Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/44f32f-8723-41a0-8014-376292d8b2fe/1/pJzddlQoQ7f5R1n55ZvupFMfd2U.roa
File: pJzddlQoQ7f5R1n55ZvupFMfd2U.roa (raw, json)
Hash identifier: SBcyIBrSUncuUu3vKOz0ZqjBj0LTcHzs12r6GfSdxx0=
Subject key identifier: A4:9C:DD:76:54:28:43:B7:F9:47:59:F9:E5:9B:EE:A4:53:1F:77:65
Certificate issuer: /CN=ae5d5fbbd4277e02297ecd01b5cd7e1bf29fc759
Certificate serial: 018673CAD1B90B06623A7954286155F1F220
Authority key identifier: AE:5D:5F:BB:D4:27:7E:02:29:7E:CD:01:B5:CD:7E:1B:F2:9F:C7:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rl1fu9QnfgIpfs0Btc1-G_Kfx1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/44f32f-8723-41a0-8014-376292d8b2fe/1/pJzddlQoQ7f5R1n55ZvupFMfd2U.roa
Signing time: Tue 21 Feb 2023 11:45:17 +0000
ROA not before: Tue 21 Feb 2023 11:45:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 109.234.75.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:73:ca:d1:b9:0b:06:62:3a:79:54:28:61:55:f1:f2:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae5d5fbbd4277e02297ecd01b5cd7e1bf29fc759
Validity
Not Before: Feb 21 11:45:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a49cdd76542843b7f94759f9e59beea4531f7765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1f:43:05:5f:24:30:3f:29:77:df:21:92:00:
75:88:c3:fc:85:cc:98:44:1c:72:b1:e4:f7:f2:12:
e1:bf:1d:33:2c:0e:2c:f8:b7:c1:56:2b:27:e4:7b:
01:60:7b:ec:cb:19:37:4b:44:c6:df:be:b4:43:7a:
de:04:ae:8e:f5:ab:42:81:69:72:5f:98:d9:bd:c4:
91:ee:63:a2:30:6b:7a:0e:d3:95:aa:9a:d0:bc:35:
55:ca:4d:ce:1d:1d:21:f5:54:51:ce:d0:34:2b:1f:
fc:9c:80:9a:38:a4:c0:e1:62:fc:e0:f5:46:ed:38:
d6:c5:d7:43:e9:5b:9f:0c:a8:06:4e:e8:89:25:7a:
44:b3:0c:80:b9:6b:6d:a4:46:eb:52:54:3e:32:db:
31:2a:05:19:43:0b:55:1e:00:9d:aa:58:c8:c3:31:
b9:75:74:ed:4f:e1:83:84:ea:99:e9:cb:48:df:4f:
e3:44:27:af:73:c9:47:25:fa:cc:5f:fe:af:18:01:
19:95:22:af:26:99:8c:e7:39:a2:db:95:af:7b:d7:
c6:40:d6:95:46:36:19:a3:63:70:08:e7:55:7d:a2:
7c:a5:da:1c:87:e1:aa:c7:fd:7a:3e:32:a5:45:67:
b5:51:56:14:e4:19:09:5c:03:b5:71:f3:a2:c0:76:
9a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:9C:DD:76:54:28:43:B7:F9:47:59:F9:E5:9B:EE:A4:53:1F:77:65
X509v3 Authority Key Identifier:
keyid:AE:5D:5F:BB:D4:27:7E:02:29:7E:CD:01:B5:CD:7E:1B:F2:9F:C7:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rl1fu9QnfgIpfs0Btc1-G_Kfx1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/44f32f-8723-41a0-8014-376292d8b2fe/1/pJzddlQoQ7f5R1n55ZvupFMfd2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/44f32f-8723-41a0-8014-376292d8b2fe/1/rl1fu9QnfgIpfs0Btc1-G_Kfx1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.75.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:d7:e1:16:d3:01:8e:9a:15:24:33:e4:65:8e:e1:87:31:1f:
36:eb:db:e3:b1:53:66:4a:86:fc:db:da:3d:97:1f:95:88:8b:
f1:fd:14:43:11:75:ac:77:43:91:bf:aa:ec:cf:4c:b6:e7:99:
5f:cd:e4:5e:b5:84:d7:6b:5e:a8:cd:29:2a:67:d4:45:02:43:
59:b7:25:a7:23:c2:87:57:78:47:a3:b3:33:39:aa:ba:c2:df:
b3:f5:6d:98:c6:6f:80:8d:37:e9:1e:87:b6:42:97:9c:d7:b8:
b9:e4:29:ca:29:8c:a4:dc:be:9f:f4:63:50:6b:4e:e8:4e:7f:
09:92:4e:32:f2:4b:08:4d:28:3d:73:99:76:b0:40:4a:18:f8:
4d:0a:74:7d:0e:f7:ff:d4:80:7b:d5:13:14:44:06:40:16:5f:
89:6a:0e:d7:8b:bc:51:a2:76:16:48:d6:66:02:17:d6:cb:74:
82:a5:a5:5c:71:b6:31:c2:a7:af:82:9f:51:fc:b0:20:07:94:
f7:41:74:fd:a6:5b:f6:bd:50:67:46:9b:f3:af:34:66:37:9b:
20:1a:ce:47:af:dc:7c:7c:9d:89:70:b2:ea:33:f2:30:4d:0b:
0f:20:14:4b:49:57:29:a2:2c:df:09:6b:e4:59:6b:49:df:1a:
00:c7:d0:cc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZzytG5CwZiOnlUKGFV8fIgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlNWQ1ZmJiZDQyNzdlMDIyOTdlY2QwMWI1Y2Q3ZTFiZjI5
ZmM3NTkwHhcNMjMwMjIxMTE0NTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNDljZGQ3NjU0Mjg0M2I3Zjk0NzU5ZjllNTliZWVhNDUzMWY3NzY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvB9DBV8kMD8pd98hkgB1iMP8hcyY
RBxyseT38hLhvx0zLA4s+LfBVisn5HsBYHvsyxk3S0TG3760Q3reBK6O9atCgWly
X5jZvcSR7mOiMGt6DtOVqprQvDVVyk3OHR0h9VRRztA0Kx/8nICaOKTA4WL84PVG
7TjWxddD6VufDKgGTuiJJXpEswyAuWttpEbrUlQ+MtsxKgUZQwtVHgCdqljIwzG5
dXTtT+GDhOqZ6ctI30/jRCevc8lHJfrMX/6vGAEZlSKvJpmM5zmi25Wve9fGQNaV
RjYZo2NwCOdVfaJ8pdoch+Gqx/16PjKlRWe1UVYU5BkJXAO1cfOiwHaaeQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKSc3XZUKEO3+UdZ+eWb7qRTH3dlMB8GA1UdIwQY
MBaAFK5dX7vUJ34CKX7NAbXNfhvyn8dZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmwxZnU5UW5mZ0lwZnMwQnRjMS1HX0tmeDFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy80NGYzMmYtODcyMy00MWEwLTgwMTQt
Mzc2MjkyZDhiMmZlLzEvcEp6ZGRsUW9RN2Y1UjFuNTVadnVwRk1mZDJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy80NGYzMmYtODcyMy00MWEwLTgwMTQtMzc2MjkyZDhiMmZl
LzEvcmwxZnU5UW5mZ0lwZnMwQnRjMS1HX0tmeDFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbepLMA0G
CSqGSIb3DQEBCwUAA4IBAQCs1+EW0wGOmhUkM+RljuGHMR8269vjsVNmSob829o9
lx+ViIvx/RRDEXWsd0ORv6rsz0y255lfzeRetYTXa16ozSkqZ9RFAkNZtyWnI8KH
V3hHo7MzOaq6wt+z9W2Yxm+AjTfpHoe2Qpec17i55CnKKYyk3L6f9GNQa07oTn8J
kk4y8ksITSg9c5l2sEBKGPhNCnR9Dvf/1IB71RMURAZAFl+Jag7Xi7xRonYWSNZm
AhfWy3SCpaVccbYxwqevgp9R/LAgB5T3QXT9plv2vVBnRpvzrzRmN5sgGs5Hr9x8
fJ2JcLLqM/IwTQsPIBRLSVcpoizfCWvkWWtJ3xoAx9DM
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:05 2023 by rpki-client on console-fra.rpki-client.org