Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/dpQPeJ6tb58a88PSdTGo1l0wCHk.roa
File: dpQPeJ6tb58a88PSdTGo1l0wCHk.roa (raw, json)
Hash identifier: iyhZMjFOU7zVXSbUxKbVwJ2h4MN+2RzWcvJCZgZRj4c=
Subject key identifier: 76:94:0F:78:9E:AD:6F:9F:1A:F3:C3:D2:75:31:A8:D6:5D:30:08:79
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 018B6777F249443728905A0F54E8D854BD9D
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/dpQPeJ6tb58a88PSdTGo1l0wCHk.roa
Signing time: Wed 25 Oct 2023 15:33:15 +0000
ROA not before: Wed 25 Oct 2023 15:33:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 109.105.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 25 Nov 2023 01:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:67:77:f2:49:44:37:28:90:5a:0f:54:e8:d8:54:bd:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Oct 25 15:33:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76940f789ead6f9f1af3c3d27531a8d65d300879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:eb:37:54:81:05:00:75:10:f4:4c:1b:a4:96:
24:1b:be:d8:fc:cc:a4:56:9e:15:3c:aa:e6:9c:0a:
2e:10:a1:33:32:21:34:f5:6a:04:ce:9a:89:78:34:
15:5b:f0:63:43:68:ca:c2:bb:d8:c0:ae:b0:77:10:
f7:4a:1b:d6:bd:6b:2b:74:dc:79:c4:bc:32:1e:75:
3f:a5:60:25:66:24:83:40:eb:a6:c0:04:58:4f:3a:
46:8f:46:03:ee:71:72:43:c7:cb:c9:d5:97:0c:4a:
1d:f0:f4:de:81:bd:89:a7:01:73:87:cb:9c:4f:26:
e8:de:aa:10:88:c3:7b:41:8f:8b:62:66:06:44:4f:
50:30:00:a2:a9:dc:d5:6f:54:3b:de:1b:eb:a2:43:
92:2f:a9:51:d3:b6:e9:a3:d2:50:cf:55:87:6f:76:
4d:a1:73:60:62:23:9a:94:30:79:ca:6d:28:b8:3b:
16:bd:77:e5:28:37:9b:3e:24:91:43:45:ad:19:e3:
69:2e:f5:13:19:f9:2e:d8:e0:ea:b2:56:b7:9a:62:
3e:fa:67:aa:fb:a6:42:b7:56:96:9e:31:d2:1e:c4:
9b:f2:9a:7f:75:1e:08:6d:76:ce:c6:51:bc:60:59:
07:06:c1:11:1e:81:dc:32:b4:eb:b2:fc:84:13:6a:
bf:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:94:0F:78:9E:AD:6F:9F:1A:F3:C3:D2:75:31:A8:D6:5D:30:08:79
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/dpQPeJ6tb58a88PSdTGo1l0wCHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.199.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:88:cb:fe:04:ca:e7:4d:95:cf:a2:3b:ac:e5:e1:01:61:69:
76:7e:2c:c2:02:d0:79:e7:09:70:5b:ba:22:bd:6e:bf:6b:e6:
13:b4:c2:0d:85:d7:92:50:a1:51:76:3b:6c:70:59:6a:4c:65:
ca:26:35:e4:7b:67:c1:1c:6a:6a:2e:08:23:8b:58:2c:04:91:
b1:f0:a0:fa:85:6e:35:b2:56:b7:e0:4e:00:d9:d5:cf:a3:01:
d6:55:bb:8f:78:c2:ed:e6:80:e3:9f:2e:9b:b7:17:6a:6a:b8:
2f:ac:3a:68:7f:b1:24:ed:82:b0:33:b9:73:bf:dd:b2:ce:62:
e6:69:7e:00:23:e7:e9:7f:27:23:3c:7a:40:6c:20:4e:f1:18:
ad:57:ff:a3:07:23:2a:ac:81:ce:9e:9c:01:7f:05:53:dc:dc:
35:ba:bb:9a:0c:f3:84:12:14:b7:d7:c3:9f:91:ec:db:34:ee:
67:86:dc:5f:93:c7:d3:4c:88:3a:57:36:ae:2b:0a:c9:fa:8b:
30:57:01:5b:86:35:31:2a:7e:64:36:a3:58:28:9c:52:c4:9d:
cc:23:e3:63:cf:ba:c1:d8:83:25:02:9c:f5:f8:a0:ad:41:7c:
f6:c9:ef:6a:a3:ba:48:95:c8:d4:b3:74:65:9b:8e:cb:c1:55:
b7:b1:8e:ea
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtnd/JJRDcokFoPVOjYVL2dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YzYwYTBkMmQ3MGE5MzM3ZDBiZGE1NmQxYWQ1OTZhYzFm
NjljZGEwHhcNMjMxMDI1MTUzMzE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Njk0MGY3ODllYWQ2ZjlmMWFmM2MzZDI3NTMxYThkNjVkMzAwODc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlus3VIEFAHUQ9EwbpJYkG77Y/Myk
Vp4VPKrmnAouEKEzMiE09WoEzpqJeDQVW/BjQ2jKwrvYwK6wdxD3ShvWvWsrdNx5
xLwyHnU/pWAlZiSDQOumwARYTzpGj0YD7nFyQ8fLydWXDEod8PTegb2JpwFzh8uc
Tybo3qoQiMN7QY+LYmYGRE9QMACiqdzVb1Q73hvrokOSL6lR07bpo9JQz1WHb3ZN
oXNgYiOalDB5ym0ouDsWvXflKDebPiSRQ0WtGeNpLvUTGfku2ODqsla3mmI++meq
+6ZCt1aWnjHSHsSb8pp/dR4IbXbOxlG8YFkHBsERHoHcMrTrsvyEE2q/RwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHaUD3ierW+fGvPD0nUxqNZdMAh5MB8GA1UdIwQY
MBaAFNjGCg0tcKkzfQvaVtGtWWrB9pzaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUt
ZGQyOTRjMzc4ZjZjLzEvZHBRUGVKNnRiNThhODhQU2RUR28xbDB3Q0hrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUtZGQyOTRjMzc4ZjZj
LzEvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWnHMA0G
CSqGSIb3DQEBCwUAA4IBAQCbiMv+BMrnTZXPojus5eEBYWl2fizCAtB55wlwW7oi
vW6/a+YTtMINhdeSUKFRdjtscFlqTGXKJjXke2fBHGpqLggji1gsBJGx8KD6hW41
sla34E4A2dXPowHWVbuPeMLt5oDjny6btxdqargvrDpof7Ek7YKwM7lzv92yzmLm
aX4AI+fpfycjPHpAbCBO8RitV/+jByMqrIHOnpwBfwVT3Nw1uruaDPOEEhS318Of
kezbNO5nhtxfk8fTTIg6VzauKwrJ+oswVwFbhjUxKn5kNqNYKJxSxJ3MI+Njz7rB
2IMlApz1+KCtQXz2ye9qo7pIlcjUs3Rlm47LwVW3sY7q
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org