Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/pvfN7kULoHidnz-kqpV974hbS10.roa
File: pvfN7kULoHidnz-kqpV974hbS10.roa (raw, json)
Hash identifier: LazFBwLAJTJpVbZTZ+zypv7LPwpITV71qXX2BR4uXG8=
Subject key identifier: A6:F7:CD:EE:45:0B:A0:78:9D:9F:3F:A4:AA:95:7D:EF:88:5B:4B:5D
Certificate issuer: /CN=05899f3976487038a3fa6343952b14b4d072b33d
Certificate serial: 01856ECB5EC600BE15518423DB875BE138D2
Authority key identifier: 05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/pvfN7kULoHidnz-kqpV974hbS10.roa
Signing time: Sun 01 Jan 2023 19:24:59 +0000
ROA not before: Sun 01 Jan 2023 19:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44090
IP address blocks: 109.70.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Dec 2023 07:09:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:5e:c6:00:be:15:51:84:23:db:87:5b:e1:38:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05899f3976487038a3fa6343952b14b4d072b33d
Validity
Not Before: Jan 1 19:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6f7cdee450ba0789d9f3fa4aa957def885b4b5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e3:5e:e6:9e:40:2c:20:0a:24:85:b9:42:53:
93:d8:7f:ef:1d:55:2f:6a:ee:a5:85:17:bf:18:89:
36:4c:0e:04:8b:d2:2a:e4:6f:0a:66:19:a5:6a:63:
51:3b:82:bf:34:dd:0a:a0:3a:ed:d9:1b:18:a2:30:
f4:9f:72:47:68:26:fc:13:50:1f:82:b3:d4:5f:3d:
36:f6:59:d4:72:bb:7b:b8:cb:0f:6d:aa:a3:9c:54:
22:d2:8c:12:5b:06:c0:4b:b1:10:22:09:9c:38:ff:
82:84:c4:9a:25:5b:9c:ea:d4:fa:83:32:4e:6f:7c:
ee:a5:9a:ca:ad:dd:bc:9d:0e:3d:c6:b8:61:4c:ca:
9f:a6:a8:cd:8e:d3:93:77:46:4d:a6:60:84:6b:3c:
6d:af:21:6c:ae:ba:95:ba:e5:e1:3d:ee:66:24:8e:
e0:35:07:28:c1:39:c5:e3:b1:f0:07:3c:1f:4d:99:
86:16:ab:0f:8d:ac:3a:c6:42:4c:f7:ab:13:e2:df:
2e:44:8e:28:95:45:f6:e6:51:e6:6a:e0:3b:e7:6a:
72:3a:33:eb:16:87:9e:7d:59:fe:dc:ac:53:7f:26:
28:5d:b9:2d:97:c7:6d:9f:70:95:11:37:3e:1b:19:
2a:ca:6a:1d:ed:27:15:16:cd:ae:a9:6e:8c:4f:a9:
18:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:F7:CD:EE:45:0B:A0:78:9D:9F:3F:A4:AA:95:7D:EF:88:5B:4B:5D
X509v3 Authority Key Identifier:
keyid:05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/pvfN7kULoHidnz-kqpV974hbS10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.70.237.0/24
Signature Algorithm: sha256WithRSAEncryption
50:dd:90:f1:35:32:4a:b6:aa:6a:88:6f:3a:7d:e2:da:29:51:
4a:da:fb:04:7d:65:60:90:79:09:14:86:eb:da:38:76:bb:2b:
13:b5:3c:b6:a4:3a:a8:cc:0b:0c:80:a2:2c:55:00:8a:3c:93:
15:cc:c3:3a:8d:c1:27:84:a2:43:46:14:25:6c:2f:4c:c4:10:
8b:37:ef:36:e7:37:61:52:9a:32:d7:0e:05:b1:20:ef:7c:e8:
e1:d6:ff:ed:e3:f0:85:ce:48:62:94:c9:7b:26:fa:5d:d2:bb:
66:25:af:9c:03:ae:58:1d:88:6a:41:66:b5:10:f2:a7:b7:09:
2b:45:a4:74:1a:4e:b5:69:4f:8e:2a:29:27:26:07:32:67:3b:
1d:f9:f6:8c:23:69:0e:b7:43:b1:df:04:1c:21:2e:ff:70:31:
15:2b:f1:cd:d8:e7:59:e0:20:06:cb:a6:d9:b4:9a:aa:aa:06:
be:d8:b2:dc:16:bd:2f:5b:6f:86:c9:b3:1f:8b:0f:88:60:23:
c0:f7:12:04:d3:86:b8:96:34:56:62:ae:1a:67:25:05:7c:48:
b1:ac:82:4b:94:e3:be:d9:2e:6a:0d:e3:09:6a:a8:6e:04:63:
1c:06:e4:12:b3:22:45:00:1f:8d:aa:e9:31:7d:44:81:3a:74:
9b:1c:10:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:39 2024 by rpki-client on console-fra.rpki-client.org