Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/_tLXycsCctzU89gHN7hPVOuCjWM.roa
File: _tLXycsCctzU89gHN7hPVOuCjWM.roa (raw, json)
Hash identifier: N0YxfGlRt2hogkY9UKLKNsKWogSGVnKVu4uwr8YP67k=
Subject key identifier: FE:D2:D7:C9:CB:02:72:DC:D4:F3:D8:07:37:B8:4F:54:EB:82:8D:63
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 01861F175A6FC715ED8F3EFFC72239FDFB08
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/_tLXycsCctzU89gHN7hPVOuCjWM.roa
Signing time: Sun 05 Feb 2023 01:01:09 +0000
ROA not before: Sun 05 Feb 2023 01:01:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 78.135.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 May 2023 13:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:1f:17:5a:6f:c7:15:ed:8f:3e:ff:c7:22:39:fd:fb:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Feb 5 01:01:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fed2d7c9cb0272dcd4f3d80737b84f54eb828d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4f:9e:d8:48:31:92:0c:3a:d2:0e:92:67:af:
9e:72:6f:2e:67:46:cd:ab:7e:d2:01:15:f0:ce:65:
d5:fa:8b:20:fb:45:7e:71:3f:01:4f:57:c2:e4:f0:
64:42:84:8f:56:25:43:ca:fe:d9:be:4b:cd:a3:aa:
23:f1:ca:71:80:8f:1d:78:67:1c:e7:fe:ba:5c:5e:
47:c8:58:2e:ea:aa:91:ce:31:b9:3e:0d:f2:1e:c8:
f1:1e:c4:8e:e8:96:fe:d9:c4:ad:5b:90:88:a2:f0:
91:e9:64:19:ee:1c:d4:5e:36:a8:a1:99:4a:a7:7f:
1a:ad:a1:dc:9e:40:24:28:33:4c:b5:11:18:64:b0:
e1:34:70:8f:54:01:a4:86:40:4b:54:8a:08:c3:50:
70:91:16:8a:86:dd:00:6c:be:0b:9e:77:a4:70:e4:
6e:1a:12:12:14:09:6d:47:67:45:85:7d:c6:29:30:
6f:6f:d4:9c:c3:1c:16:87:cf:da:fd:2a:1a:66:d3:
b6:4d:36:94:a5:39:1f:01:64:77:2c:e3:13:df:00:
3c:6e:38:ac:86:a6:73:63:82:08:a4:23:21:89:e6:
6a:5f:e8:d0:39:8f:a8:71:85:c0:77:f4:fc:6e:03:
61:ba:e6:06:21:86:3f:44:15:ca:af:71:15:04:3e:
cf:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D2:D7:C9:CB:02:72:DC:D4:F3:D8:07:37:B8:4F:54:EB:82:8D:63
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/_tLXycsCctzU89gHN7hPVOuCjWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.105.0/24
Signature Algorithm: sha256WithRSAEncryption
75:29:59:88:e6:82:95:6a:ed:12:6b:b9:c7:ed:c2:8f:7d:fd:
4c:6f:69:68:fc:2e:dd:99:ee:0b:66:e7:2c:0f:22:d2:53:00:
bb:2b:b1:81:7d:64:ae:15:a4:7f:94:28:80:df:d1:6f:05:44:
ff:39:c1:2c:0d:68:07:dd:25:a6:1f:c0:6f:9b:ac:ec:80:c1:
cb:bd:fb:89:e1:d6:56:34:4d:0c:83:bd:14:7a:4e:f8:c2:44:
95:35:c5:9e:e6:a5:9a:08:bd:1c:dd:80:29:7a:a4:42:e2:47:
df:72:15:70:ed:6e:f3:88:65:a1:11:8f:09:b1:1c:6b:3f:a8:
8b:58:27:1c:d3:26:0a:63:4c:47:2b:7d:6c:3a:00:03:7e:98:
10:48:8a:9d:9c:ea:87:d0:38:a0:20:b7:a7:ae:b5:d6:91:a8:
dc:04:e2:c3:89:a1:5c:06:3a:65:a9:04:79:79:34:23:a4:bd:
9c:c5:b2:99:04:c2:e6:b9:97:a7:ee:da:59:25:9c:e8:d7:47:
9b:48:cc:1c:5a:4f:e3:8a:61:f8:06:ab:e9:11:7c:ca:37:06:
1a:a5:5c:3d:ad:ae:96:f1:61:bc:df:47:f1:00:52:6f:9b:28:
1d:3e:41:7b:e2:f4:20:f9:34:37:86:f2:a0:68:e4:aa:bc:10:
e9:a1:c5:74
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYYfF1pvxxXtjz7/xyI5/fsIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjMwMjA1MDEwMTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZWQyZDdjOWNiMDI3MmRjZDRmM2Q4MDczN2I4NGY1NGViODI4ZDYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsk+e2Egxkgw60g6SZ6+ecm8uZ0bN
q37SARXwzmXV+osg+0V+cT8BT1fC5PBkQoSPViVDyv7ZvkvNo6oj8cpxgI8deGcc
5/66XF5HyFgu6qqRzjG5Pg3yHsjxHsSO6Jb+2cStW5CIovCR6WQZ7hzUXjaooZlK
p38araHcnkAkKDNMtREYZLDhNHCPVAGkhkBLVIoIw1BwkRaKht0AbL4LnnekcORu
GhISFAltR2dFhX3GKTBvb9ScwxwWh8/a/SoaZtO2TTaUpTkfAWR3LOMT3wA8bjis
hqZzY4IIpCMhieZqX+jQOY+ocYXAd/T8bgNhuuYGIYY/RBXKr3EVBD7PWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP7S18nLAnLc1PPYBze4T1Trgo1jMB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvX3RMWHljc0NjdHpVODlnSE43aFBWT3VDaldNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATodpMA0G
CSqGSIb3DQEBCwUAA4IBAQB1KVmI5oKVau0Sa7nH7cKPff1Mb2lo/C7dme4LZucs
DyLSUwC7K7GBfWSuFaR/lCiA39FvBUT/OcEsDWgH3SWmH8Bvm6zsgMHLvfuJ4dZW
NE0Mg70Uek74wkSVNcWe5qWaCL0c3YApeqRC4kffchVw7W7ziGWhEY8JsRxrP6iL
WCcc0yYKY0xHK31sOgADfpgQSIqdnOqH0DigILenrrXWkajcBOLDiaFcBjplqQR5
eTQjpL2cxbKZBMLmuZen7tpZJZzo10ebSMwcWk/jimH4BqvpEXzKNwYapVw9ra6W
8WG830fxAFJvmygdPkF74vQg+TQ3hvKgaOSqvBDpocV0
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org