Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/CjjToNgPV84avNsucQCNkkh66_8.roa
File: CjjToNgPV84avNsucQCNkkh66_8.roa (raw, json)
Hash identifier: T3CnxoJbs2UnPZnT6BFCEGpCNcAwlkefzC9+qlg+NvI=
Subject key identifier: 0A:38:D3:A0:D8:0F:57:CE:1A:BC:DB:2E:71:00:8D:92:48:7A:EB:FF
Certificate issuer: /CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Certificate serial: 01856D6F89A16D87BE00113786F2E4B6093A
Authority key identifier: B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/CjjToNgPV84avNsucQCNkkh66_8.roa
Signing time: Sun 01 Jan 2023 13:05:04 +0000
ROA not before: Sun 01 Jan 2023 13:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12301
IP address blocks: 89.107.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:89:a1:6d:87:be:00:11:37:86:f2:e4:b6:09:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Validity
Not Before: Jan 1 13:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a38d3a0d80f57ce1abcdb2e71008d92487aebff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:71:15:80:e9:f3:7a:63:5d:c7:f5:d0:a1:19:
14:de:0e:9f:40:36:fc:16:cd:60:12:62:64:b1:2a:
71:c9:83:67:40:35:6a:46:94:02:af:38:89:c9:89:
f4:c4:46:29:00:57:e3:d1:12:e7:3b:dc:d7:aa:7a:
94:e9:28:d4:22:ea:bc:ee:63:6e:d3:2b:09:ca:df:
44:10:2e:0e:ae:39:57:ac:59:b1:a4:ac:e3:6e:d1:
b1:ec:dd:82:2d:7f:2a:64:33:d6:d2:9c:cc:4e:f6:
bb:62:04:7c:da:16:27:4d:c5:e2:5c:04:0f:e1:17:
f2:32:87:c4:68:0b:94:30:f5:d1:31:96:ec:43:b2:
85:8c:a9:e5:4b:e6:59:6a:b1:2f:be:0d:98:a0:8a:
5e:db:da:db:58:44:04:4f:8e:63:5d:91:9e:3b:be:
c0:65:2a:08:73:96:ff:bf:7d:a8:a6:a6:d3:ec:dc:
b9:c5:29:f9:13:70:a6:01:e0:b5:61:cf:36:f3:ca:
22:ae:b2:87:0c:a3:b8:bd:02:ff:66:5a:8b:d2:59:
88:4b:e4:9a:bb:f3:66:fb:05:1e:c6:29:2f:b4:bb:
f4:00:96:96:81:f4:12:d1:fe:db:60:28:a7:80:19:
3a:b9:5f:5c:9b:e5:71:5f:00:66:d4:63:9d:d7:e1:
9f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:38:D3:A0:D8:0F:57:CE:1A:BC:DB:2E:71:00:8D:92:48:7A:EB:FF
X509v3 Authority Key Identifier:
keyid:B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/CjjToNgPV84avNsucQCNkkh66_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.253.0/24
Signature Algorithm: sha256WithRSAEncryption
88:86:f3:e3:23:2d:dc:3a:dc:ed:a7:69:d9:74:5f:07:45:5d:
1c:60:7c:16:10:77:89:05:61:55:d5:ee:14:55:72:1c:81:bf:
9a:4d:9f:ee:dd:4e:91:75:f6:2c:49:13:47:8c:2f:5b:4c:ec:
72:75:f2:d2:38:f5:c3:d7:84:e8:59:bf:5e:fb:0b:62:d1:8b:
1e:f5:7f:f7:28:4e:df:50:5c:0f:a7:1e:33:8d:97:b4:c5:85:
88:94:1d:61:51:44:93:71:c1:3b:05:35:ad:ba:85:9f:eb:1f:
ad:33:a2:11:1f:57:60:3c:6b:72:ef:8f:82:5d:0c:98:74:9c:
5c:be:9a:5e:14:72:c9:d8:6c:58:37:9d:ae:ba:b0:32:28:35:
de:3e:9e:71:2f:ba:01:b7:8a:1d:77:84:ad:65:3a:60:32:58:
4f:25:21:d0:8d:81:b7:9d:03:c1:60:a1:e5:d1:26:30:ef:43:
65:46:e3:f3:c0:0d:80:5a:cf:5b:ca:81:4f:c2:3f:4e:4f:39:
e4:7c:8e:df:6e:c3:95:01:c4:99:e7:a9:65:ac:a7:9b:fe:c5:
b7:57:f5:6f:74:ca:1f:2a:29:11:bd:40:14:ea:e7:53:cb:1f:
49:de:02:83:bd:fd:f6:e1:26:6e:18:f0:59:5a:66:07:b7:90:
ae:50:87:63
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtb4mhbYe+ABE3hvLktgk6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5YjM1MGEwYWUzMmU3M2U2NjBjNDE2YzNmMTQwNmVkZDM2
MTVmODIwHhcNMjMwMTAxMTMwNTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYTM4ZDNhMGQ4MGY1N2NlMWFiY2RiMmU3MTAwOGQ5MjQ4N2FlYmZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlHEVgOnzemNdx/XQoRkU3g6fQDb8
Fs1gEmJksSpxyYNnQDVqRpQCrziJyYn0xEYpAFfj0RLnO9zXqnqU6SjUIuq87mNu
0ysJyt9EEC4OrjlXrFmxpKzjbtGx7N2CLX8qZDPW0pzMTva7YgR82hYnTcXiXAQP
4RfyMofEaAuUMPXRMZbsQ7KFjKnlS+ZZarEvvg2YoIpe29rbWEQET45jXZGeO77A
ZSoIc5b/v32opqbT7Ny5xSn5E3CmAeC1Yc8288oirrKHDKO4vQL/ZlqL0lmIS+Sa
u/Nm+wUexikvtLv0AJaWgfQS0f7bYCingBk6uV9cm+VxXwBm1GOd1+Gf3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAo406DYD1fOGrzbLnEAjZJIeuv/MB8GA1UdIwQY
MBaAFLmzUKCuMuc+ZgxBbD8UBu3TYV+CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWJOUW9LNHk1ejVtREVGc1B4UUc3ZE5oWDRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS82MjdlNjAtMDBhNi00ZDI2LWI5M2Et
ZWY3M2I3YjRjYTNjLzEvQ2pqVG9OZ1BWODRhdk5zdWNRQ05ra2g2Nl84LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS82MjdlNjAtMDBhNi00ZDI2LWI5M2EtZWY3M2I3YjRjYTNj
LzEvdWJOUW9LNHk1ejVtREVGc1B4UUc3ZE5oWDRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWWv9MA0G
CSqGSIb3DQEBCwUAA4IBAQCIhvPjIy3cOtztp2nZdF8HRV0cYHwWEHeJBWFV1e4U
VXIcgb+aTZ/u3U6RdfYsSRNHjC9bTOxydfLSOPXD14ToWb9e+wti0Yse9X/3KE7f
UFwPpx4zjZe0xYWIlB1hUUSTccE7BTWtuoWf6x+tM6IRH1dgPGty74+CXQyYdJxc
vppeFHLJ2GxYN52uurAyKDXePp5xL7oBt4odd4StZTpgMlhPJSHQjYG3nQPBYKHl
0SYw70NlRuPzwA2AWs9byoFPwj9OTznkfI7fbsOVAcSZ56llrKeb/sW3V/VvdMof
KikRvUAU6udTyx9J3gKDvf324SZuGPBZWmYHt5CuUIdj
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:57 2024 by rpki-client on console-ams.rpki-client.org