Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/4MkdDOJ4-0FgePrEIdKQYoxyJmo.roa
File: 4MkdDOJ4-0FgePrEIdKQYoxyJmo.roa (raw, json)
Hash identifier: YroFye4Pqwa2gSKESKLzFnwvX9sMWVZkDgZGL8Hr+g8=
Subject key identifier: E0:C9:1D:0C:E2:78:FB:41:60:78:FA:C4:21:D2:90:62:8C:72:26:6A
Certificate issuer: /CN=b32c9c26df7ccd8ad38d89bd5d49380b93b1e009
Certificate serial: 018CC801678087E99197CD3C96187E307CDA
Authority key identifier: B3:2C:9C:26:DF:7C:CD:8A:D3:8D:89:BD:5D:49:38:0B:93:B1:E0:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syycJt98zYrTjYm9XUk4C5Ox4Ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/4MkdDOJ4-0FgePrEIdKQYoxyJmo.roa
Signing time: Tue 02 Jan 2024 02:29:44 +0000
ROA not before: Tue 02 Jan 2024 02:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29320
IP address blocks: 128.0.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Apr 2024 09:37:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:67:80:87:e9:91:97:cd:3c:96:18:7e:30:7c:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32c9c26df7ccd8ad38d89bd5d49380b93b1e009
Validity
Not Before: Jan 2 02:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e0c91d0ce278fb416078fac421d290628c72266a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a9:01:45:47:19:9b:6b:0c:28:86:c2:a3:08:
3d:f5:52:7b:bd:a1:a4:4b:7e:98:2e:64:1c:11:50:
11:0e:ed:f5:e7:3b:7e:fa:ac:f4:f0:1f:f5:28:1d:
1f:08:6d:4b:25:fb:00:b2:b9:31:ff:58:10:59:6b:
e6:57:ea:02:d3:8b:9f:05:a2:07:2e:fc:1e:4f:f1:
3a:cf:f8:83:3d:99:23:31:0d:93:98:1b:dd:bb:37:
de:29:93:44:ea:7f:17:8d:8c:01:83:cf:68:13:56:
ab:49:74:69:7d:ee:68:3b:ac:a7:6c:6f:bb:d8:11:
ef:70:26:1d:a6:b7:88:9d:4e:cc:a2:e6:59:68:dd:
ce:19:81:e6:1a:53:f5:fb:08:d9:e5:84:d7:d0:e0:
cb:1f:28:bd:e5:fb:cd:42:98:06:b9:8b:ca:44:91:
59:9e:73:11:6b:5c:eb:66:dc:ef:1f:ca:1e:ad:a9:
70:79:0e:e2:54:e6:80:ec:85:00:b0:4d:9b:6a:ac:
41:45:79:a0:69:d1:90:97:ff:a2:63:48:93:a5:fd:
82:2d:d0:a3:8a:0f:61:f5:ff:a5:04:b1:cc:50:f6:
99:4c:af:84:6c:4c:5a:e2:2c:14:33:8e:56:1d:c3:
b8:b0:77:c6:f2:91:32:a7:55:dd:9c:a6:f5:c2:4d:
a5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:C9:1D:0C:E2:78:FB:41:60:78:FA:C4:21:D2:90:62:8C:72:26:6A
X509v3 Authority Key Identifier:
keyid:B3:2C:9C:26:DF:7C:CD:8A:D3:8D:89:BD:5D:49:38:0B:93:B1:E0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syycJt98zYrTjYm9XUk4C5Ox4Ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/4MkdDOJ4-0FgePrEIdKQYoxyJmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/syycJt98zYrTjYm9XUk4C5Ox4Ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.0.104.0/24
Signature Algorithm: sha256WithRSAEncryption
30:c4:2d:e5:22:68:d2:e5:4c:0d:08:a6:a5:4e:c9:1c:03:df:
3f:17:3f:90:a7:ae:97:3c:a8:a3:bf:5f:9d:f8:d7:0a:4c:38:
aa:1f:6d:a7:2f:1e:18:60:4b:38:c4:ac:18:85:df:f4:92:52:
06:d1:8f:8c:f6:16:d4:1e:8e:af:0e:da:e3:ee:36:72:8f:ac:
43:7b:30:df:cd:fa:79:20:98:52:8f:44:7a:36:6d:6f:46:8b:
70:16:f8:1e:7b:c7:8d:46:cb:ba:cf:37:f5:e2:26:33:ac:bd:
5b:67:55:bc:73:5a:62:7b:74:14:cc:96:3c:e0:6f:da:64:86:
59:70:59:bc:f4:5b:ec:d9:c6:63:4f:8b:d3:da:53:c6:1a:17:
5b:7f:e1:74:76:60:a8:a1:f1:98:ae:e3:24:a6:8e:a9:ef:1b:
1c:7f:51:95:07:68:7a:b2:18:b8:78:99:88:dd:91:4e:fb:a6:
7e:c6:ba:d6:70:a1:70:62:1b:2e:56:0c:fc:60:ee:7a:8f:a6:
3a:33:54:9b:87:da:9d:49:7e:5c:98:be:86:a6:24:7c:0e:35:
7a:60:c2:3a:67:7e:e4:28:e1:51:17:04:a3:2e:b7:33:68:ea:
74:ad:39:07:f2:6a:8a:db:96:38:b3:3b:53:7a:4a:da:ee:6e:
a3:22:63:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:53 2024 by rpki-client on console-ams.rpki-client.org