Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/6277a7-290f-4994-b286-25d6e8613dc4/1/eUK3NJjl4cPTMz0lHJMLY7ta2J4.roa
File: eUK3NJjl4cPTMz0lHJMLY7ta2J4.roa (raw, json)
Hash identifier: PDHT1VxSJ/2JUcNBtbTnx0tmQSYW877Sa4NIrLzDmIg=
Subject key identifier: 79:42:B7:34:98:E5:E1:C3:D3:33:3D:25:1C:93:0B:63:BB:5A:D8:9E
Certificate issuer: /CN=1e9a2f083f471dfb9507b4c973cb5c3acd49759d
Certificate serial: 018572B421F9E04A652E6835B7CA5C7C42FA
Authority key identifier: 1E:9A:2F:08:3F:47:1D:FB:95:07:B4:C9:73:CB:5C:3A:CD:49:75:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpovCD9HHfuVB7TJc8tcOs1JdZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/6277a7-290f-4994-b286-25d6e8613dc4/1/eUK3NJjl4cPTMz0lHJMLY7ta2J4.roa
Signing time: Mon 02 Jan 2023 13:38:05 +0000
ROA not before: Mon 02 Jan 2023 13:38:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 109.232.88.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:21:f9:e0:4a:65:2e:68:35:b7:ca:5c:7c:42:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9a2f083f471dfb9507b4c973cb5c3acd49759d
Validity
Not Before: Jan 2 13:38:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7942b73498e5e1c3d3333d251c930b63bb5ad89e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:c1:ac:a7:41:a7:1b:91:8d:ab:fa:88:16:48:
4a:d9:63:21:4b:63:04:07:18:ef:bc:3e:07:c1:99:
9b:d1:2e:9e:a4:e4:bc:91:81:18:96:45:a1:26:d6:
b0:d3:0f:cd:4c:2f:98:be:3a:56:bf:2f:cb:55:1c:
61:02:81:f5:ab:bf:76:b9:bc:61:95:ed:f5:e3:4c:
72:14:09:88:47:3d:33:36:30:42:82:0b:0f:08:9c:
78:38:7a:45:5a:fe:6f:ff:9a:45:e6:3c:63:76:91:
01:ce:72:02:e4:66:00:a9:37:c6:13:b3:3a:1d:fb:
be:0b:0b:c9:5b:43:f5:74:5c:f5:58:27:42:25:5b:
ad:c5:1e:00:ec:ed:48:1b:9c:80:70:fc:45:ea:67:
91:77:89:c6:75:51:ee:00:4c:41:74:78:e4:93:ee:
bf:ab:1f:99:69:fb:af:9e:33:c7:c2:58:38:67:ff:
9a:b0:1d:cd:c2:9e:4a:e8:f2:99:69:9c:84:69:e0:
02:11:19:6c:06:98:dd:d7:be:6e:82:34:3b:ca:1f:
2c:a9:7b:fd:4a:0a:90:f6:ea:f0:bd:8f:f7:4e:6a:
c8:6c:12:1f:5b:30:db:ba:88:6b:b9:55:e4:e2:3c:
d4:04:b9:c0:54:c2:f8:2f:f0:d9:04:e6:95:f5:e2:
5e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:42:B7:34:98:E5:E1:C3:D3:33:3D:25:1C:93:0B:63:BB:5A:D8:9E
X509v3 Authority Key Identifier:
keyid:1E:9A:2F:08:3F:47:1D:FB:95:07:B4:C9:73:CB:5C:3A:CD:49:75:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpovCD9HHfuVB7TJc8tcOs1JdZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/6277a7-290f-4994-b286-25d6e8613dc4/1/eUK3NJjl4cPTMz0lHJMLY7ta2J4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/6277a7-290f-4994-b286-25d6e8613dc4/1/HpovCD9HHfuVB7TJc8tcOs1JdZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.232.88.0/21
Signature Algorithm: sha256WithRSAEncryption
3c:eb:55:75:48:90:e2:ba:5e:05:b0:76:e0:52:21:09:38:ca:
99:b0:df:36:cb:8e:56:5c:de:ba:4e:a9:0a:6e:4e:02:03:1d:
6c:fa:0d:8b:ba:dd:5f:3b:66:90:ce:49:43:4b:99:68:3b:e2:
ba:18:f5:58:86:04:3a:98:59:1e:43:34:f0:cc:cc:f2:4b:59:
12:fe:26:48:04:a3:08:57:e6:c5:ed:4d:65:46:c7:60:d3:61:
31:ae:5c:13:7e:f7:4f:f8:51:0c:64:17:b8:3c:f8:34:77:51:
13:f9:c4:d2:c0:78:32:68:7a:4e:18:4a:af:b1:a6:42:b8:4d:
61:48:25:12:30:3c:a5:2f:58:b1:97:02:76:91:11:d0:e2:c8:
75:d8:ee:31:43:46:a4:a0:e3:d2:f6:85:f0:cd:b8:01:93:1c:
66:05:a5:38:ff:80:22:3c:e3:17:44:ba:78:1d:a1:93:b2:ee:
e4:aa:d7:b6:34:10:27:6a:25:d4:c8:b9:7e:31:43:37:de:67:
51:74:04:96:e2:f0:f0:9e:83:14:ce:83:e5:0c:8b:71:e9:4d:
a8:7a:b6:06:3f:f0:a4:1f:e4:ea:7d:84:eb:a6:b5:5a:3d:32:
96:cb:c5:cc:c5:b2:c3:f6:c7:30:ac:8e:ec:9e:9f:1e:20:b1:
24:44:b3:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:53 2024 by rpki-client on console-fra.rpki-client.org