Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/79c8b1-51e7-45c7-8878-be0e2dc89ae6/1/c0ExcjWRmmtKGsLtBhjEtGmM4DA.roa
File: c0ExcjWRmmtKGsLtBhjEtGmM4DA.roa (raw, json)
Hash identifier: cKeFG4WxVdkIFmt/MdEDk/S/ISHa5R9TfNU4Zu8i2bQ=
Subject key identifier: 73:41:31:72:35:91:9A:6B:4A:1A:C2:ED:06:18:C4:B4:69:8C:E0:30
Certificate issuer: /CN=5b93376c79a97344640e7a00a455be92468e8b53
Certificate serial: 01856C9CC9AC45AB55A38F512EBA86790424
Authority key identifier: 5B:93:37:6C:79:A9:73:44:64:0E:7A:00:A4:55:BE:92:46:8E:8B:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W5M3bHmpc0RkDnoApFW-kkaOi1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/79c8b1-51e7-45c7-8878-be0e2dc89ae6/1/c0ExcjWRmmtKGsLtBhjEtGmM4DA.roa
Signing time: Sun 01 Jan 2023 09:14:52 +0000
ROA not before: Sun 01 Jan 2023 09:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21040
IP address blocks: 109.94.162.0/24 maxlen: 24
2a11:2780::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:c9:ac:45:ab:55:a3:8f:51:2e:ba:86:79:04:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b93376c79a97344640e7a00a455be92468e8b53
Validity
Not Before: Jan 1 09:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7341317235919a6b4a1ac2ed0618c4b4698ce030
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:eb:3e:29:fe:8e:71:bd:82:83:16:4e:d8:02:
31:08:53:e1:8e:75:28:30:aa:99:b0:73:78:c1:76:
1b:0e:45:35:54:24:4d:06:e8:e6:13:25:61:55:2c:
5f:96:36:59:d5:5f:b7:5d:d0:f2:db:a1:92:12:ee:
4b:a5:ea:0b:89:6b:15:cc:e8:72:1d:1b:e9:4f:5d:
27:85:10:5f:64:ff:88:59:1a:89:e7:db:dd:3e:8b:
a5:56:2c:d4:7b:29:9b:8c:41:fb:71:bc:cf:8f:98:
c0:ce:33:29:8f:32:dd:20:ad:ec:ef:62:0b:6a:ce:
32:c9:4d:11:39:c6:95:12:fb:f8:b3:df:9d:3c:09:
01:90:4e:8a:68:35:a3:6a:c6:dc:70:d7:94:a8:77:
28:44:42:03:68:08:7e:af:3b:08:2d:39:76:37:3d:
47:d3:19:d3:af:37:e9:60:76:c5:0a:96:2b:cc:ab:
29:87:74:d7:5d:d9:e2:74:70:59:c1:76:e3:09:a8:
8c:33:bc:40:86:0d:e0:f7:ba:56:ed:51:b5:ad:e8:
71:4f:fa:b6:3d:1d:45:73:5c:26:b7:d2:bd:18:25:
d7:57:7f:09:0e:41:c4:60:4d:e3:0a:bb:0a:16:fd:
32:ee:5f:1e:aa:33:3b:79:66:4b:d5:b9:18:0f:13:
72:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:41:31:72:35:91:9A:6B:4A:1A:C2:ED:06:18:C4:B4:69:8C:E0:30
X509v3 Authority Key Identifier:
keyid:5B:93:37:6C:79:A9:73:44:64:0E:7A:00:A4:55:BE:92:46:8E:8B:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W5M3bHmpc0RkDnoApFW-kkaOi1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/79c8b1-51e7-45c7-8878-be0e2dc89ae6/1/c0ExcjWRmmtKGsLtBhjEtGmM4DA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/79c8b1-51e7-45c7-8878-be0e2dc89ae6/1/W5M3bHmpc0RkDnoApFW-kkaOi1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.94.162.0/24
IPv6:
2a11:2780::/29
Signature Algorithm: sha256WithRSAEncryption
44:9c:b3:a7:fe:9c:24:71:43:48:0f:4b:5d:3a:45:62:e7:f3:
13:d2:54:8b:51:f9:22:aa:b1:1e:c6:05:3e:62:58:aa:da:55:
70:91:d6:40:a1:8d:e8:80:91:ab:40:76:ed:be:bb:c3:cf:52:
03:dd:0e:b1:fa:97:ad:d9:22:60:49:3b:92:bf:f2:ea:d6:5c:
39:ba:ae:b2:06:db:20:9f:86:a3:17:84:24:4a:9e:ff:8a:2c:
17:12:03:fe:6f:29:82:a4:fc:8d:2d:1c:62:29:f8:64:a0:2d:
7a:f7:d3:f2:c0:f5:d5:ba:aa:a8:2e:5f:a7:c1:52:4e:12:d2:
fa:77:fd:5d:21:c3:1f:50:ef:f7:b0:13:86:2b:e1:d4:36:69:
9c:6d:88:b4:01:ce:e5:63:a9:5c:bd:4d:b1:15:e8:76:dd:71:
28:2f:bf:88:a8:39:47:f4:d1:f8:81:cc:55:96:f0:d4:35:2f:
78:97:ee:02:69:82:29:fc:99:77:af:ef:fe:23:8a:e4:c6:58:
de:f4:d1:2e:d2:d6:ab:49:71:c0:72:8d:52:e3:a3:76:5c:a3:
06:48:0c:3f:8f:6e:eb:b1:81:8d:02:15:06:06:1f:6b:d9:f1:
a7:ef:14:0b:c5:ac:14:f6:fe:ca:7b:49:f7:c4:81:70:78:de:
bd:cf:b3:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:05 2024 by rpki-client on console-fra.rpki-client.org