Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/RqngFUloyIGoLT-KuTwqoR138GQ.roa
File: RqngFUloyIGoLT-KuTwqoR138GQ.roa (raw, json)
Hash identifier: mh0TjhkhWCDXRmCxb70mxfvg4Cd32oN095xoOJTgNuE=
Subject key identifier: 46:A9:E0:15:49:68:C8:81:A8:2D:3F:8A:B9:3C:2A:A1:1D:77:F0:64
Certificate issuer: /CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Certificate serial: 0190E8C68D74C0DCBA95BA612ABED51FCA57
Authority key identifier: BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/RqngFUloyIGoLT-KuTwqoR138GQ.roa
Signing time: Thu 25 Jul 2024 07:24:04 +0000
ROA not before: Thu 25 Jul 2024 07:24:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 79.135.102.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 11 Aug 2024 13:59:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e8:c6:8d:74:c0:dc:ba:95:ba:61:2a:be:d5:1f:ca:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Validity
Not Before: Jul 25 07:24:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=46a9e0154968c881a82d3f8ab93c2aa11d77f064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e0:58:3b:eb:dc:6b:6b:54:ee:1d:74:65:3e:
a9:c4:94:9e:b8:4a:74:68:bf:0d:d3:26:70:20:09:
ce:52:4c:72:8e:75:28:a8:ea:f2:4e:36:66:80:28:
8f:b6:21:e2:53:b3:dc:06:ec:b2:9c:4d:ae:5d:b3:
b5:27:5f:54:70:7f:4f:1b:d8:da:65:5c:7e:c4:ce:
f2:b9:50:30:f1:b9:b1:9c:47:b6:68:d9:8b:74:ba:
58:70:0a:a7:3e:bf:be:8b:5e:73:27:15:24:41:3f:
f8:28:ef:48:72:4f:c2:a7:ba:46:43:22:eb:15:1a:
51:45:47:72:69:f0:9a:6f:8b:ef:2b:c3:9a:39:8d:
41:0b:28:8e:e3:9b:10:ae:11:e5:5a:b5:7c:f7:9b:
54:82:1f:cc:8d:6c:e7:59:40:34:e6:62:d9:be:13:
af:f3:82:f6:0d:c4:47:f3:4b:82:88:a2:bf:e9:ef:
d9:19:25:04:a4:f9:2c:4b:78:4d:a1:b1:bf:8d:32:
03:c5:cb:07:70:e3:88:5e:70:f4:c2:08:0e:b5:a2:
06:a2:10:b8:95:7b:97:d2:1d:63:1f:c8:25:58:0c:
59:58:b0:f9:6d:5f:4c:78:9f:54:2b:40:b6:9d:3e:
2d:69:4f:79:91:fe:58:14:08:2e:8a:4d:97:7c:4f:
27:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:A9:E0:15:49:68:C8:81:A8:2D:3F:8A:B9:3C:2A:A1:1D:77:F0:64
X509v3 Authority Key Identifier:
keyid:BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/RqngFUloyIGoLT-KuTwqoR138GQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/uw1OhZN7eg8nEFTShhTyk01OpQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.135.102.0/23
Signature Algorithm: sha256WithRSAEncryption
50:8e:aa:8f:1e:98:71:0d:62:39:e1:e1:c6:bd:7d:ad:35:61:
93:a5:be:04:ab:0a:64:6c:e6:83:ba:8e:ba:89:13:2e:c9:1c:
b6:74:d6:49:79:cc:23:ce:f8:73:3d:0f:29:fa:9b:a3:04:75:
af:43:e0:79:63:5f:24:46:c6:ee:88:fb:55:25:ef:d0:06:fb:
da:10:50:74:a3:0e:99:9d:b7:3b:b0:2a:14:42:59:27:e3:98:
56:59:62:38:66:c1:df:cf:c4:b0:39:84:46:d4:1b:f1:81:f3:
85:bf:15:4f:61:f9:7f:8f:23:82:86:e0:9a:17:c5:68:75:5f:
99:ff:5e:2b:46:92:38:3c:d0:77:3e:c6:45:59:10:46:5f:10:
d1:8c:cb:f9:86:ea:d4:f3:ef:29:84:ec:aa:b1:b6:3f:90:33:
df:ac:92:02:93:f1:17:61:9b:ee:d4:3c:c9:ab:bf:dc:4a:bd:
95:fe:70:55:f6:5b:62:01:29:13:6f:83:77:a5:2c:98:66:90:
c1:bb:52:72:97:08:4a:d4:d1:96:53:28:e3:fb:76:eb:d8:11:
e3:64:c4:03:7c:ff:cc:8c:64:e9:fd:08:28:00:90:b9:71:b8:
51:99:b3:e7:e3:87:84:20:bf:bf:f0:e9:65:d8:0e:24:b2:bf:
44:be:39:49
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZDoxo10wNy6lbphKr7VH8pXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiMGQ0ZTg1OTM3YjdhMGYyNzEwNTRkMjg2MTRmMjkzNGQ0
ZWE1MDAwHhcNMjQwNzI1MDcyNDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NmE5ZTAxNTQ5NjhjODgxYTgyZDNmOGFiOTNjMmFhMTFkNzdmMDY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjOBYO+vca2tU7h10ZT6pxJSeuEp0
aL8N0yZwIAnOUkxyjnUoqOryTjZmgCiPtiHiU7PcBuyynE2uXbO1J19UcH9PG9ja
ZVx+xM7yuVAw8bmxnEe2aNmLdLpYcAqnPr++i15zJxUkQT/4KO9Ick/Cp7pGQyLr
FRpRRUdyafCab4vvK8OaOY1BCyiO45sQrhHlWrV895tUgh/MjWznWUA05mLZvhOv
84L2DcRH80uCiKK/6e/ZGSUEpPksS3hNobG/jTIDxcsHcOOIXnD0wggOtaIGohC4
lXuX0h1jH8glWAxZWLD5bV9MeJ9UK0C2nT4taU95kf5YFAguik2XfE8nmwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEap4BVJaMiBqC0/irk8KqEdd/BkMB8GA1UdIwQY
MBaAFLsNToWTe3oPJxBU0oYU8pNNTqUAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXcxT2haTjdlZzhuRUZUU2hoVHlrMDFPcFFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9kMTc1MjctY2Y5OC00ZDM3LTg2NmYt
OGU5Yjk4YTk5Y2RiLzEvUnFuZ0ZVbG95SUdvTFQtS3VUd3FvUjEzOEdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS9kMTc1MjctY2Y5OC00ZDM3LTg2NmYtOGU5Yjk4YTk5Y2Ri
LzEvdXcxT2haTjdlZzhuRUZUU2hoVHlrMDFPcFFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBT4dmMA0G
CSqGSIb3DQEBCwUAA4IBAQBQjqqPHphxDWI54eHGvX2tNWGTpb4EqwpkbOaDuo66
iRMuyRy2dNZJecwjzvhzPQ8p+pujBHWvQ+B5Y18kRsbuiPtVJe/QBvvaEFB0ow6Z
nbc7sCoUQlkn45hWWWI4ZsHfz8SwOYRG1BvxgfOFvxVPYfl/jyOChuCaF8VodV+Z
/14rRpI4PNB3PsZFWRBGXxDRjMv5hurU8+8phOyqsbY/kDPfrJICk/EXYZvu1DzJ
q7/cSr2V/nBV9ltiASkTb4N3pSyYZpDBu1JylwhK1NGWUyjj+3br2BHjZMQDfP/M
jGTp/QgoAJC5cbhRmbPn44eEIL+/8Oll2A4ksr9EvjlJ
-----END CERTIFICATE-----
Generated at Sun Aug 11 17:36:01 2024 by rpki-client on console-ams.rpki-client.org