Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/48bc75-96b6-4fa7-8ada-a6eca43f0e05/1/STVGJNKM4EMNBUS3_e2yu-FwUeg.roa
File: STVGJNKM4EMNBUS3_e2yu-FwUeg.roa (raw, json)
Hash identifier: gPRcLzhWu3QN2epX1ZFhDeyjJcMHSlN5+ECwKJ2tJp4=
Subject key identifier: 49:35:46:24:D2:8C:E0:43:0D:05:44:B7:FD:ED:B2:BB:E1:70:51:E8
Certificate issuer: /CN=de5499be872f62f2d04dc4bc638309d77b89a387
Certificate serial: 01856B37A57411D5E8F9A4E926247F039A91
Authority key identifier: DE:54:99:BE:87:2F:62:F2:D0:4D:C4:BC:63:83:09:D7:7B:89:A3:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3lSZvocvYvLQTcS8Y4MJ13uJo4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/48bc75-96b6-4fa7-8ada-a6eca43f0e05/1/STVGJNKM4EMNBUS3_e2yu-FwUeg.roa
Signing time: Sun 01 Jan 2023 02:44:46 +0000
ROA not before: Sun 01 Jan 2023 02:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200296
IP address blocks: 213.108.240.0/23 maxlen: 23
213.108.242.0/24 maxlen: 24
213.108.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:37:a5:74:11:d5:e8:f9:a4:e9:26:24:7f:03:9a:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de5499be872f62f2d04dc4bc638309d77b89a387
Validity
Not Before: Jan 1 02:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49354624d28ce0430d0544b7fdedb2bbe17051e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e1:6f:fe:24:ac:0a:13:e8:e3:49:35:12:40:
cf:2a:75:9c:65:39:8f:8b:24:44:23:74:58:21:a1:
45:e7:8a:cd:65:fa:2b:fd:1a:b3:ac:fc:7e:9a:d9:
78:f2:0e:bd:fd:f3:86:68:4f:d1:05:2a:18:29:f4:
b3:be:bf:66:a7:cd:b0:65:1b:c7:4d:91:3c:d2:8c:
c2:a3:e0:77:03:63:c3:ce:b9:ed:b1:f9:0d:92:d2:
2f:1f:11:7b:24:40:18:90:9a:03:64:51:0b:3c:61:
9c:1c:85:ba:e9:6c:8e:a7:28:b2:e2:86:3d:6e:22:
dd:18:8e:5a:a8:cd:91:d0:8c:59:a0:ea:01:06:4d:
a8:2d:9c:22:26:dc:67:dc:4d:9c:69:e8:6d:80:67:
ee:ff:fd:07:e9:47:f2:e0:29:0f:fd:a9:5d:d8:36:
c3:ce:11:d2:5f:8d:e0:73:f9:e5:2d:fd:be:7b:20:
53:f1:82:2e:f6:45:49:10:0e:4f:28:d5:25:2c:53:
57:a4:5f:d0:57:4f:1a:e0:00:d2:96:da:65:e8:a1:
ad:2f:b7:c8:be:5e:ec:03:5f:fc:b3:47:8e:98:8b:
78:78:66:82:b3:a0:65:c1:78:09:fa:76:4f:25:4a:
59:ea:20:31:9e:e2:4d:1c:c4:20:b3:ac:d9:d9:0a:
a8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:35:46:24:D2:8C:E0:43:0D:05:44:B7:FD:ED:B2:BB:E1:70:51:E8
X509v3 Authority Key Identifier:
keyid:DE:54:99:BE:87:2F:62:F2:D0:4D:C4:BC:63:83:09:D7:7B:89:A3:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3lSZvocvYvLQTcS8Y4MJ13uJo4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/48bc75-96b6-4fa7-8ada-a6eca43f0e05/1/STVGJNKM4EMNBUS3_e2yu-FwUeg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/48bc75-96b6-4fa7-8ada-a6eca43f0e05/1/3lSZvocvYvLQTcS8Y4MJ13uJo4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.108.240.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:65:a5:48:3f:41:fc:b7:b9:43:16:b5:85:16:b0:ab:48:a1:
fb:7f:35:6c:ed:d6:e6:59:a4:d5:27:17:71:bc:84:18:58:73:
64:48:0d:99:50:80:fc:47:28:75:a0:75:02:2c:04:f8:bd:e6:
84:75:67:d5:2c:66:87:5e:0f:2e:33:c1:ff:cc:5a:1c:f5:af:
1f:16:96:67:09:31:93:23:fc:99:5a:8d:57:63:e3:0a:31:68:
ea:1e:3e:96:2d:c3:f5:34:86:a4:c6:c0:3e:42:bf:47:2b:ad:
3b:5e:37:72:19:ff:56:c9:1a:97:5f:fd:9a:0e:89:63:93:c1:
28:a2:8f:18:8a:ae:0a:99:97:2b:c3:31:d8:2b:4c:7b:35:f6:
0e:5d:c5:aa:0e:c6:4a:0e:36:f6:38:7d:95:94:b7:07:be:7e:
8e:43:58:95:31:9d:85:70:c4:ed:44:34:d1:2a:c0:36:f5:60:
ce:aa:f8:e0:bc:47:ce:c6:82:d6:f1:63:0e:97:74:63:3c:e3:
20:51:71:59:94:dc:50:25:bb:ab:60:4a:86:d7:5c:bd:ab:59:
96:d1:d8:44:72:cb:ac:a4:a1:1a:cc:f3:80:a8:5a:85:18:25:
44:12:ac:ce:a3:b2:20:8a:f5:58:87:df:39:1c:2d:56:50:c1:
8f:aa:bd:a9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrN6V0EdXo+aTpJiR/A5qRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlNTQ5OWJlODcyZjYyZjJkMDRkYzRiYzYzODMwOWQ3N2I4
OWEzODcwHhcNMjMwMTAxMDI0NDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OTM1NDYyNGQyOGNlMDQzMGQwNTQ0YjdmZGVkYjJiYmUxNzA1MWU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAneFv/iSsChPo40k1EkDPKnWcZTmP
iyREI3RYIaFF54rNZfor/RqzrPx+mtl48g69/fOGaE/RBSoYKfSzvr9mp82wZRvH
TZE80ozCo+B3A2PDzrntsfkNktIvHxF7JEAYkJoDZFELPGGcHIW66WyOpyiy4oY9
biLdGI5aqM2R0IxZoOoBBk2oLZwiJtxn3E2caehtgGfu//0H6Ufy4CkP/ald2DbD
zhHSX43gc/nlLf2+eyBT8YIu9kVJEA5PKNUlLFNXpF/QV08a4ADSltpl6KGtL7fI
vl7sA1/8s0eOmIt4eGaCs6BlwXgJ+nZPJUpZ6iAxnuJNHMQgs6zZ2QqoZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEk1RiTSjOBDDQVEt/3tsrvhcFHoMB8GA1UdIwQY
MBaAFN5Umb6HL2Ly0E3EvGODCdd7iaOHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2xTWnZvY3ZZdkxRVGNTOFk0TUoxM3VKbzRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS80OGJjNzUtOTZiNi00ZmE3LThhZGEt
YTZlY2E0M2YwZTA1LzEvU1RWR0pOS000RU1OQlVTM19lMnl1LUZ3VWVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS80OGJjNzUtOTZiNi00ZmE3LThhZGEtYTZlY2E0M2YwZTA1
LzEvM2xTWnZvY3ZZdkxRVGNTOFk0TUoxM3VKbzRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC1WzwMA0G
CSqGSIb3DQEBCwUAA4IBAQAaZaVIP0H8t7lDFrWFFrCrSKH7fzVs7dbmWaTVJxdx
vIQYWHNkSA2ZUID8Ryh1oHUCLAT4veaEdWfVLGaHXg8uM8H/zFoc9a8fFpZnCTGT
I/yZWo1XY+MKMWjqHj6WLcP1NIakxsA+Qr9HK607XjdyGf9WyRqXX/2aDoljk8Eo
oo8Yiq4KmZcrwzHYK0x7NfYOXcWqDsZKDjb2OH2VlLcHvn6OQ1iVMZ2FcMTtRDTR
KsA29WDOqvjgvEfOxoLW8WMOl3RjPOMgUXFZlNxQJburYEqG11y9q1mW0dhEcsus
pKEazPOAqFqFGCVEEqzOo7IgivVYh985HC1WUMGPqr2p
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:43 2024 by rpki-client on console-ams.rpki-client.org