Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/dVzbbT2JwRqruXoLMpUZyGkjJo8.roa
File: dVzbbT2JwRqruXoLMpUZyGkjJo8.roa (raw, json)
Hash identifier: k35oRXrQwQVb4zj2mY9aDVEpt/Y2QMpu0f94di6+qDk=
Subject key identifier: 75:5C:DB:6D:3D:89:C1:1A:AB:B9:7A:0B:32:95:19:C8:69:23:26:8F
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0189DFAEBFF8348E95113B4C54F3F3CBC407
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/dVzbbT2JwRqruXoLMpUZyGkjJo8.roa
Signing time: Thu 10 Aug 2023 13:41:58 +0000
ROA not before: Thu 10 Aug 2023 13:41:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208949
IP address blocks: 109.72.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:df:ae:bf:f8:34:8e:95:11:3b:4c:54:f3:f3:cb:c4:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Aug 10 13:41:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=755cdb6d3d89c11aabb97a0b329519c86923268f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:5e:48:dd:06:ad:09:f7:25:5c:b4:2d:25:c3:
5e:d6:ba:db:c3:7b:cf:9b:bc:8b:c5:3c:69:a3:cf:
15:43:5d:76:fd:3c:5d:f2:93:26:0b:cb:95:00:c7:
de:b7:13:56:2c:14:69:ee:69:24:dd:27:75:6d:4a:
99:c1:5c:c2:c6:89:50:8c:d4:c8:cb:41:14:8b:0f:
b1:17:14:c1:59:26:11:71:49:bb:3d:2d:d8:91:3f:
b7:8b:2d:03:80:00:8e:c8:50:67:10:cb:1c:69:02:
e0:31:09:87:51:78:f9:5f:08:4d:55:3b:0e:8c:87:
6f:61:16:c8:72:67:f2:3e:96:5e:7a:57:72:1f:89:
36:95:01:38:0f:5e:dc:a8:35:7b:b3:ba:40:bb:68:
f8:ff:e7:07:39:92:1e:f4:be:d5:fd:b3:c2:6f:b2:
3a:5e:7e:e2:38:b2:1b:09:61:14:db:ac:ef:37:d1:
e1:5e:48:6e:56:35:89:d7:64:b0:f0:46:c8:e5:95:
fa:65:ad:ef:15:4c:c7:78:06:b0:2e:e8:36:f9:5f:
71:5d:df:8c:a3:14:a2:13:32:63:9c:70:58:3d:c9:
20:b3:1e:9c:b1:d2:96:5c:02:25:08:cd:6f:a5:9b:
f7:08:58:d3:9b:98:27:5f:19:6d:f9:d3:03:4d:b7:
0e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:5C:DB:6D:3D:89:C1:1A:AB:B9:7A:0B:32:95:19:C8:69:23:26:8F
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/dVzbbT2JwRqruXoLMpUZyGkjJo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.126.0/24
Signature Algorithm: sha256WithRSAEncryption
17:37:2e:de:4b:6e:43:e3:55:ba:03:9a:01:bd:ab:9a:3a:5a:
08:60:14:f1:f0:90:35:e3:ae:1e:ac:22:fc:03:67:f4:c8:de:
d1:ab:7d:72:c1:91:ee:65:60:70:db:0b:aa:a6:dc:81:74:2a:
f9:35:1b:2e:bf:79:3c:8b:71:f8:eb:96:f8:27:8a:8b:1e:01:
28:5c:ea:8a:bc:c1:57:50:60:71:04:b9:c3:cb:49:93:0f:b6:
e8:a9:28:ad:17:c5:c7:35:0e:ba:13:d5:55:3a:c3:60:02:a9:
91:be:79:ae:7f:6d:69:3a:a3:81:bf:41:5f:b4:ff:65:07:86:
2e:59:e9:db:ac:87:e0:b9:bb:9a:b8:7c:ce:48:f8:07:c3:b8:
9e:eb:d8:8e:51:76:b5:d5:5a:19:43:88:0b:d8:90:bc:4d:ad:
16:61:aa:53:ae:9e:18:05:bf:7e:22:ff:f4:91:c1:c2:ed:fa:
53:04:97:31:30:fd:91:04:e7:a2:89:f9:f5:e1:d9:20:86:49:
5e:cd:c5:34:0e:44:d8:f2:06:1d:60:8e:3e:55:5a:29:bb:83:
8e:fb:a7:fd:10:a5:57:54:7d:7f:d6:35:02:81:9e:d6:14:0c:
d2:ca:df:7b:ba:12:e3:c1:be:53:70:d8:76:c1:f6:fb:67:3a:
39:03:ce:02
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYnfrr/4NI6VETtMVPPzy8QHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjMwODEwMTM0MTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTVjZGI2ZDNkODljMTFhYWJiOTdhMGIzMjk1MTljODY5MjMyNjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhV5I3QatCfclXLQtJcNe1rrbw3vP
m7yLxTxpo88VQ112/Txd8pMmC8uVAMfetxNWLBRp7mkk3Sd1bUqZwVzCxolQjNTI
y0EUiw+xFxTBWSYRcUm7PS3YkT+3iy0DgACOyFBnEMscaQLgMQmHUXj5XwhNVTsO
jIdvYRbIcmfyPpZeeldyH4k2lQE4D17cqDV7s7pAu2j4/+cHOZIe9L7V/bPCb7I6
Xn7iOLIbCWEU26zvN9HhXkhuVjWJ12Sw8EbI5ZX6Za3vFUzHeAawLug2+V9xXd+M
oxSiEzJjnHBYPckgsx6csdKWXAIlCM1vpZv3CFjTm5gnXxlt+dMDTbcOEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHVc2209icEaq7l6CzKVGchpIyaPMB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvZFZ6YmJUMkp3UnFydVhvTE1wVVp5R2tqSm84LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbUh+MA0G
CSqGSIb3DQEBCwUAA4IBAQAXNy7eS25D41W6A5oBvauaOloIYBTx8JA1464erCL8
A2f0yN7Rq31ywZHuZWBw2wuqptyBdCr5NRsuv3k8i3H465b4J4qLHgEoXOqKvMFX
UGBxBLnDy0mTD7boqSitF8XHNQ66E9VVOsNgAqmRvnmuf21pOqOBv0FftP9lB4Yu
WenbrIfgubuauHzOSPgHw7ie69iOUXa11VoZQ4gL2JC8Ta0WYapTrp4YBb9+Iv/0
kcHC7fpTBJcxMP2RBOeiifn14dkghklezcU0DkTY8gYdYI4+VVopu4OO+6f9EKVX
VH1/1jUCgZ7WFAzSyt97uhLjwb5TcNh2wfb7Zzo5A84C
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org