Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/JAov-UR4XJwZPyhtSI2iwsRFork.roa
File: JAov-UR4XJwZPyhtSI2iwsRFork.roa (raw, json)
Hash identifier: 7uXPxUZozMIDI/fqxppsTzTJgxJFuq9YyR4UtP9rZss=
Subject key identifier: 24:0A:2F:F9:44:78:5C:9C:19:3F:28:6D:48:8D:A2:C2:C4:45:A2:B9
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0187A511857E4904CF74228C01F6658E7577
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/JAov-UR4XJwZPyhtSI2iwsRFork.roa
Signing time: Fri 21 Apr 2023 18:26:41 +0000
ROA not before: Fri 21 Apr 2023 18:26:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.122.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 23 Apr 2023 04:50:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a5:11:85:7e:49:04:cf:74:22:8c:01:f6:65:8e:75:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Apr 21 18:26:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=240a2ff944785c9c193f286d488da2c2c445a2b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:65:dc:0a:a3:28:54:96:c8:f8:a2:96:76:be:
7f:54:81:9c:ca:54:99:e7:31:2e:53:11:d0:34:24:
4b:6f:4a:ae:e5:74:61:60:ef:33:dc:da:cb:d2:c8:
e0:68:b0:1f:27:03:b4:1f:7d:e9:0e:5f:2f:93:c3:
9e:de:b2:d9:a6:13:cd:eb:da:7b:e6:9d:eb:f6:a0:
72:dd:1a:c8:29:ce:ed:0d:96:b6:d6:96:08:0c:de:
c5:e2:3d:39:e3:16:01:8e:cf:64:11:f8:b0:e8:60:
de:d1:0c:ef:e9:22:98:ae:f1:8f:ad:9f:d4:d8:ea:
8e:b1:b8:33:87:49:9c:78:1e:c8:ab:ae:48:cf:68:
2c:f3:5d:29:dc:10:f6:fd:de:70:81:26:56:d5:9c:
37:f6:02:81:be:02:84:7f:4b:ce:3b:8d:53:e7:07:
d1:d1:40:fc:20:79:b4:22:8d:9a:bf:f0:ff:9a:c7:
4d:c9:c2:4a:ba:f0:dc:21:cd:3c:f8:05:0d:fe:ac:
11:1f:b6:21:cd:2a:9d:57:94:d4:af:7e:f8:41:77:
66:c6:a9:61:5b:4c:9e:fc:e5:d1:f7:b6:df:6b:2d:
ea:51:30:e9:88:6d:17:88:69:8c:64:b9:07:5d:e3:
9e:f9:e4:5c:be:9a:89:18:61:08:b6:24:3c:18:56:
eb:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:0A:2F:F9:44:78:5C:9C:19:3F:28:6D:48:8D:A2:C2:C4:45:A2:B9
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/JAov-UR4XJwZPyhtSI2iwsRFork.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.43.0/24
Signature Algorithm: sha256WithRSAEncryption
51:fd:ee:76:8c:cd:d2:84:98:af:70:5d:86:dc:f7:80:0e:dc:
6d:d1:ad:28:57:0c:a1:e5:e5:f7:36:fa:d9:cf:bc:57:5c:e7:
ce:b0:a7:9d:6e:d1:3e:74:7b:cb:ec:fa:51:6f:1c:47:c0:7c:
31:ea:0d:12:a7:5c:34:99:1b:67:fe:ed:c5:e6:02:ff:fe:bf:
20:48:fa:65:08:68:46:1d:db:54:30:e0:1b:9c:b7:65:fd:e5:
12:16:18:10:50:47:6e:21:be:5d:58:65:a6:f5:32:2d:4e:97:
85:b8:a9:73:7c:0c:d9:33:12:f8:08:21:ac:ea:14:ee:49:1c:
cb:79:49:9d:c6:2a:6b:84:e3:41:22:9a:b1:78:88:a2:b2:89:
d8:e8:7a:af:63:8b:3f:b1:ed:b6:ec:fc:ec:7f:39:40:08:86:
6e:1f:81:f9:8e:58:dd:19:30:50:09:e4:e1:48:c3:21:e8:85:
d3:e2:a6:cb:99:10:29:92:b4:35:ba:9f:6b:84:85:25:ec:75:
af:04:63:0f:05:be:71:f4:9f:e9:5d:d1:3d:1e:e6:d5:a7:b1:
9f:8b:57:93:c7:6c:9b:7c:53:fb:eb:59:a6:c6:4d:d1:53:ec:
04:af:22:ee:bb:f0:59:0c:2a:7c:09:36:a2:a0:1d:1c:97:c9:
a6:7d:c5:d6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYelEYV+SQTPdCKMAfZljnV3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj
NWFjOGQwHhcNMjMwNDIxMTgyNjQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNDBhMmZmOTQ0Nzg1YzljMTkzZjI4NmQ0ODhkYTJjMmM0NDVhMmI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlWXcCqMoVJbI+KKWdr5/VIGcylSZ
5zEuUxHQNCRLb0qu5XRhYO8z3NrL0sjgaLAfJwO0H33pDl8vk8Oe3rLZphPN69p7
5p3r9qBy3RrIKc7tDZa21pYIDN7F4j054xYBjs9kEfiw6GDe0Qzv6SKYrvGPrZ/U
2OqOsbgzh0mceB7Iq65Iz2gs810p3BD2/d5wgSZW1Zw39gKBvgKEf0vOO41T5wfR
0UD8IHm0Io2av/D/msdNycJKuvDcIc08+AUN/qwRH7YhzSqdV5TUr374QXdmxqlh
W0ye/OXR97bfay3qUTDpiG0XiGmMZLkHXeOe+eRcvpqJGGEItiQ8GFbrewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCQKL/lEeFycGT8obUiNosLERaK5MB8GA1UdIwQY
MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt
MzE4YTI2ZDRhOGM5LzEvSkFvdi1VUjRYSndaUHlodFNJMml3c1JGb3JrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5
LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbXorMA0G
CSqGSIb3DQEBCwUAA4IBAQBR/e52jM3ShJivcF2G3PeADtxt0a0oVwyh5eX3NvrZ
z7xXXOfOsKedbtE+dHvL7PpRbxxHwHwx6g0Sp1w0mRtn/u3F5gL//r8gSPplCGhG
HdtUMOAbnLdl/eUSFhgQUEduIb5dWGWm9TItTpeFuKlzfAzZMxL4CCGs6hTuSRzL
eUmdxiprhONBIpqxeIiisonY6HqvY4s/se227PzsfzlACIZuH4H5jljdGTBQCeTh
SMMh6IXT4qbLmRApkrQ1up9rhIUl7HWvBGMPBb5x9J/pXdE9HubVp7Gfi1eTx2yb
fFP761mmxk3RU+wEryLuu/BZDCp8CTaioB0cl8mmfcXW
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org