Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/7KagJ8IMozn1tuJRpWY0P2vK7NU.roa
File: 7KagJ8IMozn1tuJRpWY0P2vK7NU.roa (raw, json)
Hash identifier: mTJru72MfwsNDrPuKwzYm5NVzKmPVPOLnp5j2bM2dNY=
Subject key identifier: EC:A6:A0:27:C2:0C:A3:39:F5:B6:E2:51:A5:66:34:3F:6B:CA:EC:D5
Certificate issuer: /CN=60ebd4f7ac3d24920de1c1ff1185d9507e9ad078
Certificate serial: 0189CA46649BB0218A2859862E89E1C46C2A
Authority key identifier: 60:EB:D4:F7:AC:3D:24:92:0D:E1:C1:FF:11:85:D9:50:7E:9A:D0:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YOvU96w9JJIN4cH_EYXZUH6a0Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/7KagJ8IMozn1tuJRpWY0P2vK7NU.roa
Signing time: Sun 06 Aug 2023 09:55:58 +0000
ROA not before: Sun 06 Aug 2023 09:55:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57511
IP address blocks: 109.95.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ca:46:64:9b:b0:21:8a:28:59:86:2e:89:e1:c4:6c:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ebd4f7ac3d24920de1c1ff1185d9507e9ad078
Validity
Not Before: Aug 6 09:55:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eca6a027c20ca339f5b6e251a566343f6bcaecd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:63:8e:12:bf:bb:8f:89:fe:5a:cd:4c:ae:bf:
26:de:9a:a4:4b:3d:ba:40:b1:22:14:87:8e:c7:a0:
92:e0:9f:47:d6:7f:fb:fd:ff:de:96:16:55:dc:64:
56:a6:1c:d2:39:17:2d:50:82:20:01:14:65:a8:a3:
47:f4:29:33:23:79:a7:da:b1:69:a5:37:62:37:c3:
e9:4f:4e:31:7c:16:04:04:ce:f0:b0:f3:3a:5b:31:
96:b9:af:1d:56:d6:02:ec:0c:6e:60:08:ca:01:2b:
13:0a:75:0e:d5:ec:db:90:ef:77:48:b0:76:8c:69:
c3:77:a7:a2:10:1a:ec:43:23:de:ae:21:0b:b3:c2:
17:fc:07:5f:5f:e4:6c:38:23:6a:7b:ae:4b:6b:f1:
0d:cb:28:20:0c:0f:d7:dc:d5:cf:bc:45:f7:c9:6e:
fc:53:c3:0b:d9:60:1c:a6:bc:87:46:41:68:e6:01:
34:61:ae:66:c8:3e:7a:41:10:90:21:32:4a:b1:8f:
63:1f:bf:c5:5b:56:e9:38:b1:a9:93:62:e5:30:c6:
d7:3e:6d:b5:b2:dc:59:30:43:04:3c:83:c8:cc:b5:
fe:9e:83:37:86:2a:c2:c1:e1:62:26:c3:44:71:86:
02:8e:04:bf:15:51:07:b2:71:a2:0a:b2:71:21:d3:
df:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:A6:A0:27:C2:0C:A3:39:F5:B6:E2:51:A5:66:34:3F:6B:CA:EC:D5
X509v3 Authority Key Identifier:
keyid:60:EB:D4:F7:AC:3D:24:92:0D:E1:C1:FF:11:85:D9:50:7E:9A:D0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YOvU96w9JJIN4cH_EYXZUH6a0Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/7KagJ8IMozn1tuJRpWY0P2vK7NU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/YOvU96w9JJIN4cH_EYXZUH6a0Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.95.65.0/24
Signature Algorithm: sha256WithRSAEncryption
52:5c:63:62:d8:e2:3e:30:d4:89:7a:b8:50:02:6e:e4:11:d9:
88:e0:d2:ac:09:a9:bc:e7:bc:8b:d4:0f:d5:68:eb:d9:96:bd:
0a:e2:f0:dd:79:ea:18:e0:76:1a:10:6b:35:1f:8b:08:be:70:
5f:a3:8a:1f:3e:76:a8:41:72:18:48:06:af:0e:0a:2a:36:77:
22:b2:df:e1:d0:89:e4:d3:2e:68:ea:c2:25:59:88:68:9d:d6:
5e:5b:e4:a1:32:03:92:3b:c3:9f:e1:26:3e:42:ac:27:79:f7:
dd:1b:95:e2:9f:62:02:d4:3e:0b:51:04:2a:49:2d:c8:ff:5c:
e6:85:b4:a1:d3:3b:77:0a:17:7e:5d:7e:1d:90:8d:e9:fc:c4:
3b:1c:ca:44:1d:17:93:6d:1f:c3:d0:ad:7a:62:fd:ba:d6:f1:
e7:af:99:0f:82:ba:d0:66:d3:d5:d3:6c:4c:b1:c2:bc:6f:fe:
73:5a:a9:50:f1:97:61:47:b4:3d:d3:e6:21:45:84:34:23:21:
a0:32:0b:bc:0a:77:be:39:93:ce:ff:06:d2:8f:fa:b4:44:48:
c4:c2:0e:de:09:4a:9a:de:ce:04:08:44:49:8c:8a:4a:08:cf:
63:9b:77:4f:5c:50:af:53:05:34:23:99:14:73:da:ba:fa:3a:
ba:7a:bb:b3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYnKRmSbsCGKKFmGLonhxGwqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwZWJkNGY3YWMzZDI0OTIwZGUxYzFmZjExODVkOTUwN2U5
YWQwNzgwHhcNMjMwODA2MDk1NTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlY2E2YTAyN2MyMGNhMzM5ZjViNmUyNTFhNTY2MzQzZjZiY2FlY2Q1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjGOOEr+7j4n+Ws1Mrr8m3pqkSz26
QLEiFIeOx6CS4J9H1n/7/f/elhZV3GRWphzSORctUIIgARRlqKNH9CkzI3mn2rFp
pTdiN8PpT04xfBYEBM7wsPM6WzGWua8dVtYC7AxuYAjKASsTCnUO1ezbkO93SLB2
jGnDd6eiEBrsQyPeriELs8IX/AdfX+RsOCNqe65La/ENyyggDA/X3NXPvEX3yW78
U8ML2WAcpryHRkFo5gE0Ya5myD56QRCQITJKsY9jH7/FW1bpOLGpk2LlMMbXPm21
stxZMEMEPIPIzLX+noM3hirCweFiJsNEcYYCjgS/FVEHsnGiCrJxIdPf9QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOymoCfCDKM59bbiUaVmND9ryuzVMB8GA1UdIwQY
MBaAFGDr1PesPSSSDeHB/xGF2VB+mtB4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWU92VTk2dzlKSklONGNIX0VZWFpVSDZhMEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi85MDUzNzgtMjI4YS00MWI0LWJjZTgt
ODdkM2IwMjNkOTE5LzEvN0thZ0o4SU1vem4xdHVKUnBXWTBQMnZLN05VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi85MDUzNzgtMjI4YS00MWI0LWJjZTgtODdkM2IwMjNkOTE5
LzEvWU92VTk2dzlKSklONGNIX0VZWFpVSDZhMEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbV9BMA0G
CSqGSIb3DQEBCwUAA4IBAQBSXGNi2OI+MNSJerhQAm7kEdmI4NKsCam857yL1A/V
aOvZlr0K4vDdeeoY4HYaEGs1H4sIvnBfo4ofPnaoQXIYSAavDgoqNncist/h0Ink
0y5o6sIlWYhondZeW+ShMgOSO8Of4SY+QqwneffdG5Xin2IC1D4LUQQqSS3I/1zm
hbSh0zt3Chd+XX4dkI3p/MQ7HMpEHReTbR/D0K16Yv261vHnr5kPgrrQZtPV02xM
scK8b/5zWqlQ8ZdhR7Q90+YhRYQ0IyGgMgu8Cne+OZPO/wbSj/q0REjEwg7eCUqa
3s4ECERJjIpKCM9jm3dPXFCvUwU0I5kUc9q6+jq6eruz
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:33 2024 by rpki-client on console-ams.rpki-client.org