Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/cPjRG24Wdnt1NQaSTp5W6WvOds4.roa
File: cPjRG24Wdnt1NQaSTp5W6WvOds4.roa (raw, json)
Hash identifier: VlpvtfqYj7eO6pNEYFN7KP0NPVnIjmttCoKUO2KSy2w=
Subject key identifier: 70:F8:D1:1B:6E:16:76:7B:75:35:06:92:4E:9E:56:E9:6B:CE:76:CE
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0186929DE1222EF9583C97F04C109D3B20F3
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/cPjRG24Wdnt1NQaSTp5W6WvOds4.roa
Signing time: Mon 27 Feb 2023 11:24:25 +0000
ROA not before: Mon 27 Feb 2023 11:24:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203283
IP address blocks: 109.122.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 May 2023 03:40:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:92:9d:e1:22:2e:f9:58:3c:97:f0:4c:10:9d:3b:20:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Feb 27 11:24:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70f8d11b6e16767b753506924e9e56e96bce76ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:18:82:90:3d:41:6d:e2:73:c8:cd:8f:ab:b0:
f0:e9:36:29:83:54:ca:9b:d5:a7:cb:f4:1d:c8:cd:
70:5b:a6:42:05:5b:d4:ad:ed:de:2c:36:b2:ee:30:
bd:ac:63:66:5f:74:17:94:4c:7d:c6:10:91:5d:3e:
06:ee:00:e9:31:f7:a8:8d:56:73:18:50:3d:89:fb:
de:ae:8d:8a:1c:f4:33:bb:5a:58:c8:67:34:fa:57:
1c:bd:9c:fa:4e:1e:f8:39:8e:3c:e6:26:80:00:e2:
a5:ac:44:21:eb:41:47:b1:4a:53:16:f8:b0:8b:3f:
6c:85:b9:37:f7:e0:d7:91:ca:ac:b2:75:a7:e8:fe:
b5:bc:76:20:4f:d0:c5:b3:77:1c:19:b6:bd:67:f8:
43:09:29:ba:0e:cd:50:be:c1:08:83:6d:0d:0b:ce:
86:82:63:3a:c7:35:c5:e1:db:bd:4b:6a:16:fc:91:
af:01:1c:0b:dc:53:60:fb:f3:7a:be:80:06:a1:b7:
a0:98:01:90:b4:6b:5f:b6:db:9b:50:41:f7:b3:dd:
b1:fa:4a:d5:81:66:53:27:23:30:c9:d4:68:a5:b5:
a3:36:e1:58:7c:24:01:3d:cb:9c:b8:db:4b:27:5c:
92:5a:b1:eb:ee:73:b3:84:21:45:bc:28:b4:9a:e8:
b7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:F8:D1:1B:6E:16:76:7B:75:35:06:92:4E:9E:56:E9:6B:CE:76:CE
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/cPjRG24Wdnt1NQaSTp5W6WvOds4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.41.0/24
Signature Algorithm: sha256WithRSAEncryption
63:42:13:6e:87:88:60:ed:ec:91:80:03:d3:89:d7:2e:37:3f:
3b:73:9f:b4:37:68:07:c6:eb:b6:e6:63:d6:81:88:01:10:3c:
92:fe:d7:37:5d:f6:db:9e:6f:86:93:c4:39:8b:1c:f4:ac:9e:
3e:f9:47:ed:88:13:b7:e7:87:2f:b1:6c:d0:87:f6:5d:72:2a:
e2:46:71:f5:8c:92:2a:7a:ba:a7:b8:67:4e:29:4d:79:41:46:
85:01:70:3f:a2:fb:a0:5d:a7:ec:a5:f5:60:84:67:d1:23:84:
36:8e:37:6f:e2:e6:b4:58:2f:56:0b:60:e1:26:9a:48:dd:79:
d9:4b:96:0a:b5:56:98:4e:0f:b7:52:45:30:b7:a8:a2:38:ee:
ea:a8:9e:d0:34:6f:8f:a2:de:14:8d:19:75:5b:87:2f:4d:88:
6e:c1:9b:3b:37:38:9a:ba:66:30:0c:52:fd:9f:fb:83:f5:ec:
bd:9d:f6:42:30:b1:bd:c3:ec:19:93:52:c6:b0:de:1d:88:b7:
d9:44:c8:66:67:3f:2d:db:2a:03:0e:c7:f3:27:f9:cd:91:3e:
82:ee:7d:32:be:69:74:5a:2a:e2:fe:51:64:a6:c4:e0:1a:ff:
b8:25:36:9c:b1:ab:5f:a2:8c:d7:bf:b5:84:9b:e3:df:71:77:
84:09:95:79
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYaSneEiLvlYPJfwTBCdOyDzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj
NWFjOGQwHhcNMjMwMjI3MTEyNDI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MGY4ZDExYjZlMTY3NjdiNzUzNTA2OTI0ZTllNTZlOTZiY2U3NmNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxhiCkD1BbeJzyM2Pq7Dw6TYpg1TK
m9Wny/QdyM1wW6ZCBVvUre3eLDay7jC9rGNmX3QXlEx9xhCRXT4G7gDpMfeojVZz
GFA9ifvero2KHPQzu1pYyGc0+lccvZz6Th74OY485iaAAOKlrEQh60FHsUpTFviw
iz9shbk39+DXkcqssnWn6P61vHYgT9DFs3ccGba9Z/hDCSm6Ds1QvsEIg20NC86G
gmM6xzXF4du9S2oW/JGvARwL3FNg+/N6voAGobegmAGQtGtfttubUEH3s92x+krV
gWZTJyMwydRopbWjNuFYfCQBPcucuNtLJ1ySWrHr7nOzhCFFvCi0mui3VQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHD40RtuFnZ7dTUGkk6eVulrznbOMB8GA1UdIwQY
MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt
MzE4YTI2ZDRhOGM5LzEvY1BqUkcyNFdkbnQxTlFhU1RwNVc2V3ZPZHM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5
LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbXopMA0G
CSqGSIb3DQEBCwUAA4IBAQBjQhNuh4hg7eyRgAPTidcuNz87c5+0N2gHxuu25mPW
gYgBEDyS/tc3Xfbbnm+Gk8Q5ixz0rJ4++UftiBO354cvsWzQh/ZdciriRnH1jJIq
erqnuGdOKU15QUaFAXA/ovugXafspfVghGfRI4Q2jjdv4ua0WC9WC2DhJppI3XnZ
S5YKtVaYTg+3UkUwt6iiOO7qqJ7QNG+Pot4UjRl1W4cvTYhuwZs7NziaumYwDFL9
n/uD9ey9nfZCMLG9w+wZk1LGsN4diLfZRMhmZz8t2yoDDsfzJ/nNkT6C7n0yvml0
Wiri/lFkpsTgGv+4JTacsatfoozXv7WEm+PfcXeECZV5
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org