Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/dKxvSJZs0QKhvLfB4fLeqWXLBfo.roa
File: dKxvSJZs0QKhvLfB4fLeqWXLBfo.roa (raw, json)
Hash identifier: 3Dr0QBzqO8wmT9BTRTjRT/ZTrU4Su3F3joPgy7yQ9ng=
Subject key identifier: 74:AC:6F:48:96:6C:D1:02:A1:BC:B7:C1:E1:F2:DE:A9:65:CB:05:FA
Certificate issuer: /CN=896ed6e4b5c7c19db98c57432af4dcf630bf60ae
Certificate serial: 018BA3E77283413EE93092B9826B5035C904
Authority key identifier: 89:6E:D6:E4:B5:C7:C1:9D:B9:8C:57:43:2A:F4:DC:F6:30:BF:60:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/dKxvSJZs0QKhvLfB4fLeqWXLBfo.roa
Signing time: Mon 06 Nov 2023 09:12:16 +0000
ROA not before: Mon 06 Nov 2023 09:12:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199739
IP address blocks: 109.224.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Nov 2023 08:06:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a3:e7:72:83:41:3e:e9:30:92:b9:82:6b:50:35:c9:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896ed6e4b5c7c19db98c57432af4dcf630bf60ae
Validity
Not Before: Nov 6 09:12:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74ac6f48966cd102a1bcb7c1e1f2dea965cb05fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:df:94:9f:96:25:e9:5d:46:be:fc:a2:65:c1:
00:0d:8b:9c:e8:5a:f2:d4:54:bd:8d:4a:40:82:99:
8a:22:2a:59:37:0b:8c:5c:86:cc:e4:62:bd:83:4a:
78:b5:66:9c:51:16:92:84:27:20:ce:13:f2:1a:fc:
cb:f2:8d:4d:cc:a1:f4:a9:fc:0a:03:59:ce:9f:5c:
cf:fe:c9:19:eb:26:e9:45:4e:27:db:7f:80:87:ac:
30:52:99:e2:c9:9c:cf:ad:62:52:27:5f:bb:60:75:
23:67:84:04:96:a5:36:05:fd:9a:c6:79:50:d9:5b:
83:8e:13:c1:00:45:f4:c0:28:66:1e:9f:56:7d:10:
34:d5:d5:88:46:61:8c:37:b0:aa:17:82:2d:b7:a6:
b6:af:1e:9d:91:b2:5b:99:18:e0:8b:62:68:00:e4:
0d:60:a7:c1:f6:61:d5:20:8b:53:d6:e1:38:2d:f2:
18:ee:f6:1b:89:12:e8:45:53:30:2e:d6:fc:88:44:
84:64:3c:8b:53:9c:1d:79:a4:39:e6:e1:7e:ce:9b:
45:de:79:ad:69:5d:30:5e:f6:1a:b8:2b:99:0d:eb:
b9:db:ba:2b:a3:7d:b7:f7:d1:97:0d:a9:6f:33:1e:
f6:87:b6:9a:53:c3:d3:32:73:f8:9b:0d:8c:3c:93:
6f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:AC:6F:48:96:6C:D1:02:A1:BC:B7:C1:E1:F2:DE:A9:65:CB:05:FA
X509v3 Authority Key Identifier:
keyid:89:6E:D6:E4:B5:C7:C1:9D:B9:8C:57:43:2A:F4:DC:F6:30:BF:60:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/dKxvSJZs0QKhvLfB4fLeqWXLBfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/iW7W5LXHwZ25jFdDKvTc9jC_YK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.224.32.0/24
Signature Algorithm: sha256WithRSAEncryption
61:97:b4:82:b9:9a:10:3e:25:99:74:04:b8:28:8d:b2:24:ab:
bf:85:5a:2d:52:0c:e9:17:4c:21:76:2c:b1:8e:36:bd:fa:b1:
f8:c7:2f:db:18:b6:68:04:1e:5d:c1:5d:58:e0:33:c8:64:4b:
df:51:d1:95:c7:b3:16:72:f6:05:5f:8f:84:bc:0e:6e:33:25:
f9:ac:9e:14:99:1f:01:b9:6f:46:5a:e0:72:8b:8b:d3:1f:e5:
c0:e7:e6:55:d8:12:27:af:b1:57:ed:c3:eb:ab:15:a1:31:d4:
98:d1:90:ae:08:c4:e9:83:0b:70:aa:57:09:e0:51:7c:2f:9b:
a1:d8:7a:23:81:c2:94:cd:46:49:78:5a:4b:ae:2d:ff:78:a0:
d5:6a:31:94:de:04:68:ff:52:fc:1e:4c:85:8e:bb:e6:df:cc:
f4:fc:2a:d7:79:6d:1c:2d:6f:50:6f:0e:c9:c0:cf:78:a3:c7:
a2:22:52:78:ad:ce:ed:89:82:56:ce:0b:65:a3:12:01:29:8f:
ff:96:dd:d6:65:cb:c1:fb:cb:9b:17:06:72:8d:83:a6:de:8a:
b5:01:c0:be:08:99:cc:ac:9a:95:84:a5:39:df:d7:d6:fe:69:
94:9f:ea:a8:d3:d3:e8:cd:61:09:b2:23:59:5c:cc:5e:1d:ad:
9c:93:a9:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:07 2024 by rpki-client on console-ams.rpki-client.org