Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/D3qXEs6TaNWn3d3q26qfjOaMk_g.roa
File: D3qXEs6TaNWn3d3q26qfjOaMk_g.roa (raw, json)
Hash identifier: KnGcqBmWqKgMBWN3b1o9Jq+A0ECi6C/O5K0Na+Gy3XI=
Subject key identifier: 0F:7A:97:12:CE:93:68:D5:A7:DD:DD:EA:DB:AA:9F:8C:E6:8C:93:F8
Certificate issuer: /CN=9dc28ae9937ff7e49ec4f1234e53d8b9dd694541
Certificate serial: 018A64C070F6286FAB4F8F95DE143A81E4F3
Authority key identifier: 9D:C2:8A:E9:93:7F:F7:E4:9E:C4:F1:23:4E:53:D8:B9:DD:69:45:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/D3qXEs6TaNWn3d3q26qfjOaMk_g.roa
Signing time: Tue 05 Sep 2023 09:50:47 +0000
ROA not before: Tue 05 Sep 2023 09:50:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 109.234.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:64:c0:70:f6:28:6f:ab:4f:8f:95:de:14:3a:81:e4:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dc28ae9937ff7e49ec4f1234e53d8b9dd694541
Validity
Not Before: Sep 5 09:50:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f7a9712ce9368d5a7ddddeadbaa9f8ce68c93f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3b:11:6d:24:a0:b8:dd:34:a2:d1:bc:e3:60:
7e:c3:4d:28:33:72:3e:ae:12:49:1e:74:d9:f4:df:
47:14:49:90:a8:e9:d8:73:f7:6e:d8:8d:ae:1d:68:
ca:66:63:c6:b0:bb:b3:62:0e:5b:69:84:e8:9a:f1:
60:7d:81:eb:bc:15:4d:1e:ac:60:43:26:0a:7b:a9:
89:ba:f0:83:dd:ea:07:fd:a7:22:a2:ca:e6:9f:ed:
f1:55:fd:53:50:d7:9a:f7:a7:2e:4c:84:b0:91:3b:
ac:d7:72:87:76:08:f8:51:eb:5b:5b:78:ea:e3:97:
09:a1:c5:0d:9e:2a:76:18:da:42:03:cc:b1:73:11:
db:98:41:dc:e6:dd:16:77:a5:2d:1f:02:11:97:96:
cf:11:c3:c7:a9:0f:d2:f5:97:c9:17:27:9e:f6:5a:
07:1a:a3:8a:a8:66:01:cd:a4:e4:51:10:ec:e6:04:
d0:b2:c3:eb:ff:53:91:31:7f:36:b0:b7:39:38:88:
41:d0:ac:94:59:6d:3b:02:bc:3d:33:90:01:e0:dc:
09:32:92:3b:de:69:81:24:4f:91:64:74:ad:9a:fb:
ec:7c:cc:96:72:b2:3b:19:05:6e:46:ec:47:48:9a:
51:a4:d4:bf:1a:cd:1c:59:92:4f:06:d6:ee:ee:d0:
fc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:7A:97:12:CE:93:68:D5:A7:DD:DD:EA:DB:AA:9F:8C:E6:8C:93:F8
X509v3 Authority Key Identifier:
keyid:9D:C2:8A:E9:93:7F:F7:E4:9E:C4:F1:23:4E:53:D8:B9:DD:69:45:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/D3qXEs6TaNWn3d3q26qfjOaMk_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/ncKK6ZN_9-SexPEjTlPYud1pRUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.75.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:ac:60:a9:6c:27:e9:18:b8:f1:23:cb:36:32:d3:15:54:3a:
72:68:c7:c6:55:e3:87:f1:a7:da:8b:67:8a:6b:a7:74:79:15:
c7:db:72:15:49:46:72:28:61:94:61:f8:00:48:5a:98:63:e3:
60:6e:74:21:16:ee:aa:c9:04:50:79:57:db:b9:da:43:e2:e4:
c5:6a:01:2c:88:2b:00:10:72:66:b9:56:38:e7:65:b7:25:71:
63:ac:0d:be:19:de:db:34:9c:9d:11:e8:a0:9b:49:40:57:8c:
46:ff:4f:03:7a:64:b5:db:e5:bf:fc:88:4c:3a:43:f6:31:4d:
1e:bc:e3:4e:d7:4b:e7:84:84:9a:ff:7c:ec:ae:c1:4f:5c:ae:
de:c9:ba:fc:43:91:d9:61:ee:0d:89:ae:8c:40:a5:4f:66:5d:
0e:96:a7:63:9c:e5:9c:e1:97:a7:03:34:c2:ac:73:d5:69:8d:
e9:c7:ca:6b:c2:0b:64:e6:4a:b6:e0:ac:54:47:d4:bd:f3:ac:
1d:48:bf:3e:0f:7d:ea:58:6e:e1:21:0d:b7:ec:a1:58:a4:fd:
08:20:aa:1e:6d:fb:54:67:66:14:4b:fe:91:fe:76:87:09:dd:
a6:48:32:ed:d9:a5:65:94:48:47:5f:6e:66:a3:24:57:56:a4:
f4:a7:44:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:54 2024 by rpki-client on console-fra.rpki-client.org