fe:2e:4b:56:6c:4e:80:f5:d5:a6:0c:76:dc:
f2:87:37:6b:44:9b:61:c6:42:8a:36:80:66:a7:a3:
00:13:ee:22:be:a5:6a:53:22:9a:24:7a:b7:4e:d5:
eb:9f:7d:6a:b7:5b:25:e5:2f:8f:1d:29:50:9e:0a:
ab:32:9d:17:f1:3f:0c:ab:a1:3e:d0:cb:b3:1c:e6:
88:bc:8c:e4:04:22:60:ee:8f:92:f6:a6:2b:98:6e:
c0:f0:69:c6:ec:95:d5:64:33:9d:d2:86:33:c2:be:
cb:b6:7f:51:c0:80:90:a5:dc:8e:ef:67:aa:b4:ad:
80:0c:42:98:a8:61:95:5e:b2:e6:af:4b:b1:04:20:
23:19:5d:49:b8:1d:f1:00:d9:7f:36:21:dd:33:fb:
ac:e8:12:85:cf:e3:85:9f:95:48:71:fb:45:d0:ed:
da:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:2F:A9:B3:3E:97:B2:9C:CD:95:B9:BC:34:E4:D4:21:15:B8:CD:ED
X509v3 Authority Key Identifier:
keyid:3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/Vi-psz6XspzNlbm8NOTUIRW4ze0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.60.0/24
Signature Algorithm: sha256WithRSAEncryption
41:00:69:ff:8f:05:2f:3e:56:5e:66:af:28:d3:52:51:4a:4a:
ac:5f:01:41:8b:89:43:57:73:e1:04:ed:d4:47:b8:9e:6b:bd:
9e:7a:e0:96:b8:99:20:f5:71:7b:ef:89:e4:c4:6c:1b:2a:8e:
19:c2:b0:4f:71:2f:7c:9f:dd:e2:0e:64:43:b4:41:a2:a3:35:
b6:85:fb:0c:4c:88:31:d4:dc:0d:e3:7f:4d:41:2d:33:fb:aa:
05:95:cc:f2:dc:45:43:fc:31:4f:ed:35:7f:46:a1:50:9e:67:
31:b7:6b:ab:4c:09:d6:81:0b:33:c8:16:ba:b2:10:9c:74:df:
7a:e6:23:ca:ae:80:8a:17:6e:b7:2a:31:fa:a0:42:40:c1:89:
db:6b:44:fb:9d:ad:dd:f0:b2:90:4d:17:7a:94:ef:d4:3a:a0:
70:68:cb:97:1d:83:9c:1a:bb:5c:97:e3:59:8b:08:44:2d:1d:
82:80:e9:58:25:06:6c:a6:3f:df:af:46:3f:38:64:99:43:20:
2d:9a:05:94:39:1c:d9:d5:5e:4d:e7:c7:3a:bf:0c:93:ec:6d:
98:cf:2b:76:d5:25:58:30:89:d9:30:73:d1:10:12:16:33:0c:
bf:d7:2d:b0:5c:c8:5e:a0:b9:11:0a:4b:99:ff:35:e9:a7:e4:
e9:86:56:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:17 2024 by rpki-client on console-fra.rpki-client.org