Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/eqCgD6Ras_jnX85OFE3dJxFytPQ.roa
File: eqCgD6Ras_jnX85OFE3dJxFytPQ.roa (raw, json)
Hash identifier: ryoOkr3sQktxPIq/RRceKn2ovmcqIQ3Kbpg1Kcyzkew=
Subject key identifier: 7A:A0:A0:0F:A4:5A:B3:F8:E7:5F:CE:4E:14:4D:DD:27:11:72:B4:F4
Certificate issuer: /CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Certificate serial: 01856C4A4697FFD5209F1BF69ADA7B6A3519
Authority key identifier: AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/eqCgD6Ras_jnX85OFE3dJxFytPQ.roa
Signing time: Sun 01 Jan 2023 07:44:44 +0000
ROA not before: Sun 01 Jan 2023 07:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50809
IP address blocks: 109.226.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:4a:46:97:ff:d5:20:9f:1b:f6:9a:da:7b:6a:35:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Validity
Not Before: Jan 1 07:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7aa0a00fa45ab3f8e75fce4e144ddd271172b4f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c5:a2:61:23:da:53:12:40:e7:c0:12:21:55:
7a:c6:27:2d:ab:b3:0b:a1:35:e5:0b:85:9e:25:57:
41:7c:80:4e:f6:8c:d0:06:df:9c:b5:2f:8e:30:51:
8e:da:55:4c:7e:c2:d4:42:d8:b0:64:f1:b2:54:3b:
bf:6e:37:f7:96:26:f4:b7:ef:b8:87:01:00:ef:0e:
7b:1d:41:26:7e:b2:89:f3:6b:63:9a:f1:35:e3:4b:
d7:9c:d9:50:8c:45:c3:8f:60:31:97:ea:dc:52:b2:
28:b1:2a:38:8a:37:7a:fb:e1:6f:8c:a1:d1:1c:19:
7c:bc:b1:87:79:11:0d:86:81:4b:e8:06:79:d3:4e:
e2:59:a0:bb:ed:e9:23:ac:2d:e9:d5:70:14:d5:3d:
76:e1:79:cd:87:a8:0f:cb:f2:87:5c:fe:f3:e8:3f:
7f:fd:04:a4:1e:ec:c3:fc:a8:3c:ca:f0:69:03:b1:
4d:91:94:48:a9:b0:6a:25:93:99:9c:0d:bc:76:7e:
29:fa:a4:74:17:83:ce:cd:07:29:a7:32:0f:b0:90:
ef:ba:b3:ff:94:9b:dd:d3:5e:14:2b:1b:4d:56:06:
26:4e:25:9f:3a:c4:e4:8f:46:ab:6a:97:13:5b:d3:
6b:89:c7:2c:8b:d7:75:95:7a:b6:bd:42:1b:13:f3:
5e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A0:A0:0F:A4:5A:B3:F8:E7:5F:CE:4E:14:4D:DD:27:11:72:B4:F4
X509v3 Authority Key Identifier:
keyid:AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/eqCgD6Ras_jnX85OFE3dJxFytPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.226.249.0/24
Signature Algorithm: sha256WithRSAEncryption
58:e0:6b:2b:b2:35:b6:f4:5d:23:36:89:13:90:c6:72:53:d3:
82:b6:dd:65:04:ac:64:2a:24:89:93:aa:51:6e:dc:db:d6:fe:
b8:65:12:15:85:12:ac:8e:bf:6c:7e:3e:63:4e:52:16:ed:5c:
48:cc:82:0a:45:54:46:a6:9c:bd:95:e7:e4:e0:69:2f:9a:18:
1b:9a:44:d7:fa:ce:89:b6:0b:9a:36:2c:03:7d:0c:d1:02:9b:
50:d9:71:5d:45:39:da:5e:c0:ef:7d:bf:a5:40:8d:96:e7:bd:
f0:28:bb:6b:b4:4e:79:c6:2c:09:1e:50:79:20:1c:d5:03:f7:
f3:1f:e9:6c:c5:45:09:7d:a3:b2:d0:a9:ff:5b:b2:ef:ec:8b:
83:b5:2f:c8:85:4a:fb:94:9d:d3:f6:de:03:dd:6c:03:73:0c:
ea:fd:6f:43:41:3e:ce:d1:3e:fb:08:be:c9:1c:6b:96:82:b6:
0e:43:a9:70:53:65:00:fd:56:86:a1:48:b3:be:da:50:f2:58:
36:d0:b4:5a:10:2c:0e:98:24:1a:20:bf:f0:3b:4d:04:4b:02:
ad:47:32:5a:ac:0b:92:4e:c2:b2:55:68:2d:84:33:35:f4:71:
6f:d2:98:bb:65:64:f3:84:be:0a:4f:95:e2:fd:4e:89:33:ba:
50:9c:f0:b8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsSkaX/9Ugnxv2mtp7ajUZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlN2Y3NDdkZjVmMjQzNTMxNTRkYzRkNGJmNzBkMmRkY2I1
M2U5MDAwHhcNMjMwMTAxMDc0NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YWEwYTAwZmE0NWFiM2Y4ZTc1ZmNlNGUxNDRkZGQyNzExNzJiNGY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAncWiYSPaUxJA58ASIVV6xictq7ML
oTXlC4WeJVdBfIBO9ozQBt+ctS+OMFGO2lVMfsLUQtiwZPGyVDu/bjf3lib0t++4
hwEA7w57HUEmfrKJ82tjmvE140vXnNlQjEXDj2Axl+rcUrIosSo4ijd6++FvjKHR
HBl8vLGHeRENhoFL6AZ5007iWaC77ekjrC3p1XAU1T124XnNh6gPy/KHXP7z6D9/
/QSkHuzD/Kg8yvBpA7FNkZRIqbBqJZOZnA28dn4p+qR0F4POzQcppzIPsJDvurP/
lJvd014UKxtNVgYmTiWfOsTkj0arapcTW9Nriccsi9d1lXq2vUIbE/NeXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHqgoA+kWrP451/OThRN3ScRcrT0MB8GA1UdIwQY
MBaAFK5/dH318kNTFU3E1L9w0t3LU+kAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcm45MGZmWHlRMU1WVGNUVXYzRFMzY3RUNlFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi81OGFmMjQtYzQ1NC00NGIwLWE3Y2Et
YzZmMWU2YWM5YmE5LzEvZXFDZ0Q2UmFzX2puWDg1T0ZFM2RKeEZ5dFBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi81OGFmMjQtYzQ1NC00NGIwLWE3Y2EtYzZmMWU2YWM5YmE5
LzEvcm45MGZmWHlRMU1WVGNUVXYzRFMzY3RUNlFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbeL5MA0G
CSqGSIb3DQEBCwUAA4IBAQBY4GsrsjW29F0jNokTkMZyU9OCtt1lBKxkKiSJk6pR
btzb1v64ZRIVhRKsjr9sfj5jTlIW7VxIzIIKRVRGppy9lefk4GkvmhgbmkTX+s6J
tguaNiwDfQzRAptQ2XFdRTnaXsDvfb+lQI2W573wKLtrtE55xiwJHlB5IBzVA/fz
H+lsxUUJfaOy0Kn/W7Lv7IuDtS/IhUr7lJ3T9t4D3WwDcwzq/W9DQT7O0T77CL7J
HGuWgrYOQ6lwU2UA/VaGoUizvtpQ8lg20LRaECwOmCQaIL/wO00ESwKtRzJarAuS
TsKyVWgthDM19HFv0pi7ZWTzhL4KT5Xi/U6JM7pQnPC4
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:23 2024 by rpki-client on console-fra.rpki-client.org