Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/mtoDd6GmsZmE_aZINcO4a8gG-Gs.roa
File: mtoDd6GmsZmE_aZINcO4a8gG-Gs.roa (raw, json)
Hash identifier: 1FjfTUTaVwdjVxdmUuZlnsGBn6HuwU/7qRQeypAbIL0=
Subject key identifier: 9A:DA:03:77:A1:A6:B1:99:84:FD:A6:48:35:C3:B8:6B:C8:06:F8:6B
Certificate issuer: /CN=60ebd4f7ac3d24920de1c1ff1185d9507e9ad078
Certificate serial: 0190641D49A443E7736095E75E7826231426
Authority key identifier: 60:EB:D4:F7:AC:3D:24:92:0D:E1:C1:FF:11:85:D9:50:7E:9A:D0:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YOvU96w9JJIN4cH_EYXZUH6a0Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/mtoDd6GmsZmE_aZINcO4a8gG-Gs.roa
Signing time: Sat 29 Jun 2024 13:09:19 +0000
ROA not before: Sat 29 Jun 2024 13:09:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210392
IP address blocks: 109.95.66.0/24 maxlen: 24
109.95.67.0/24 maxlen: 24
109.95.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 26 Oct 2024 08:24:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:64:1d:49:a4:43:e7:73:60:95:e7:5e:78:26:23:14:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ebd4f7ac3d24920de1c1ff1185d9507e9ad078
Validity
Not Before: Jun 29 13:09:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9ada0377a1a6b19984fda64835c3b86bc806f86b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ee:13:3e:0e:08:0b:ab:be:28:c4:95:62:57:
41:ff:78:de:22:22:d7:53:aa:c3:06:be:39:ec:71:
50:f0:f9:83:b4:8e:6e:e3:b5:12:4d:70:b5:e8:58:
d0:e5:64:f4:2b:5b:9b:b0:c7:c1:4f:3b:05:dc:93:
c4:98:35:2f:b0:55:71:db:7d:cd:ee:5d:22:a5:69:
34:2b:a5:e0:64:87:0a:6a:ff:22:31:a6:cf:f2:67:
c1:da:b3:63:6c:cd:12:d8:2d:09:03:4f:09:23:04:
b3:89:f6:a1:1a:60:8a:5b:e5:7a:e3:ad:32:ef:f0:
a7:be:82:e8:ce:de:71:13:9a:1d:3b:56:a8:63:85:
da:18:1e:78:d8:d1:fa:2d:9c:93:d3:2f:43:27:d8:
d7:16:9c:a9:81:e9:c2:f0:5f:cf:0d:1e:bd:34:82:
ac:d6:72:32:04:2b:37:7e:1d:a5:45:32:da:fd:35:
84:72:31:d8:ac:44:69:20:e3:6a:4e:9b:52:68:a8:
62:d6:a0:a8:fa:68:d9:49:bb:78:9d:2f:df:71:d2:
2b:85:9e:6d:5d:c5:12:c0:f5:4d:73:ba:16:06:9e:
7a:cd:88:27:f8:d5:77:20:31:37:eb:2a:35:46:5d:
e4:41:3c:44:84:62:21:6e:e2:37:c7:5d:cd:69:74:
55:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:DA:03:77:A1:A6:B1:99:84:FD:A6:48:35:C3:B8:6B:C8:06:F8:6B
X509v3 Authority Key Identifier:
keyid:60:EB:D4:F7:AC:3D:24:92:0D:E1:C1:FF:11:85:D9:50:7E:9A:D0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YOvU96w9JJIN4cH_EYXZUH6a0Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/mtoDd6GmsZmE_aZINcO4a8gG-Gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/YOvU96w9JJIN4cH_EYXZUH6a0Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.95.66.0-109.95.68.255
Signature Algorithm: sha256WithRSAEncryption
39:a8:08:2b:5b:c7:c2:6c:91:e9:83:bd:b7:c0:96:95:de:61:
c4:a2:73:fe:0f:c8:f8:cd:da:72:1b:b4:58:e8:1c:f7:9e:6a:
12:f1:ce:25:9b:8b:d4:8b:87:66:34:88:56:26:74:e1:e7:50:
32:e8:33:87:9d:ab:08:f4:78:54:88:4a:d8:b3:8d:60:00:6c:
d2:5a:b1:12:fe:a6:ea:25:13:64:4d:7a:8b:57:2c:32:33:fc:
aa:e0:16:88:0a:05:9d:ab:00:87:59:13:43:f0:c1:a0:6a:b4:
70:4e:ca:ad:a4:ae:e7:c8:3e:58:9a:59:f5:d6:93:de:b2:7c:
be:3e:30:81:b5:5e:eb:8f:c7:f5:5d:32:ce:f7:8f:38:c6:15:
88:92:d8:20:76:8e:73:0a:0b:79:b6:5e:c3:04:3b:00:da:01:
de:8a:37:87:b2:0a:e6:3b:16:50:fd:bc:48:1f:22:86:01:d5:
fd:eb:d3:e9:79:41:1c:ba:2e:0d:4f:75:13:e8:62:50:ca:79:
8a:13:e6:44:ae:d1:b6:6b:66:f2:3a:db:33:d7:c7:43:a3:74:
2e:ec:8b:9f:2b:27:5f:c5:7d:01:07:5c:03:cf:44:50:7a:40:
fe:d8:30:37:1b:fd:9a:65:8d:6a:96:59:62:73:83:32:96:cc:
cf:77:60:ad
-----BEGIN CERTIFICATE-----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Generated at Sat Oct 26 09:36:56 2024 by rpki-client on console-fra.rpki-client.org