Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/0u61cpi0950Pfkr9SDdRx657ibw.roa
File: 0u61cpi0950Pfkr9SDdRx657ibw.roa (raw, json)
Hash identifier: ZCyID8LKZLJh0TgsjkMXT2LyuFYCe0BhVtKdJ7q9doc=
Subject key identifier: D2:EE:B5:72:98:B4:F7:9D:0F:7E:4A:FD:48:37:51:C7:AE:7B:89:BC
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018B47847C398FBF1A9268489C66A5C69812
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/0u61cpi0950Pfkr9SDdRx657ibw.roa
Signing time: Thu 19 Oct 2023 10:39:06 +0000
ROA not before: Thu 19 Oct 2023 10:39:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59426
IP address blocks: 109.72.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Dec 2023 10:37:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:47:84:7c:39:8f:bf:1a:92:68:48:9c:66:a5:c6:98:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Oct 19 10:39:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2eeb57298b4f79d0f7e4afd483751c7ae7b89bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:24:5f:1b:7d:72:e6:84:77:82:17:f5:91:fb:
8c:a2:1e:f8:7b:b9:6c:5f:3e:4c:55:16:2c:76:9c:
f2:05:59:2f:f1:18:b7:36:fe:ca:03:09:0f:5f:be:
67:ca:02:ee:15:e5:75:c6:69:bb:ab:8b:aa:d1:03:
6d:20:4a:7d:24:fe:12:57:ec:ee:3e:35:0f:b0:15:
76:ad:57:02:e1:4f:66:74:94:45:4f:5e:28:ea:ae:
8c:4d:b7:2d:bc:7a:2a:7f:34:bc:9e:c5:f0:e4:23:
4d:cc:79:e3:e3:f5:55:e4:f4:78:ce:4f:cc:dc:89:
70:57:4c:87:e8:64:aa:9c:6d:8e:51:da:ef:4c:8f:
f6:64:c9:93:e7:85:56:7a:d8:bb:ea:09:ac:27:90:
c4:ce:00:3d:ef:a8:2e:75:70:57:ab:78:d7:37:c6:
a5:7e:ac:37:cf:db:fe:73:a0:8a:82:75:5b:41:49:
24:e0:42:ae:59:e8:3c:be:5b:9a:ce:38:5e:f3:6f:
06:38:cb:f6:73:d0:c3:e5:ad:e6:b2:32:96:54:f7:
68:53:8f:f6:b8:be:2f:2d:cc:7c:02:5b:4f:c4:1c:
29:d2:de:ce:36:bd:ba:5e:95:04:0c:da:5c:af:3c:
c3:78:d8:61:68:aa:91:b6:5e:2c:fb:2e:4e:d7:7b:
b1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:EE:B5:72:98:B4:F7:9D:0F:7E:4A:FD:48:37:51:C7:AE:7B:89:BC
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/0u61cpi0950Pfkr9SDdRx657ibw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.116.0/24
Signature Algorithm: sha256WithRSAEncryption
84:f5:3c:65:31:17:9f:c3:79:15:92:4d:96:48:17:ca:5a:28:
1f:e9:44:b9:e6:28:f7:99:24:77:69:1e:32:d2:ff:23:0e:70:
2c:b6:23:a8:0c:2e:4a:1d:bb:9c:65:be:e7:cc:f8:62:b3:b0:
29:59:1f:78:b2:9e:65:fd:93:46:97:70:c4:b7:b3:96:b7:20:
49:5f:b6:37:c4:18:3d:85:5c:40:58:3d:48:f1:22:16:48:f0:
5b:7f:c5:d1:ee:4c:ce:21:48:87:14:09:9c:23:27:b1:4e:47:
ed:96:06:03:90:1a:a3:75:48:0a:98:4a:d8:bb:44:c4:1c:d5:
11:26:dc:c7:02:d1:32:07:1e:12:68:f7:b4:14:e3:51:c3:8c:
7b:ea:97:63:9e:64:22:9c:ae:8b:8e:59:4c:88:9a:f5:ae:9f:
ba:16:d4:63:9b:25:49:f5:0e:b6:00:8a:62:42:63:d7:a2:89:
a1:bf:97:fd:54:9f:66:7e:41:ba:6d:18:59:5d:0a:83:44:35:
af:86:f0:d4:ae:1e:7d:5b:32:6d:69:9c:6d:b6:6e:16:0a:74:
d3:48:86:06:d1:71:1e:45:d8:57:82:5a:b5:3d:35:3b:e9:ab:
aa:7b:03:eb:9d:f3:9e:c0:25:a0:75:17:40:99:93:42:29:1f:
31:d2:27:94
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtHhHw5j78akmhInGalxpgSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjMxMDE5MTAzOTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMmVlYjU3Mjk4YjRmNzlkMGY3ZTRhZmQ0ODM3NTFjN2FlN2I4OWJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhSRfG31y5oR3ghf1kfuMoh74e7ls
Xz5MVRYsdpzyBVkv8Ri3Nv7KAwkPX75nygLuFeV1xmm7q4uq0QNtIEp9JP4SV+zu
PjUPsBV2rVcC4U9mdJRFT14o6q6MTbctvHoqfzS8nsXw5CNNzHnj4/VV5PR4zk/M
3IlwV0yH6GSqnG2OUdrvTI/2ZMmT54VWeti76gmsJ5DEzgA976gudXBXq3jXN8al
fqw3z9v+c6CKgnVbQUkk4EKuWeg8vluazjhe828GOMv2c9DD5a3msjKWVPdoU4/2
uL4vLcx8AltPxBwp0t7ONr26XpUEDNpcrzzDeNhhaKqRtl4s+y5O13uxFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNLutXKYtPedD35K/Ug3Uceue4m8MB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvMHU2MWNwaTA5NTBQZmtyOVNEZFJ4NjU3aWJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbUh0MA0G
CSqGSIb3DQEBCwUAA4IBAQCE9TxlMRefw3kVkk2WSBfKWigf6US55ij3mSR3aR4y
0v8jDnAstiOoDC5KHbucZb7nzPhis7ApWR94sp5l/ZNGl3DEt7OWtyBJX7Y3xBg9
hVxAWD1I8SIWSPBbf8XR7kzOIUiHFAmcIyexTkftlgYDkBqjdUgKmErYu0TEHNUR
JtzHAtEyBx4SaPe0FONRw4x76pdjnmQinK6LjllMiJr1rp+6FtRjmyVJ9Q62AIpi
QmPXoomhv5f9VJ9mfkG6bRhZXQqDRDWvhvDUrh59WzJtaZxttm4WCnTTSIYG0XEe
RdhXglq1PTU76auqewPrnfOewCWgdRdAmZNCKR8x0ieU
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:45 2024 by rpki-client on console-ams.rpki-client.org