Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/t4p1xOozjXPogEagkngIKdLxG1M.roa
File: t4p1xOozjXPogEagkngIKdLxG1M.roa (raw, json)
Hash identifier: EsRuajtxZT1pK25rVOx6I3ccKZfF+LoaJRfBfY2M2ik=
Subject key identifier: B7:8A:75:C4:EA:33:8D:73:E8:80:46:A0:92:78:08:29:D2:F1:1B:53
Certificate issuer: /CN=37949ac84d0b86910f4fd3cf5962927d83450aeb
Certificate serial: 018A8EA89F8197C69C835BE04256DE16B3E0
Authority key identifier: 37:94:9A:C8:4D:0B:86:91:0F:4F:D3:CF:59:62:92:7D:83:45:0A:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5SayE0LhpEPT9PPWWKSfYNFCus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/t4p1xOozjXPogEagkngIKdLxG1M.roa
Signing time: Wed 13 Sep 2023 13:08:50 +0000
ROA not before: Wed 13 Sep 2023 13:08:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202
IP address blocks: 109.234.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Sep 2023 13:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8e:a8:9f:81:97:c6:9c:83:5b:e0:42:56:de:16:b3:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37949ac84d0b86910f4fd3cf5962927d83450aeb
Validity
Not Before: Sep 13 13:08:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b78a75c4ea338d73e88046a092780829d2f11b53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ec:9c:0f:fe:af:5c:f4:24:08:72:8c:de:15:
a9:16:c4:c0:69:0d:0e:ff:e1:7f:f1:65:4d:f8:e2:
e1:4b:e6:f8:e6:ab:b4:e3:65:36:a9:ea:41:01:28:
3c:8d:38:ef:fc:0e:22:6b:b4:98:3e:0d:80:cc:93:
a6:3d:99:37:2c:1e:3d:d1:c2:15:dc:36:80:1d:75:
eb:5a:9b:da:7e:b5:3d:df:67:c1:f6:a3:51:4c:0f:
34:e8:09:53:20:50:13:b8:24:a6:9a:cb:3b:ec:53:
71:db:b2:aa:89:a1:33:fa:b6:18:e0:08:cb:12:f1:
29:fc:74:42:10:9c:a8:66:b2:e7:f2:f4:ce:b9:49:
12:4b:e6:a2:e6:bc:cc:7e:72:da:2b:29:dc:a2:ee:
8c:0a:77:6c:da:3b:b1:cc:a3:ef:21:2b:be:67:f0:
af:4e:b7:e9:fc:48:c4:17:8b:b8:eb:61:2c:91:a9:
1b:c8:cd:6d:88:e8:43:73:a6:7f:4b:70:3a:1c:3a:
5c:b0:d6:84:7d:4a:d5:4d:e2:07:2f:2b:0c:a1:18:
42:53:1b:61:30:1b:1e:a4:a7:4d:24:dd:d2:cd:17:
a1:cd:60:26:6c:6e:5f:2d:1f:13:31:87:6a:6f:e4:
d6:0c:14:69:0a:3f:9d:c5:54:d0:37:e3:61:36:6a:
86:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:8A:75:C4:EA:33:8D:73:E8:80:46:A0:92:78:08:29:D2:F1:1B:53
X509v3 Authority Key Identifier:
keyid:37:94:9A:C8:4D:0B:86:91:0F:4F:D3:CF:59:62:92:7D:83:45:0A:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5SayE0LhpEPT9PPWWKSfYNFCus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/t4p1xOozjXPogEagkngIKdLxG1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/N5SayE0LhpEPT9PPWWKSfYNFCus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.1.0/24
Signature Algorithm: sha256WithRSAEncryption
42:ac:d8:2f:ea:85:76:c0:36:0f:d3:e3:86:23:b1:2c:96:3d:
b1:cc:7e:87:22:80:5d:55:27:b3:30:08:5c:3b:28:33:55:de:
6a:97:e5:9c:38:8c:95:f2:b6:02:1e:e2:4e:bb:b5:4c:84:9f:
fe:37:4c:e7:46:84:f6:94:b4:0e:28:68:64:d2:4b:16:b6:be:
23:87:51:ff:83:a4:2f:55:32:75:49:d9:a0:bb:36:1d:7a:b6:
83:13:f5:65:40:32:d5:de:87:0c:bd:ee:6f:01:a3:5b:a9:ac:
28:d2:87:42:d5:d6:9c:63:71:8c:72:20:c5:af:b2:2e:4f:05:
74:43:47:24:df:24:cd:fa:78:e6:b9:d1:de:f4:29:ff:47:40:
19:eb:4f:c9:49:6c:a7:52:a9:2c:12:4d:98:05:c5:63:b6:ae:
b2:df:1d:3f:d8:7e:d9:9c:b6:3c:16:f5:2a:e8:10:ed:bf:d3:
27:29:18:f3:48:88:33:fd:c7:8f:fd:e9:24:05:6c:a1:9f:2b:
7c:11:c1:fa:91:01:63:4d:1d:ac:82:78:39:38:6c:b9:9b:68:
26:3f:cc:1f:63:61:9e:58:60:fe:97:bb:97:75:23:2e:b9:ce:
e0:80:8b:7e:44:f5:c5:06:cc:e6:34:05:de:1e:b8:64:3c:f3:
ec:8d:12:2f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqOqJ+Bl8acg1vgQlbeFrPgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3OTQ5YWM4NGQwYjg2OTEwZjRmZDNjZjU5NjI5MjdkODM0
NTBhZWIwHhcNMjMwOTEzMTMwODUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNzhhNzVjNGVhMzM4ZDczZTg4MDQ2YTA5Mjc4MDgyOWQyZjExYjUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqeycD/6vXPQkCHKM3hWpFsTAaQ0O
/+F/8WVN+OLhS+b45qu042U2qepBASg8jTjv/A4ia7SYPg2AzJOmPZk3LB490cIV
3DaAHXXrWpvafrU932fB9qNRTA806AlTIFATuCSmmss77FNx27KqiaEz+rYY4AjL
EvEp/HRCEJyoZrLn8vTOuUkSS+ai5rzMfnLaKyncou6MCnds2juxzKPvISu+Z/Cv
Trfp/EjEF4u462EskakbyM1tiOhDc6Z/S3A6HDpcsNaEfUrVTeIHLysMoRhCUxth
MBsepKdNJN3SzRehzWAmbG5fLR8TMYdqb+TWDBRpCj+dxVTQN+NhNmqGiwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLeKdcTqM41z6IBGoJJ4CCnS8RtTMB8GA1UdIwQY
MBaAFDeUmshNC4aRD0/Tz1likn2DRQrrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTjVTYXlFMExocEVQVDlQUFdXS1NmWU5GQ3VzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9jMjhlYTQtMDU5Yy00OWRkLTkyNzgt
YTRkYjM5NmM4OTg3LzEvdDRwMXhPb3pqWFBvZ0VhZ2tuZ0lLZEx4RzFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9jMjhlYTQtMDU5Yy00OWRkLTkyNzgtYTRkYjM5NmM4OTg3
LzEvTjVTYXlFMExocEVQVDlQUFdXS1NmWU5GQ3VzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbeoBMA0G
CSqGSIb3DQEBCwUAA4IBAQBCrNgv6oV2wDYP0+OGI7Eslj2xzH6HIoBdVSezMAhc
OygzVd5ql+WcOIyV8rYCHuJOu7VMhJ/+N0znRoT2lLQOKGhk0ksWtr4jh1H/g6Qv
VTJ1SdmguzYderaDE/VlQDLV3ocMve5vAaNbqawo0odC1dacY3GMciDFr7IuTwV0
Q0ck3yTN+njmudHe9Cn/R0AZ60/JSWynUqksEk2YBcVjtq6y3x0/2H7ZnLY8FvUq
6BDtv9MnKRjzSIgz/ceP/ekkBWyhnyt8EcH6kQFjTR2sgng5OGy5m2gmP8wfY2Ge
WGD+l7uXdSMuuc7ggIt+RPXFBszmNAXeHrhkPPPsjRIv
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:51 2024 by rpki-client on console-fra.rpki-client.org