Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/SUH8ymZg8KOM92bWBFwqOxVbfx4.roa
File: SUH8ymZg8KOM92bWBFwqOxVbfx4.roa (raw, json)
Hash identifier: NqFw19NRCPwIb7Nu0kWhjlNHkK8fM3EIhcMNiK43x2s=
Subject key identifier: 49:41:FC:CA:66:60:F0:A3:8C:F7:66:D6:04:5C:2A:3B:15:5B:7F:1E
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 019228E1576B31BE409FE1C3010A9C08FFED
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/SUH8ymZg8KOM92bWBFwqOxVbfx4.roa
Signing time: Wed 25 Sep 2024 11:11:49 +0000
ROA not before: Wed 25 Sep 2024 11:11:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62048
IP address blocks: 109.122.240.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Sep 2024 22:17:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:28:e1:57:6b:31:be:40:9f:e1:c3:01:0a:9c:08:ff:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Sep 25 11:11:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4941fcca6660f0a38cf766d6045c2a3b155b7f1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:22:6b:55:fe:48:fb:fd:e0:d9:0c:b3:6b:06:
a1:5a:e4:1b:60:ea:42:be:cc:b5:a6:63:e6:f6:cc:
7d:7d:f1:24:9e:07:b7:77:30:59:12:79:dd:94:03:
6c:0e:c6:b3:b9:73:07:66:46:f2:25:16:45:12:e9:
35:8d:e4:81:43:c9:9a:04:97:0a:ee:cb:c1:35:19:
07:5d:df:a1:7d:0e:0e:18:80:ff:2b:c4:c0:b9:b6:
71:87:7b:b0:c5:be:85:06:65:85:92:f4:2f:7e:21:
a5:c2:d3:11:f7:26:7a:0a:89:84:f7:e1:cf:2c:39:
34:01:05:59:84:ea:d1:6a:56:b4:bf:38:1b:b9:d4:
c3:66:dd:79:6d:3f:53:de:da:ca:6a:98:54:68:cf:
e1:64:d1:ca:4d:44:eb:e9:be:79:a8:09:a2:3d:4f:
2c:3e:43:9f:46:c6:be:98:a5:5f:04:56:85:87:b9:
76:18:19:07:45:0e:93:df:e7:dc:5d:ff:6d:fc:99:
80:38:43:0b:a3:d7:56:7c:4e:ef:88:2b:01:85:f5:
49:b4:44:52:c3:f1:c5:40:0d:33:b7:4d:92:38:a0:
eb:d4:97:cd:e2:cf:89:10:34:b2:77:81:02:35:0e:
8f:7d:11:64:66:2d:ea:05:54:f5:b9:43:ed:e6:3e:
35:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:41:FC:CA:66:60:F0:A3:8C:F7:66:D6:04:5C:2A:3B:15:5B:7F:1E
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/SUH8ymZg8KOM92bWBFwqOxVbfx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.240.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:80:81:81:78:72:8c:ae:0f:e8:a2:0b:c8:0d:8c:17:2b:59:
c8:70:e2:92:4a:23:82:34:fb:be:cf:7f:d6:f5:cb:73:dd:3e:
3d:b6:fc:0f:59:ec:23:0f:50:a0:69:ed:f2:32:cf:34:8a:07:
45:c8:68:9e:ba:f4:da:ae:c5:0d:0b:0c:b2:2d:6e:ca:48:da:
8a:ea:0f:4c:d2:9d:e3:c2:0f:3f:a5:64:a0:9e:aa:75:aa:fd:
f2:c7:ff:b3:40:f1:f8:30:a3:4f:f0:8f:81:a3:03:c0:50:d9:
cc:6c:a1:a2:5b:5c:8c:56:aa:a2:67:b5:72:a1:0e:85:c9:4a:
82:71:35:1c:3e:7a:6e:6b:b5:4c:4c:0a:42:61:f7:4e:52:eb:
b3:f8:c3:31:c1:00:dd:e0:a9:f5:5b:28:22:25:e5:41:55:0e:
d5:90:95:6c:8b:5b:2b:32:9c:64:6a:ac:f7:50:aa:cf:3c:ee:
84:33:62:17:4a:55:f3:d5:f6:59:c9:1f:ab:5a:52:ca:f8:45:
cb:b9:ff:33:6e:7c:e3:c5:13:f3:5d:d5:25:8e:0b:1b:ca:9f:
9d:a1:8f:72:a2:27:87:75:85:10:00:8c:a8:f4:b4:d5:18:5e:
31:a8:7a:a2:8b:ec:c5:1c:c6:17:cc:4e:50:22:2d:de:b7:e0:
0a:80:ba:cd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZIo4VdrMb5An+HDAQqcCP/tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZGIzOGIzNDNkYTJkMTE5MzA5ZWRhYTE5YzdhNzg4NzAz
MjdlYmUwHhcNMjQwOTI1MTExMTQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OTQxZmNjYTY2NjBmMGEzOGNmNzY2ZDYwNDVjMmEzYjE1NWI3ZjFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAniJrVf5I+/3g2QyzawahWuQbYOpC
vsy1pmPm9sx9ffEknge3dzBZEnndlANsDsazuXMHZkbyJRZFEuk1jeSBQ8maBJcK
7svBNRkHXd+hfQ4OGID/K8TAubZxh3uwxb6FBmWFkvQvfiGlwtMR9yZ6ComE9+HP
LDk0AQVZhOrRala0vzgbudTDZt15bT9T3trKaphUaM/hZNHKTUTr6b55qAmiPU8s
PkOfRsa+mKVfBFaFh7l2GBkHRQ6T3+fcXf9t/JmAOEMLo9dWfE7viCsBhfVJtERS
w/HFQA0zt02SOKDr1JfN4s+JEDSyd4ECNQ6PfRFkZi3qBVT1uUPt5j41IwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFElB/MpmYPCjjPdm1gRcKjsVW38eMB8GA1UdIwQY
MBaAFG3bOLND2i0RkwntqhnHp4hwMn6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQt
M2RmYTUxMGQ2YjE2LzEvU1VIOHltWmc4S09NOTJiV0JGd3FPeFZiZng0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQtM2RmYTUxMGQ2YjE2
LzEvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBbXrwMA0G
CSqGSIb3DQEBCwUAA4IBAQA/gIGBeHKMrg/oogvIDYwXK1nIcOKSSiOCNPu+z3/W
9ctz3T49tvwPWewjD1Cgae3yMs80igdFyGieuvTarsUNCwyyLW7KSNqK6g9M0p3j
wg8/pWSgnqp1qv3yx/+zQPH4MKNP8I+BowPAUNnMbKGiW1yMVqqiZ7VyoQ6FyUqC
cTUcPnpua7VMTApCYfdOUuuz+MMxwQDd4Kn1WygiJeVBVQ7VkJVsi1srMpxkaqz3
UKrPPO6EM2IXSlXz1fZZyR+rWlLK+EXLuf8zbnzjxRPzXdUljgsbyp+doY9yoieH
dYUQAIyo9LTVGF4xqHqii+zFHMYXzE5QIi3et+AKgLrN
-----END CERTIFICATE-----
Generated at Wed Sep 25 23:37:07 2024 by rpki-client on console-fra.rpki-client.org