Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/_ahFcHJpgdXZCtALRpbSufQpIV8.roa
File: _ahFcHJpgdXZCtALRpbSufQpIV8.roa (raw, json)
Hash identifier: cp250hkHx3fVMWDqlpIovJPEriuH9CXNLcemeTOz9PM=
Subject key identifier: FD:A8:45:70:72:69:81:D5:D9:0A:D0:0B:46:96:D2:B9:F4:29:21:5F
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018CC8DF7BF825450B4951B28ED5E5F7D38B
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/_ahFcHJpgdXZCtALRpbSufQpIV8.roa
Signing time: Tue 02 Jan 2024 06:32:18 +0000
ROA not before: Tue 02 Jan 2024 06:32:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44547
IP address blocks: 78.135.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jan 2024 21:15:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:7b:f8:25:45:0b:49:51:b2:8e:d5:e5:f7:d3:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 06:32:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fda84570726981d5d90ad00b4696d2b9f429215f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:94:d3:34:db:9f:de:ef:6e:00:c4:b2:c5:d3:
6f:6a:aa:a0:49:a5:33:4c:bd:8c:d5:ec:56:88:86:
77:d0:b9:a5:bf:47:b8:d1:83:4b:be:27:b4:3f:e9:
8a:4a:41:c4:aa:35:b8:e5:8b:64:ff:0b:1b:d4:56:
be:d5:05:f0:39:3f:66:2a:5f:d2:2a:5f:99:97:30:
58:86:68:c8:52:5f:3e:0c:68:e6:b9:7c:df:eb:5d:
28:79:31:d8:d7:4f:2f:67:91:e5:41:ea:35:df:91:
b8:e3:da:6a:04:97:cf:7a:2d:4c:08:82:82:e6:86:
18:e3:88:26:02:4c:f1:41:b4:34:e6:33:3e:4d:82:
33:d6:ab:7d:26:23:33:3f:e6:e3:82:47:03:9e:17:
b6:a6:f7:b3:3f:57:83:6e:93:19:9b:4b:22:28:d2:
36:47:11:0b:29:89:ff:80:e3:16:6e:a3:fd:c2:4e:
04:d4:75:a4:68:d1:53:6e:c9:3f:75:1f:a1:b8:5d:
b5:cc:89:ba:cf:75:cb:e0:59:38:c2:a9:10:74:a3:
f1:ff:fb:d0:2f:f0:77:d2:7d:c9:d0:b4:e4:0b:79:
a6:30:46:d0:f7:6f:5d:d8:99:d1:f4:69:eb:3c:ef:
85:5c:a4:e8:9c:49:00:a5:c5:f5:7c:a4:05:27:44:
9b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:A8:45:70:72:69:81:D5:D9:0A:D0:0B:46:96:D2:B9:F4:29:21:5F
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/_ahFcHJpgdXZCtALRpbSufQpIV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.111.0/24
Signature Algorithm: sha256WithRSAEncryption
04:69:60:b1:1b:7a:17:66:2f:1a:a8:bf:58:3e:5c:ab:2b:32:
9f:81:e5:e0:4b:20:e1:7e:68:5b:20:4c:b3:9b:5e:98:48:6b:
de:b5:64:d4:2e:0c:93:7c:d4:4c:1e:e2:7d:50:0e:5a:a5:6a:
b8:b2:3c:56:2b:8f:ef:1c:7d:dc:67:a1:85:12:97:7c:b0:7a:
4a:43:14:c6:ad:05:86:c9:6b:5f:93:ba:26:c8:82:e5:a2:fe:
0b:70:24:e6:98:b7:49:a1:68:e5:dc:5f:20:20:ed:7c:6c:1d:
ad:cc:6f:24:ba:73:b0:73:3b:1c:e6:e8:b7:19:72:09:fe:44:
65:9d:23:cb:4b:0c:43:2e:9f:47:24:9a:e3:eb:39:ea:ae:e7:
35:bc:15:25:3d:aa:c0:dc:76:cd:e9:ea:aa:10:57:cf:01:9f:
cf:67:a7:23:bc:bb:59:0a:d6:6d:de:09:ec:1a:a5:a8:1b:7e:
07:ba:3e:92:12:12:fa:81:56:cd:2b:b7:e3:57:eb:de:32:92:
2b:97:d9:a2:a8:e0:da:4c:59:0a:38:49:32:e8:5b:6c:34:c0:
b2:2b:14:05:cf:44:bd:de:f7:51:21:9c:60:37:c0:0a:68:d8:
8e:17:da:d1:4e:36:44:4f:51:e2:87:b0:db:50:ef:e3:0d:c8:
94:b4:49:a6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzI33v4JUULSVGyjtXl99OLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjQwMTAyMDYzMjE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZGE4NDU3MDcyNjk4MWQ1ZDkwYWQwMGI0Njk2ZDJiOWY0MjkyMTVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu5TTNNuf3u9uAMSyxdNvaqqgSaUz
TL2M1exWiIZ30Lmlv0e40YNLvie0P+mKSkHEqjW45Ytk/wsb1Fa+1QXwOT9mKl/S
Kl+ZlzBYhmjIUl8+DGjmuXzf610oeTHY108vZ5HlQeo135G449pqBJfPei1MCIKC
5oYY44gmAkzxQbQ05jM+TYIz1qt9JiMzP+bjgkcDnhe2pvezP1eDbpMZm0siKNI2
RxELKYn/gOMWbqP9wk4E1HWkaNFTbsk/dR+huF21zIm6z3XL4Fk4wqkQdKPx//vQ
L/B30n3J0LTkC3mmMEbQ929d2JnR9GnrPO+FXKTonEkApcX1fKQFJ0Sb/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP2oRXByaYHV2QrQC0aW0rn0KSFfMB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvX2FoRmNISnBnZFhaQ3RBTFJwYlN1ZlFwSVY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATodvMA0G
CSqGSIb3DQEBCwUAA4IBAQAEaWCxG3oXZi8aqL9YPlyrKzKfgeXgSyDhfmhbIEyz
m16YSGvetWTULgyTfNRMHuJ9UA5apWq4sjxWK4/vHH3cZ6GFEpd8sHpKQxTGrQWG
yWtfk7omyILlov4LcCTmmLdJoWjl3F8gIO18bB2tzG8kunOwczsc5ui3GXIJ/kRl
nSPLSwxDLp9HJJrj6znqruc1vBUlParA3HbN6eqqEFfPAZ/PZ6cjvLtZCtZt3gns
GqWoG34Huj6SEhL6gVbNK7fjV+veMpIrl9miqODaTFkKOEky6FtsNMCyKxQFz0S9
3vdRIZxgN8AKaNiOF9rRTjZET1Hih7DbUO/jDciUtEmm
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org