Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Nf--foviGDSuWVKeVa5nHtaddoQ.roa
File: Nf--foviGDSuWVKeVa5nHtaddoQ.roa (raw, json)
Hash identifier: 9Eiw2/IbTCVkha5F7anJnthHgAtxwwKi4Jq+V1kL3KI=
Subject key identifier: 35:FF:BE:7E:8B:E2:18:34:AE:59:52:9E:55:AE:67:1E:D6:9D:76:84
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 01880D57F9B66119B65A56CAA1493F13B0A1
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Nf--foviGDSuWVKeVa5nHtaddoQ.roa
Signing time: Fri 12 May 2023 00:24:09 +0000
ROA not before: Fri 12 May 2023 00:24:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.105.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 May 2023 12:50:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0d:57:f9:b6:61:19:b6:5a:56:ca:a1:49:3f:13:b0:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: May 12 00:24:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35ffbe7e8be21834ae59529e55ae671ed69d7684
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c0:ca:6f:2e:27:0e:87:ea:4e:b6:ae:2e:b1:
54:0d:c3:8e:7d:31:50:9e:65:48:c7:58:5c:a7:26:
d2:57:68:dc:54:e4:8b:5f:6d:61:57:02:da:e1:62:
23:3b:6a:eb:42:fc:b5:e4:75:66:8c:b6:16:fa:03:
ed:4c:c4:fc:72:b4:29:60:5d:49:a5:4b:f4:86:cf:
e9:70:9e:d1:9d:3b:58:4b:33:80:b2:5c:fe:1a:71:
9a:5f:a9:07:66:ea:82:18:d2:17:83:8b:87:2c:40:
af:36:59:b3:ea:22:68:08:cf:3d:3b:bb:af:c3:8e:
44:9e:94:9c:41:45:22:6d:4c:a1:6a:57:7a:05:cf:
6d:de:e0:05:4b:62:39:86:19:1b:c8:e4:10:82:bf:
3a:c4:ad:5d:53:eb:8d:92:5f:c8:77:cf:e7:29:ec:
6e:0c:2d:51:f0:15:33:48:4a:73:0c:ce:50:43:47:
12:9f:a3:7b:0e:39:41:52:32:55:2d:8f:15:16:de:
71:b8:88:e7:e1:b0:b9:64:3b:9f:98:33:f1:7b:3e:
47:d5:71:4f:b9:cf:28:ef:7d:90:e8:5f:83:1b:74:
ee:84:3e:1f:c7:3c:2d:16:4d:ca:7c:85:e6:52:fd:
3d:59:25:62:75:3d:39:61:03:8c:d8:e2:2d:76:63:
63:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:FF:BE:7E:8B:E2:18:34:AE:59:52:9E:55:AE:67:1E:D6:9D:76:84
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Nf--foviGDSuWVKeVa5nHtaddoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.193.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:b7:f7:d4:0b:33:e9:38:cd:86:bd:e7:73:05:57:90:59:31:
6d:ee:49:55:08:73:8e:9b:10:3a:f3:46:7d:f5:8c:64:38:33:
45:d5:bd:28:e2:40:09:ee:0b:d3:79:ee:18:4a:29:61:cd:20:
4d:0d:97:bd:2f:3a:49:c6:27:61:72:5e:cb:29:5c:bc:6c:36:
3e:3d:3b:0f:91:46:3c:91:1e:27:ec:9c:ed:bc:b8:66:b0:5a:
8c:c3:26:f7:4f:3e:9d:9d:3a:ad:91:68:31:f7:d5:91:6a:c1:
54:92:bf:96:20:01:bd:54:4e:c4:d0:55:b7:a7:64:07:87:46:
2e:a5:71:19:a7:ed:64:dc:10:ff:3e:33:39:45:9a:f4:4a:69:
e0:15:6f:bf:99:bb:25:4b:fe:f0:02:dd:97:9a:0e:68:cb:89:
34:3d:05:4a:17:17:f3:3d:b7:5b:63:0a:00:5c:45:31:9d:75:
fe:8c:5d:19:6d:1d:85:63:7f:bf:ae:72:1b:50:42:f4:d0:53:
4c:41:0e:eb:8e:95:0c:62:d9:d9:d5:88:45:92:e6:e4:93:58:
20:4c:33:80:e7:27:a7:57:af:37:d6:cc:b0:e4:e7:e2:b9:61:
f6:85:dd:1d:d5:f7:a6:dd:f1:19:e0:92:95:6d:af:3e:01:20:
da:f5:2a:e4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgNV/m2YRm2WlbKoUk/E7ChMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YzYwYTBkMmQ3MGE5MzM3ZDBiZGE1NmQxYWQ1OTZhYzFm
NjljZGEwHhcNMjMwNTEyMDAyNDA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNWZmYmU3ZThiZTIxODM0YWU1OTUyOWU1NWFlNjcxZWQ2OWQ3Njg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA18DKby4nDofqTrauLrFUDcOOfTFQ
nmVIx1hcpybSV2jcVOSLX21hVwLa4WIjO2rrQvy15HVmjLYW+gPtTMT8crQpYF1J
pUv0hs/pcJ7RnTtYSzOAslz+GnGaX6kHZuqCGNIXg4uHLECvNlmz6iJoCM89O7uv
w45EnpScQUUibUyhald6Bc9t3uAFS2I5hhkbyOQQgr86xK1dU+uNkl/Id8/nKexu
DC1R8BUzSEpzDM5QQ0cSn6N7DjlBUjJVLY8VFt5xuIjn4bC5ZDufmDPxez5H1XFP
uc8o732Q6F+DG3TuhD4fxzwtFk3KfIXmUv09WSVidT05YQOM2OItdmNjGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDX/vn6L4hg0rllSnlWuZx7WnXaEMB8GA1UdIwQY
MBaAFNjGCg0tcKkzfQvaVtGtWWrB9pzaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUt
ZGQyOTRjMzc4ZjZjLzEvTmYtLWZvdmlHRFN1V1ZLZVZhNW5IdGFkZG9RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUtZGQyOTRjMzc4ZjZj
LzEvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWnBMA0G
CSqGSIb3DQEBCwUAA4IBAQBet/fUCzPpOM2GvedzBVeQWTFt7klVCHOOmxA680Z9
9YxkODNF1b0o4kAJ7gvTee4YSilhzSBNDZe9LzpJxidhcl7LKVy8bDY+PTsPkUY8
kR4n7JztvLhmsFqMwyb3Tz6dnTqtkWgx99WRasFUkr+WIAG9VE7E0FW3p2QHh0Yu
pXEZp+1k3BD/PjM5RZr0SmngFW+/mbslS/7wAt2Xmg5oy4k0PQVKFxfzPbdbYwoA
XEUxnXX+jF0ZbR2FY3+/rnIbUEL00FNMQQ7rjpUMYtnZ1YhFkubkk1ggTDOA5yen
V6831syw5OfiuWH2hd0d1fem3fEZ4JKVba8+ASDa9Srk
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org