Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/V8OSzFDHT0x5OstKOWN0VQ5yXZo.roa
File: V8OSzFDHT0x5OstKOWN0VQ5yXZo.roa (raw, json)
Hash identifier: 6twr1azQLNhUt8R734L3/2gKhN+OzSq21cVe9zSPFDo=
Subject key identifier: 57:C3:92:CC:50:C7:4F:4C:79:3A:CB:4A:39:63:74:55:0E:72:5D:9A
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 018CC2DB65AA1AB6BE7E2B86DE8D491A28C3
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/V8OSzFDHT0x5OstKOWN0VQ5yXZo.roa
Signing time: Mon 01 Jan 2024 02:30:07 +0000
ROA not before: Mon 01 Jan 2024 02:30:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57523
IP address blocks: 109.196.166.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 29 Jan 2024 13:34:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:65:aa:1a:b6:be:7e:2b:86:de:8d:49:1a:28:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Jan 1 02:30:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57c392cc50c74f4c793acb4a396374550e725d9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:8d:37:1a:20:c4:37:ff:95:67:ab:03:d1:33:
23:17:ea:b5:3b:4e:ee:f1:33:28:98:24:c6:9e:76:
a3:36:d6:5e:20:f1:18:04:31:8e:e6:5f:74:ed:3c:
90:b1:98:0e:85:36:bc:50:81:43:df:37:aa:48:ee:
75:32:e7:cf:d7:00:05:c6:71:3c:8c:f5:42:7b:b4:
0a:1a:e5:35:d2:0c:b6:d9:0b:f2:a7:39:0a:7e:77:
cd:c9:e9:14:68:3b:5b:e6:51:ad:f5:ce:17:28:e5:
87:9b:c0:02:8a:07:7f:d0:d1:63:59:37:b2:f9:0b:
90:fe:fa:3a:21:65:73:39:e5:6d:c7:4b:df:8d:aa:
35:21:a2:f6:61:32:a2:96:50:96:d5:ae:f7:02:47:
58:99:42:0a:c1:63:80:7b:5c:99:d9:fb:85:3a:b9:
bd:16:38:e6:82:c8:20:11:5f:27:15:50:a4:28:0d:
d1:81:e1:a3:dd:da:ea:80:1a:b1:ce:9b:aa:95:eb:
f1:46:b9:91:7a:8a:f8:38:11:34:67:bc:50:28:44:
a5:ed:07:8c:e9:ef:fe:d7:73:17:11:ed:da:a8:48:
ac:9f:15:ab:2b:e1:19:1e:dc:22:83:29:0d:63:38:
f7:ff:74:85:cd:c6:72:af:c0:5d:f8:c0:94:35:7c:
b7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:C3:92:CC:50:C7:4F:4C:79:3A:CB:4A:39:63:74:55:0E:72:5D:9A
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/V8OSzFDHT0x5OstKOWN0VQ5yXZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.196.166.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:a1:5f:26:ab:84:5d:63:58:16:5a:6e:7b:c6:f7:6a:2b:58:
fa:f4:08:9f:2f:33:6a:ef:d0:5d:37:24:31:8c:18:a3:9e:e4:
e4:cf:3c:ce:58:a4:c6:84:7e:c1:02:b4:5d:12:4d:83:d0:72:
57:3c:ec:15:8c:0d:10:9f:50:a5:6c:1b:98:fa:9f:48:d6:70:
2b:68:bd:7b:72:81:5b:2a:8a:dd:6f:22:2a:e5:ec:3a:b8:0c:
f8:e3:8a:40:3b:77:28:7c:9c:51:23:7f:96:93:c7:dd:f7:61:
7d:2e:49:6d:30:2a:95:3e:a3:c5:f3:29:d0:da:15:8f:05:35:
44:00:67:3c:6b:09:2a:6f:d9:b8:39:af:9a:98:5c:43:51:81:
c9:b3:c9:f9:da:1c:05:c7:47:22:33:e7:fa:b3:78:70:c4:4a:
84:00:d5:45:8a:23:72:d6:31:20:3a:07:ce:71:94:85:4d:16:
9f:c1:35:d6:27:31:13:9c:5c:0a:f7:c2:af:96:e2:5b:b7:c3:
b2:1b:0e:c5:e2:ea:7e:3c:8c:6d:36:f9:02:25:3f:3c:2e:9a:
89:24:17:45:14:b6:35:1e:a2:cf:33:6e:49:63:be:af:bc:df:
3b:e6:aa:fa:db:d3:d9:0d:80:e0:28:2d:ac:4a:0d:9f:63:d5:
15:74:ce:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 29 16:52:07 2024 by rpki-client on console-ams.rpki-client.org