Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/9Qk-sIldkhCxn76vyuRvN2IbA-c.roa
File: 9Qk-sIldkhCxn76vyuRvN2IbA-c.roa (raw, json)
Hash identifier: sdE23IjT7WwVbnMSgxGocAvNNgtQyX62Ahefzc/yy3A=
Subject key identifier: F5:09:3E:B0:89:5D:92:10:B1:9F:BE:AF:CA:E4:6F:37:62:1B:03:E7
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018CC8DF8BFA621DFE808BD0A322A1590B90
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/9Qk-sIldkhCxn76vyuRvN2IbA-c.roa
Signing time: Tue 02 Jan 2024 06:32:22 +0000
ROA not before: Tue 02 Jan 2024 06:32:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207983
IP address blocks: 78.135.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Apr 2024 14:21:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:8b:fa:62:1d:fe:80:8b:d0:a3:22:a1:59:0b:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 06:32:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f5093eb0895d9210b19fbeafcae46f37621b03e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7f:05:c1:15:a1:3b:e6:08:40:26:7f:23:ac:
ed:b9:15:7b:55:22:19:35:db:20:13:a4:61:07:4a:
71:75:93:8c:76:24:a4:67:3c:b1:a7:1b:db:86:2b:
f0:fd:94:4f:ea:73:eb:c6:98:07:2c:2c:7f:27:c2:
20:c4:88:61:63:e3:9d:c9:a4:c7:3e:c7:30:c9:bf:
c8:03:7c:9a:52:80:5f:69:40:29:c5:6f:4e:e2:c6:
ec:3a:66:03:1c:34:00:7c:9e:23:1f:e8:10:53:56:
25:2c:f5:55:61:c9:36:c2:21:18:39:8e:b9:87:fc:
80:2d:fe:25:93:30:9d:83:6d:6a:eb:58:67:a8:fe:
14:e7:16:9d:86:3a:ce:e3:d3:e4:6e:c8:f1:b3:54:
d8:9e:90:5a:bc:1e:04:39:e2:6d:bb:41:0a:88:70:
26:a9:4a:9b:94:85:dc:0d:45:e7:69:a5:6d:db:a4:
f3:18:f6:c1:94:7f:6d:c5:94:c8:6e:8d:74:4d:96:
64:b0:1d:25:a1:18:ba:56:74:d0:bc:de:7b:1a:05:
fe:0e:dc:11:4c:1e:23:68:8a:6b:ae:b9:f5:fd:bb:
f2:d1:33:0a:05:18:bc:34:20:3a:b5:f8:0f:2e:58:
18:63:d9:b3:2e:cb:0d:1e:ff:32:a8:44:6c:0e:22:
67:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:09:3E:B0:89:5D:92:10:B1:9F:BE:AF:CA:E4:6F:37:62:1B:03:E7
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/9Qk-sIldkhCxn76vyuRvN2IbA-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.109.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:17:21:fb:b7:c2:c1:99:10:e1:9b:ef:27:22:85:7f:c0:4a:
19:6a:70:e4:5b:bb:33:6c:00:db:94:33:7b:48:05:65:7c:fa:
ab:40:fa:96:db:5c:b1:97:a3:16:f5:e3:16:43:c8:09:de:e9:
72:73:e5:9c:7e:27:04:fc:96:05:56:67:fb:12:29:84:37:2b:
fb:dc:c1:d1:f7:c6:4c:9c:62:ac:aa:f6:36:24:f0:92:bb:dd:
22:f4:dc:81:2f:7e:a9:56:7d:4f:82:6d:71:9d:7a:8c:82:45:
97:ec:27:24:98:d1:2a:30:0e:f3:9e:65:83:fa:1d:6c:f4:be:
38:f5:cd:fe:71:65:38:e7:31:6d:c2:e5:df:9c:24:7d:40:dd:
97:49:11:51:cd:60:27:f9:02:e8:0f:93:b6:6a:96:08:4a:88:
59:29:8f:12:89:07:4a:63:79:16:c3:7b:e9:96:53:b6:bf:a4:
db:2d:d1:6b:71:cf:d6:0d:b3:20:06:82:dd:9e:4b:df:b4:29:
be:ba:37:e4:b9:4e:fc:00:da:4c:84:72:95:aa:b9:d9:7a:82:
d2:ad:1d:b5:4c:78:8e:f2:e9:08:69:06:23:7d:d9:b8:71:4a:
b7:2f:71:0d:84:ed:d8:ea:5f:79:a6:89:a6:49:71:07:df:cc:
a6:a3:38:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:43 2024 by rpki-client on console-fra.rpki-client.org