Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/rqdWqqfnJ9iCdgVuJFBQBRXC6J4.roa
File: rqdWqqfnJ9iCdgVuJFBQBRXC6J4.roa (raw, json)
Hash identifier: +C/pN2My9jMFOc9btWvELClPcYFjNOYSBaurb/8tCd0=
Subject key identifier: AE:A7:56:AA:A7:E7:27:D8:82:76:05:6E:24:50:50:05:15:C2:E8:9E
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018DF6288B063D1BA260CEF1CFB1E8367164
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/rqdWqqfnJ9iCdgVuJFBQBRXC6J4.roa
Signing time: Thu 29 Feb 2024 18:37:48 +0000
ROA not before: Thu 29 Feb 2024 18:37:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200080
IP address blocks: 109.72.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 15:55:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f6:28:8b:06:3d:1b:a2:60:ce:f1:cf:b1:e8:36:71:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Feb 29 18:37:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aea756aaa7e727d88276056e2450500515c2e89e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:b2:30:5e:6c:48:c4:78:5c:e1:72:34:3a:2a:
dd:fe:58:a6:cc:01:64:f7:aa:52:be:48:a2:2b:22:
72:1b:5a:12:3c:23:62:12:53:f4:22:7b:48:06:e8:
1d:d3:68:39:71:a5:e8:78:eb:5b:d2:95:19:15:7a:
e3:38:d3:04:ae:82:2f:c2:cb:5d:10:a6:f9:ee:e1:
21:c4:55:e7:78:26:f9:30:fe:d3:db:52:4d:32:97:
8d:76:0b:c6:7a:77:62:0c:7d:f1:91:e4:61:35:fe:
37:11:9c:dc:c4:19:93:c7:50:a1:61:47:1a:a1:a0:
a8:ef:df:7c:a7:d6:66:ba:0d:11:fc:0a:0d:93:71:
e9:2f:68:e4:41:0d:3c:a8:ee:ef:b9:92:b2:92:b5:
a6:12:e3:88:78:70:e5:dc:ff:b1:58:f0:5b:10:9a:
5b:e0:7a:6d:85:f4:d0:17:cc:4b:eb:d0:46:fb:1e:
67:ba:07:66:6e:d6:f7:4c:07:ba:06:70:a5:b1:cb:
88:d0:c8:ff:08:4e:b7:74:db:16:9f:27:ee:06:64:
34:2e:1b:1d:99:26:ec:57:c0:68:7b:8d:8a:03:2e:
5a:b1:60:76:b1:27:b2:a3:e1:ec:86:d7:68:c0:e3:
27:bf:bc:0d:c0:54:6b:4c:7e:d4:27:1a:3d:5c:72:
63:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A7:56:AA:A7:E7:27:D8:82:76:05:6E:24:50:50:05:15:C2:E8:9E
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/rqdWqqfnJ9iCdgVuJFBQBRXC6J4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.116.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:91:6c:94:29:90:71:e2:58:50:1e:78:f1:49:45:65:aa:8d:
5b:b0:9b:ab:d9:b0:b2:ea:ab:db:6a:4c:11:e8:3e:8d:d6:a2:
a8:b2:44:98:78:b7:94:a4:78:c5:12:f7:de:a4:d4:7c:36:32:
c7:40:ea:fb:da:2a:fa:21:58:cd:7f:fb:44:ab:d0:57:6c:f1:
85:b1:72:c4:23:ee:12:89:3e:7d:88:01:84:54:93:49:d0:0a:
1a:78:54:fe:6a:8a:25:ad:cd:c3:79:7d:76:7a:07:de:f3:c1:
a3:f4:23:13:78:ae:c8:5b:d7:e6:ea:c4:2d:ac:98:11:41:e5:
84:dd:c0:21:a8:57:15:a4:78:9f:fa:38:68:c4:62:b8:de:06:
8a:09:c6:e4:31:9e:4d:62:d2:b6:33:6d:fb:9e:ed:7e:5f:19:
8e:03:30:2b:31:fc:80:be:14:a6:be:f1:e8:06:6e:03:c6:28:
17:1e:d0:5f:30:69:ba:67:26:75:50:8d:eb:9f:9c:98:1b:e1:
dd:4a:af:71:63:0c:67:d4:55:48:b7:21:21:95:f7:97:61:53:
0a:f0:d6:3f:3c:45:d2:74:22:2c:53:9c:53:b7:c2:cd:39:54:
fd:af:ca:56:b3:2d:b4:a8:6f:3d:09:b9:91:e9:5e:a8:34:2a:
e2:c1:21:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 20:56:59 2024 by rpki-client on console-fra.rpki-client.org