Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/c455bd-b825-4901-8381-04d1247e5d0a/1/0TfPd81xqDV9OW7WkDF0G9rpqYA.roa
File: 0TfPd81xqDV9OW7WkDF0G9rpqYA.roa (raw, json)
Hash identifier: 0Na0vL3OplH4A5JZ5xziXHiMrCtH8D0XxOlpzcQHwVo=
Subject key identifier: D1:37:CF:77:CD:71:A8:35:7D:39:6E:D6:90:31:74:1B:DA:E9:A9:80
Certificate issuer: /CN=ff0ddf3fe5772201aff78c24e97f944c3805ff6b
Certificate serial: 018FAA55D42117C331D581D7F55C78C77D3F
Authority key identifier: FF:0D:DF:3F:E5:77:22:01:AF:F7:8C:24:E9:7F:94:4C:38:05:FF:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_w3fP-V3IgGv94wk6X-UTDgF_2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/c455bd-b825-4901-8381-04d1247e5d0a/1/0TfPd81xqDV9OW7WkDF0G9rpqYA.roa
Signing time: Fri 24 May 2024 11:21:42 +0000
ROA not before: Fri 24 May 2024 11:21:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15433
IP address blocks: 109.235.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 May 2024 10:14:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:aa:55:d4:21:17:c3:31:d5:81:d7:f5:5c:78:c7:7d:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff0ddf3fe5772201aff78c24e97f944c3805ff6b
Validity
Not Before: May 24 11:21:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d137cf77cd71a8357d396ed69031741bdae9a980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:05:23:c4:02:1d:85:82:20:1b:b2:f4:38:82:
68:7f:ad:bd:86:d8:b4:67:17:0d:8c:a5:22:b2:d3:
8f:90:47:69:7c:f9:dd:26:64:ee:81:8b:05:98:bb:
8e:21:8a:f8:21:e4:3a:08:8c:e1:e2:2c:08:84:2e:
cb:77:8a:f1:41:b1:fb:ee:c3:b4:7a:4d:8a:76:b7:
2f:22:a6:c6:46:e8:61:c9:45:18:28:2c:c3:fc:63:
c7:2a:fa:70:c8:4a:09:2c:1e:ba:42:c7:e2:cf:4c:
bb:26:c5:3f:ae:c0:94:32:1d:a2:38:dc:71:58:8a:
96:1e:6b:92:86:a0:1b:cb:99:27:56:41:dc:64:c3:
59:dd:07:f8:c5:2d:d3:f4:e9:ca:85:c0:5e:23:30:
b7:1f:28:38:d8:c7:fe:b7:f3:04:fe:76:fe:72:d2:
a3:cb:8f:db:08:ea:88:58:60:c1:89:0d:63:ea:13:
3c:1a:0d:f2:76:c0:4d:fe:a6:8f:60:16:88:5b:ed:
bc:92:bb:d0:13:ff:48:a2:ab:17:b4:53:e7:37:e9:
f6:67:b6:13:67:98:6f:3c:43:2d:94:94:62:8f:7e:
14:c4:e8:92:8f:df:01:b3:c5:cb:6d:1b:62:c5:df:
83:99:a1:2d:47:98:a3:b1:5c:d0:80:ee:53:73:f1:
0c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:37:CF:77:CD:71:A8:35:7D:39:6E:D6:90:31:74:1B:DA:E9:A9:80
X509v3 Authority Key Identifier:
keyid:FF:0D:DF:3F:E5:77:22:01:AF:F7:8C:24:E9:7F:94:4C:38:05:FF:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_w3fP-V3IgGv94wk6X-UTDgF_2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c455bd-b825-4901-8381-04d1247e5d0a/1/0TfPd81xqDV9OW7WkDF0G9rpqYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c455bd-b825-4901-8381-04d1247e5d0a/1/_w3fP-V3IgGv94wk6X-UTDgF_2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.235.104.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:a4:9b:de:e8:ce:b0:48:32:e5:d0:46:54:68:4a:96:0b:8e:
d9:ae:e1:1b:9d:50:f6:4f:41:7f:d6:a3:cf:2d:a1:fd:d4:80:
76:7e:cb:4a:d4:b1:1b:6c:33:88:30:fd:b1:ff:4f:7d:ea:5d:
5d:a6:04:8e:58:24:2f:08:19:5b:f9:0b:3f:b1:89:bd:f0:01:
c2:3e:75:21:a3:6c:aa:4b:4b:2c:43:da:4c:a6:c1:b4:63:d9:
52:6e:ea:95:e8:08:33:9e:d2:e9:44:67:12:a9:35:3b:37:83:
58:39:64:14:79:b2:60:32:d0:73:aa:ee:17:76:92:84:63:bf:
07:31:da:0a:83:d7:61:cb:dc:48:92:30:fe:db:af:10:92:d6:
0c:df:e1:2a:c0:6e:34:fe:c0:31:7b:94:37:00:21:9c:e5:c3:
af:e3:ac:65:f9:04:3f:6e:28:6c:ba:78:11:44:2d:75:6d:d6:
d2:2c:2c:45:4c:8b:bf:b4:9e:a8:40:fa:84:7e:64:77:5e:4e:
cd:d6:6d:3e:76:e4:d3:03:12:20:ae:1c:d6:71:28:08:cd:b9:
df:5c:eb:f1:46:ab:4f:cd:6b:f8:f3:13:6f:e7:a1:28:38:24:
6e:c7:b1:e0:92:cd:39:aa:a6:b3:e7:30:c7:84:96:7e:d2:95:
f1:88:19:9a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY+qVdQhF8Mx1YHX9Vx4x30/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmMGRkZjNmZTU3NzIyMDFhZmY3OGMyNGU5N2Y5NDRjMzgw
NWZmNmIwHhcNMjQwNTI0MTEyMTQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTM3Y2Y3N2NkNzFhODM1N2QzOTZlZDY5MDMxNzQxYmRhZTlhOTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQUjxAIdhYIgG7L0OIJof629hti0
ZxcNjKUistOPkEdpfPndJmTugYsFmLuOIYr4IeQ6CIzh4iwIhC7Ld4rxQbH77sO0
ek2KdrcvIqbGRuhhyUUYKCzD/GPHKvpwyEoJLB66Qsfiz0y7JsU/rsCUMh2iONxx
WIqWHmuShqAby5knVkHcZMNZ3Qf4xS3T9OnKhcBeIzC3Hyg42Mf+t/ME/nb+ctKj
y4/bCOqIWGDBiQ1j6hM8Gg3ydsBN/qaPYBaIW+28krvQE/9IoqsXtFPnN+n2Z7YT
Z5hvPEMtlJRij34UxOiSj98Bs8XLbRtixd+DmaEtR5ijsVzQgO5Tc/EMqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNE3z3fNcag1fTlu1pAxdBva6amAMB8GA1UdIwQY
MBaAFP8N3z/ldyIBr/eMJOl/lEw4Bf9rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX3czZlAtVjNJZ0d2OTR3azZYLVVURGdGXzJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9jNDU1YmQtYjgyNS00OTAxLTgzODEt
MDRkMTI0N2U1ZDBhLzEvMFRmUGQ4MXhxRFY5T1c3V2tERjBHOXJwcVlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9jNDU1YmQtYjgyNS00OTAxLTgzODEtMDRkMTI0N2U1ZDBh
LzEvX3czZlAtVjNJZ0d2OTR3azZYLVVURGdGXzJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbetoMA0G
CSqGSIb3DQEBCwUAA4IBAQBqpJve6M6wSDLl0EZUaEqWC47ZruEbnVD2T0F/1qPP
LaH91IB2fstK1LEbbDOIMP2x/0996l1dpgSOWCQvCBlb+Qs/sYm98AHCPnUho2yq
S0ssQ9pMpsG0Y9lSbuqV6AgzntLpRGcSqTU7N4NYOWQUebJgMtBzqu4XdpKEY78H
MdoKg9dhy9xIkjD+268QktYM3+EqwG40/sAxe5Q3ACGc5cOv46xl+QQ/bihsungR
RC11bdbSLCxFTIu/tJ6oQPqEfmR3Xk7N1m0+duTTAxIgrhzWcSgIzbnfXOvxRqtP
zWv48xNv56EoOCRux7Hgks05qqaz5zDHhJZ+0pXxiBma
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:53 2024 by rpki-client on console-fra.rpki-client.org