Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/gChfB7W01tsRMRzfqo4LCg3Z_3M.roa
File: gChfB7W01tsRMRzfqo4LCg3Z_3M.roa (raw, json)
Hash identifier: 0Q4+8JFZ1MYKeJbVLgo1om/w0oOINvHH8rEdT0WrKyA=
Subject key identifier: 80:28:5F:07:B5:B4:D6:DB:11:31:1C:DF:AA:8E:0B:0A:0D:D9:FF:73
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018F758426555BF0436631BBC9E68D013942
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/gChfB7W01tsRMRzfqo4LCg3Z_3M.roa
Signing time: Tue 14 May 2024 05:12:25 +0000
ROA not before: Tue 14 May 2024 05:12:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 63023
IP address blocks: 109.172.80.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 16 May 2024 11:53:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:75:84:26:55:5b:f0:43:66:31:bb:c9:e6:8d:01:39:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: May 14 05:12:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=80285f07b5b4d6db11311cdfaa8e0b0a0dd9ff73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c5:92:75:1d:48:62:a0:93:5f:39:df:d8:50:
7e:fc:74:97:07:00:43:fb:86:69:a8:c1:31:3a:53:
d2:94:46:58:d9:78:67:cd:c9:15:ea:5e:f4:6c:fe:
71:05:ff:cf:6d:36:c8:a1:ee:94:ce:d6:7a:0b:d4:
3f:08:55:69:f8:05:40:1a:f0:89:d6:f7:bd:a2:30:
19:5d:5b:c5:28:af:7f:5a:8f:5b:65:0d:b9:09:a5:
e0:b7:57:5f:61:48:81:c7:5d:06:cf:98:af:08:8f:
4d:34:a5:49:b7:75:f3:5c:b8:f5:9a:73:d6:e0:43:
43:98:1d:f5:d7:24:e3:3a:30:9a:a7:68:45:98:a1:
11:50:ff:50:e8:b3:9b:c6:84:5a:0a:32:29:8e:f8:
c7:45:9f:21:12:c5:73:37:3e:fe:42:16:77:2e:17:
2b:49:75:bf:dc:67:5c:4e:76:12:0d:55:b8:59:ec:
d2:8d:7e:e4:2b:9b:47:10:60:80:f7:62:cd:d0:c1:
34:f2:f0:2f:eb:37:c6:9f:f0:f0:6d:a0:52:2a:d8:
9e:45:53:dd:39:aa:29:57:b9:c0:25:89:a2:73:6d:
66:12:0c:c6:f9:6e:cb:c5:ed:f9:9d:64:24:e9:6a:
1d:ae:61:7e:67:20:85:2c:4f:b7:f3:b3:4c:d2:4c:
a8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:28:5F:07:B5:B4:D6:DB:11:31:1C:DF:AA:8E:0B:0A:0D:D9:FF:73
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/gChfB7W01tsRMRzfqo4LCg3Z_3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.172.80.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:6a:8d:79:a2:6e:14:b5:ce:30:a4:1c:f2:bd:1d:94:35:e6:
7c:00:b2:4c:19:08:00:80:5d:84:f9:d3:7b:1a:fe:5d:18:89:
c3:64:2a:5a:55:3a:7d:36:f9:19:90:30:95:bd:4b:48:45:bf:
cf:e4:ba:3e:aa:7e:25:35:32:2b:ea:f9:15:08:c7:3b:6c:21:
2b:6a:59:db:1d:70:ab:b1:5e:fa:2d:ff:9a:6b:27:fe:9e:44:
3d:08:cd:1d:c1:28:3b:7d:70:08:78:ea:f3:2c:89:24:96:d3:
31:66:6e:87:74:f5:0c:06:66:c1:f2:03:b9:cd:7f:66:7f:4e:
ed:fc:90:b8:40:f5:ca:de:1c:13:be:59:13:d2:f0:ba:e8:bd:
82:af:a6:40:d6:5d:f0:47:01:72:54:7d:e8:a7:73:44:b2:6c:
5f:81:78:0a:1b:fe:eb:0a:d0:3e:10:e7:d8:ca:6c:86:80:03:
c2:97:90:c3:e9:df:12:79:56:16:ab:6d:61:b6:e4:e3:30:11:
45:c8:70:c7:fb:fa:ff:d1:0a:9a:7d:53:9e:7a:7e:d3:bf:ee:
b5:f9:5c:e9:39:78:b6:d2:46:d7:53:1f:57:af:48:26:d4:e5:
a2:a0:44:0a:9a:50:49:33:4b:5f:0e:66:c8:35:da:52:51:ff:
a7:14:cc:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org