Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/St1Ce8AKoVCLkCUiaNshUqEKZW8.roa
File: St1Ce8AKoVCLkCUiaNshUqEKZW8.roa (raw, json)
Hash identifier: qT7J70+XdDKj+OhCFsaLXxakOaGMP06n6YazeBQ4ZaE=
Subject key identifier: 4A:DD:42:7B:C0:0A:A1:50:8B:90:25:22:68:DB:21:52:A1:0A:65:6F
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 01857303928DC3E64C0855601567F095C78E
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/St1Ce8AKoVCLkCUiaNshUqEKZW8.roa
Signing time: Mon 02 Jan 2023 15:04:52 +0000
ROA not before: Mon 02 Jan 2023 15:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 109.105.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 09 Apr 2023 04:57:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:03:92:8d:c3:e6:4c:08:55:60:15:67:f0:95:c7:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jan 2 15:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4add427bc00aa1508b90252268db2152a10a656f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:04:ae:e8:bd:15:b3:0e:fb:b1:fc:7f:e2:a8:
33:87:a3:4b:f4:4c:92:4c:5e:f7:80:20:4d:a0:cb:
72:d6:51:8e:7b:18:f4:e2:6a:c0:75:1e:42:48:de:
e9:f2:65:6a:e6:71:23:e9:d1:db:b1:f8:93:78:d0:
72:59:55:e8:87:e0:b4:8a:54:d6:a7:86:3d:1d:17:
a3:50:51:75:09:8d:b3:6e:db:69:07:ee:03:af:b0:
cb:10:eb:54:6e:af:75:fe:da:1c:e2:55:b0:78:fb:
bd:c9:8c:4b:12:8d:79:54:7f:cc:ea:c2:d5:2a:59:
cb:35:af:04:28:99:fd:8e:52:de:e0:14:43:8f:db:
a7:77:2f:ed:b4:0c:3e:9c:0a:bf:dd:54:37:c9:b8:
3f:bb:4c:b8:9c:68:3a:0a:38:3d:dd:1c:c8:d7:6f:
e7:c6:32:74:4f:ce:92:58:44:0b:8f:de:c8:ab:0f:
bd:ca:b6:85:39:ac:88:be:26:55:6c:af:1b:e4:82:
c0:89:5d:37:10:f1:33:cf:6b:a0:17:39:98:6d:c0:
76:41:6c:3b:9d:1f:cb:da:e1:4b:b5:a9:cb:ab:ee:
0a:cb:fb:97:1a:68:49:fd:fc:4e:63:f8:b9:fe:66:
1e:3d:e5:63:d7:8b:08:04:2e:11:85:77:84:c1:fe:
2e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:DD:42:7B:C0:0A:A1:50:8B:90:25:22:68:DB:21:52:A1:0A:65:6F
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/St1Ce8AKoVCLkCUiaNshUqEKZW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.193.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:de:23:64:04:30:f7:0f:de:42:8d:26:61:71:5f:33:8a:b4:
11:2a:86:b7:b2:a5:29:d6:94:e0:98:80:6b:76:6e:41:5b:ab:
e3:58:3a:5c:59:57:b7:2c:bd:05:5a:c6:9d:ee:8d:4d:7e:68:
26:64:f1:89:04:d8:fa:24:5c:ee:f2:f4:87:a3:58:88:bc:44:
0e:10:6c:c9:e4:f5:99:0c:c3:38:33:3c:39:9a:df:24:ca:b7:
24:95:7a:25:ea:64:be:f3:6b:cc:65:11:a1:b2:7d:46:cf:17:
02:67:95:07:3f:da:b5:28:61:33:ff:cd:70:03:f3:62:87:22:
96:94:5e:58:1e:9b:9d:87:ea:8c:8e:aa:cb:df:4e:d6:7c:b9:
1a:4a:3c:65:03:c6:b1:30:ae:83:14:1d:80:c4:5f:ca:36:71:
99:0b:b0:da:d5:d3:42:b7:3b:41:c6:06:b9:c0:90:de:4a:0f:
40:0c:61:69:db:ae:72:bc:05:d9:ba:2c:41:a1:ac:55:29:80:
cc:14:94:b6:f0:91:45:93:8f:bc:06:1b:a3:f2:ae:db:c3:59:
15:90:ce:1d:6b:bc:75:76:bc:07:b3:ea:69:fe:83:64:15:79:
94:9d:e2:4c:6b:05:84:67:d6:b2:2f:6e:6c:09:07:31:ce:a2:
4d:af:ce:37
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzA5KNw+ZMCFVgFWfwlceOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YzYwYTBkMmQ3MGE5MzM3ZDBiZGE1NmQxYWQ1OTZhYzFm
NjljZGEwHhcNMjMwMTAyMTUwNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YWRkNDI3YmMwMGFhMTUwOGI5MDI1MjI2OGRiMjE1MmExMGE2NTZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiwSu6L0Vsw77sfx/4qgzh6NL9EyS
TF73gCBNoMty1lGOexj04mrAdR5CSN7p8mVq5nEj6dHbsfiTeNByWVXoh+C0ilTW
p4Y9HRejUFF1CY2zbttpB+4Dr7DLEOtUbq91/toc4lWwePu9yYxLEo15VH/M6sLV
KlnLNa8EKJn9jlLe4BRDj9undy/ttAw+nAq/3VQ3ybg/u0y4nGg6Cjg93RzI12/n
xjJ0T86SWEQLj97Iqw+9yraFOayIviZVbK8b5ILAiV03EPEzz2ugFzmYbcB2QWw7
nR/L2uFLtanLq+4Ky/uXGmhJ/fxOY/i5/mYePeVj14sIBC4RhXeEwf4uLwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFErdQnvACqFQi5AlImjbIVKhCmVvMB8GA1UdIwQY
MBaAFNjGCg0tcKkzfQvaVtGtWWrB9pzaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUt
ZGQyOTRjMzc4ZjZjLzEvU3QxQ2U4QUtvVkNMa0NVaWFOc2hVcUVLWlc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUtZGQyOTRjMzc4ZjZj
LzEvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWnBMA0G
CSqGSIb3DQEBCwUAA4IBAQB/3iNkBDD3D95CjSZhcV8zirQRKoa3sqUp1pTgmIBr
dm5BW6vjWDpcWVe3LL0FWsad7o1NfmgmZPGJBNj6JFzu8vSHo1iIvEQOEGzJ5PWZ
DMM4Mzw5mt8kyrcklXol6mS+82vMZRGhsn1GzxcCZ5UHP9q1KGEz/81wA/NihyKW
lF5YHpudh+qMjqrL307WfLkaSjxlA8axMK6DFB2AxF/KNnGZC7Da1dNCtztBxga5
wJDeSg9ADGFp265yvAXZuixBoaxVKYDMFJS28JFFk4+8Bhuj8q7bw1kVkM4da7x1
drwHs+pp/oNkFXmUneJMawWEZ9ayL25sCQcxzqJNr843
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org