Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/3jnS52I1cFCke8hqs_Hzvqi5mMc.roa
File: 3jnS52I1cFCke8hqs_Hzvqi5mMc.roa (raw, json)
Hash identifier: b4kToedKdzRJ+NQouWxZhiht6FKDR0GotF4n5mWgo9A=
Subject key identifier: DE:39:D2:E7:62:35:70:50:A4:7B:C8:6A:B3:F1:F3:BE:A8:B9:98:C7
Certificate issuer: /CN=97242dba26ed882b380dabebab3c5f3942006ecc
Certificate serial: 01856D81B5F2C230755CB28DCB3550C012BC
Authority key identifier: 97:24:2D:BA:26:ED:88:2B:38:0D:AB:EB:AB:3C:5F:39:42:00:6E:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lyQtuibtiCs4DavrqzxfOUIAbsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/3jnS52I1cFCke8hqs_Hzvqi5mMc.roa
Signing time: Sun 01 Jan 2023 13:24:55 +0000
ROA not before: Sun 01 Jan 2023 13:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 109.68.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:b5:f2:c2:30:75:5c:b2:8d:cb:35:50:c0:12:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97242dba26ed882b380dabebab3c5f3942006ecc
Validity
Not Before: Jan 1 13:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de39d2e762357050a47bc86ab3f1f3bea8b998c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d0:5b:9d:f2:89:28:e2:68:37:ad:e2:92:2c:
16:3e:ca:67:5c:85:20:f2:d9:76:ca:75:f9:53:db:
ba:9c:c5:02:5c:82:bc:fb:a8:0b:cd:9d:3e:b9:81:
27:80:74:14:41:fe:42:88:a4:b5:ec:98:ac:d1:07:
56:f5:8c:e2:73:9e:b3:90:47:ad:61:c2:1f:44:1a:
f5:58:fa:63:87:54:d1:cc:99:26:d2:75:87:64:f2:
d3:ce:32:ff:c6:d2:3a:ac:ff:2f:7e:98:00:d7:7e:
29:58:22:32:a9:73:18:db:7b:63:eb:fa:02:00:d6:
64:fc:52:79:8f:b9:fa:f5:8d:fc:ef:40:24:ee:3a:
77:5e:e7:ef:5e:b9:69:80:3a:f5:99:5e:2c:cc:8d:
91:56:81:1c:cc:b1:95:d3:d4:4a:e5:74:8c:1c:e0:
ec:aa:21:2d:ba:2d:bf:85:17:79:b8:d7:ec:e9:be:
e3:2b:08:72:e7:9b:ad:68:64:1a:41:89:f9:62:e9:
3f:61:f4:28:cf:22:b8:67:77:eb:fd:89:71:3e:be:
c7:89:66:f7:3a:6d:5f:08:67:bc:41:d8:64:b7:b6:
bb:81:6f:67:2d:73:bf:51:ea:2f:64:d6:7e:f8:44:
1b:6b:74:94:b0:ee:e7:d4:8f:a3:a0:40:dd:66:ee:
33:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:39:D2:E7:62:35:70:50:A4:7B:C8:6A:B3:F1:F3:BE:A8:B9:98:C7
X509v3 Authority Key Identifier:
keyid:97:24:2D:BA:26:ED:88:2B:38:0D:AB:EB:AB:3C:5F:39:42:00:6E:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lyQtuibtiCs4DavrqzxfOUIAbsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/3jnS52I1cFCke8hqs_Hzvqi5mMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/lyQtuibtiCs4DavrqzxfOUIAbsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.68.248.0/24
Signature Algorithm: sha256WithRSAEncryption
34:9d:2a:67:38:79:1a:ef:c8:7b:12:b4:b1:d3:76:c4:79:78:
08:de:b1:27:82:a4:03:6b:e5:12:fa:a2:70:65:f4:13:41:29:
9f:cb:e9:c7:8f:56:3a:25:59:16:64:71:15:71:e8:95:b7:d4:
6f:ed:a4:ff:c1:a7:82:3e:2c:99:d2:66:52:48:84:7b:fd:ca:
5a:87:36:4f:c9:07:2e:43:38:76:d5:82:93:cc:90:94:35:b8:
64:7f:a1:cd:6b:72:f5:b9:2b:9d:a0:a7:38:40:5e:19:c4:49:
2a:d6:ec:df:75:c1:f9:98:bb:c3:de:2d:9a:24:c6:36:b8:a8:
10:9e:a4:e5:da:a5:1f:35:4f:90:45:c2:45:94:87:79:60:1e:
af:d0:c8:d3:fd:13:ef:0f:02:7f:a5:cc:ff:10:1b:0a:41:66:
ff:58:3b:80:18:35:df:26:9a:65:43:28:d7:67:d9:ea:44:40:
e3:d5:95:62:16:09:e2:52:8c:30:9f:40:1d:96:ab:c7:7e:02:
25:af:99:1b:3b:b6:5f:4b:41:5c:e6:af:de:2d:ec:68:73:82:
67:b1:6b:ab:56:13:32:f0:7f:d2:e2:55:e2:da:66:7c:14:d6:
a5:ed:8e:b5:06:24:66:60:32:66:04:f7:25:88:7a:fd:ff:7b:
75:96:c4:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:04 2024 by rpki-client on console-fra.rpki-client.org