Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/E59AZvZrRyAsM9j6ZfufN8QB7bY.roa
File: E59AZvZrRyAsM9j6ZfufN8QB7bY.roa (raw, json)
Hash identifier: JGMIzS4u3JTghTWQbygK8iqCOQBR3o+v+mUwINdaQDg=
Subject key identifier: 13:9F:40:66:F6:6B:47:20:2C:33:D8:FA:65:FB:9F:37:C4:01:ED:B6
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 018CC42541C77453CEC9F24BCBB6F2DE4D03
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/E59AZvZrRyAsM9j6ZfufN8QB7bY.roa
Signing time: Mon 01 Jan 2024 08:30:25 +0000
ROA not before: Mon 01 Jan 2024 08:30:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 109.238.160.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 17:42:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:41:c7:74:53:ce:c9:f2:4b:cb:b6:f2:de:4d:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: Jan 1 08:30:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=139f4066f66b47202c33d8fa65fb9f37c401edb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c6:15:ee:4d:81:eb:92:75:f0:a6:ed:d8:2d:
e6:8d:0a:76:38:d4:c7:88:5f:a3:fe:d8:11:e4:52:
34:8c:06:9f:0b:18:2c:ea:7d:a2:8e:9a:30:46:f4:
29:d7:f4:1c:ba:62:46:39:3f:cc:fe:1a:17:b6:1a:
d9:70:f5:3d:fb:ec:a5:70:20:07:0c:44:eb:f7:87:
46:09:d0:89:f9:82:9b:f4:2b:a8:67:fc:c7:92:27:
1a:8a:a2:ea:e6:cd:3b:44:b5:a4:2f:59:f1:e5:7e:
00:40:06:c1:d3:85:1f:32:c6:1d:f7:0a:30:cd:31:
15:b2:a7:04:f6:c7:04:83:83:e7:86:cd:1e:e2:e7:
b8:be:8d:64:af:dd:fb:3d:e3:c1:66:4b:03:80:f6:
eb:cc:a3:97:86:62:1b:9c:99:75:52:8d:b5:2b:61:
a8:ee:ac:78:82:5b:00:68:22:70:43:9b:51:95:fe:
be:98:97:8c:3f:6e:dd:55:45:10:f5:79:14:ca:b7:
5b:d2:1a:e8:cd:a2:0f:7c:54:8a:69:f6:cf:be:9b:
74:d7:2c:ab:04:a0:47:e7:cf:e3:27:75:39:23:e0:
04:7f:df:a9:37:f4:b7:22:23:76:a6:7d:15:04:63:
eb:68:76:06:0f:a4:8f:24:ec:74:8a:59:f2:3c:31:
dd:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:9F:40:66:F6:6B:47:20:2C:33:D8:FA:65:FB:9F:37:C4:01:ED:B6
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/E59AZvZrRyAsM9j6ZfufN8QB7bY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.238.160.0/21
Signature Algorithm: sha256WithRSAEncryption
0e:f6:7a:1a:f1:2c:88:d6:81:eb:a9:e8:d6:25:06:75:6c:ca:
5d:ad:78:e5:f5:31:fa:76:41:72:58:b4:18:7d:61:b1:98:f4:
7a:6b:f4:8f:a4:4d:db:94:82:02:8c:82:1d:d8:51:67:11:dc:
4a:c1:f4:86:47:59:72:ad:c9:66:2e:c4:b3:ae:ca:e2:af:a9:
66:7f:5b:85:45:e2:9d:84:ef:6b:ee:38:70:8f:ef:ce:ff:d0:
14:e2:9c:d3:82:ed:2a:25:43:5e:c0:d0:6c:36:50:e8:ee:62:
a8:70:59:89:15:d5:be:1f:aa:4b:71:fc:5c:0e:9b:2a:c7:31:
12:d8:fc:2f:c3:9d:04:8d:11:f0:ce:12:ff:4d:87:48:0e:cb:
c1:00:ce:d4:27:91:53:c3:53:0b:20:56:bf:45:76:dd:9f:18:
2b:18:f9:23:ea:68:e2:b6:0b:a3:66:c7:bf:99:9f:79:54:0f:
4b:01:73:dc:ad:d6:f9:67:94:5b:74:ee:e6:c6:45:9d:ed:2d:
05:17:df:37:12:07:c3:62:78:64:29:d1:71:34:aa:fc:96:ad:
a3:91:5f:c7:ea:43:b9:54:48:d4:09:c4:56:b5:d9:c2:1c:0e:
7f:f8:ef:f4:48:85:af:50:de:fb:a7:56:a8:59:7a:19:46:b2:
29:4b:44:b8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEJUHHdFPOyfJLy7by3k0DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3MjUzNzYwMWEzMTY5NzQwNDkyMmQ5NTdlNzQ0NTBmNWE5
Y2JlNzMwHhcNMjQwMTAxMDgzMDI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzlmNDA2NmY2NmI0NzIwMmMzM2Q4ZmE2NWZiOWYzN2M0MDFlZGI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi8YV7k2B65J18Kbt2C3mjQp2ONTH
iF+j/tgR5FI0jAafCxgs6n2ijpowRvQp1/QcumJGOT/M/hoXthrZcPU9++ylcCAH
DETr94dGCdCJ+YKb9CuoZ/zHkicaiqLq5s07RLWkL1nx5X4AQAbB04UfMsYd9wow
zTEVsqcE9scEg4Pnhs0e4ue4vo1kr937PePBZksDgPbrzKOXhmIbnJl1Uo21K2Go
7qx4glsAaCJwQ5tRlf6+mJeMP27dVUUQ9XkUyrdb0hrozaIPfFSKafbPvpt01yyr
BKBH58/jJ3U5I+AEf9+pN/S3IiN2pn0VBGPraHYGD6SPJOx0ilnyPDHdbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBOfQGb2a0cgLDPY+mX7nzfEAe22MB8GA1UdIwQY
MBaAFBclN2AaMWl0BJItlX50RQ9anL5zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRnlVM1lCb3hhWFFFa2kyVmZuUkZEMXFjdm5NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8yMTljYWUtMjY0ZC00NmE3LTllNjQt
ZTYwNGI2MWJlMGVhLzEvRTU5QVp2WnJSeUFzTTlqNlpmdWZOOFFCN2JZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny8yMTljYWUtMjY0ZC00NmE3LTllNjQtZTYwNGI2MWJlMGVh
LzEvRnlVM1lCb3hhWFFFa2kyVmZuUkZEMXFjdm5NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDbe6gMA0G
CSqGSIb3DQEBCwUAA4IBAQAO9noa8SyI1oHrqejWJQZ1bMpdrXjl9TH6dkFyWLQY
fWGxmPR6a/SPpE3blIICjIId2FFnEdxKwfSGR1lyrclmLsSzrsrir6lmf1uFReKd
hO9r7jhwj+/O/9AU4pzTgu0qJUNewNBsNlDo7mKocFmJFdW+H6pLcfxcDpsqxzES
2Pwvw50EjRHwzhL/TYdIDsvBAM7UJ5FTw1MLIFa/RXbdnxgrGPkj6mjitgujZse/
mZ95VA9LAXPcrdb5Z5RbdO7mxkWd7S0FF983EgfDYnhkKdFxNKr8lq2jkV/H6kO5
VEjUCcRWtdnCHA5/+O/0SIWvUN77p1aoWXoZRrIpS0S4
-----END CERTIFICATE-----
Generated at Wed Mar 6 22:10:58 2024 by rpki-client on console-fra.rpki-client.org